On Thu, 30 Jul 1998 13:06:47 -0500 (CDT) "David W. Tamkin"
<dattier(_at_)wwa(_dot_)com> wrote:
Someone suggested,
| > - If you get really desparate, how about putting the line...
| >
| > INCLUDERC=$HOME/.procmailrc
| >
| > ...into the master .procmailrc file?
and Chris Lindsey asked,
| What user does it run this as? Not the userid of the envelope
| recipient, right? So this could be a potential security
| problem...
OK then ...
DROPPRIVS=yes
INCLUDERC=$HOME/.procmailrc
If procmail knows the envelope recipient in order to determine whose home
is "$HOME", then it knows whose privileges to take when it drops those of
root.
...and if you are coming at procmail directly from sendmail, won't the "o"
flag also drop privileges?
Richard Hopkins,
Computing Service,
University of Bristol,
Bristol, BS8 1UD, UK
Tel +44 117 928 7859
Fax +44 117 929 1576
RFC-822: Richard(_dot_)Hopkins(_at_)bristol(_dot_)ac(_dot_)uk