Re: Updates on SRS crypto

On Fri, Feb 20, 2004 at 11:12:31PM -0600, mw-list-spf-discuss(_at_)csi(_dot_)hu 
wrote:

To read  the secrets file, a program requires special privilages.


No it does not. You are assuming that the MTA has switch its running uid to
the recipient's UID at that stage. I would not implement it there.

Exim typically runs as user 'exim' when routing mail, and re-execs itself to
regain root if it needs it for local delivery. I would just have the secrets
visible to the 'exim' user. This is no more privileges than it normally has
when running.

Brian.

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Updates on SRS crypto, (continued) Re: Updates on SRS crypto, mw-list-spf-discuss Re: Updates on SRS crypto, George Schlossnagle Re: Updates on SRS crypto, James Couzens Re: Updates on SRS crypto, mw-list-spf-discuss Re: Updates on SRS crypto, George Schlossnagle Re: Updates on SRS crypto, mw-list-spf-discuss Re: Updates on SRS crypto, George Schlossnagle Re: Updates on SRS crypto, mw-list-spf-discuss Re: Updates on SRS crypto, George Schlossnagle Re: Updates on SRS crypto, mw-list-spf-discuss Re: Updates on SRS crypto, Brian Candler <= Re: Updates on SRS crypto, Greg Wooledge Re: Updates on SRS crypto, Brian Candler Re: Updates on SRS crypto, Mark Re: Updates on SRS crypto, Philip Gladstone RE: Updates on SRS crypto, Hallam-Baker, Phillip Re: Updates on SRS crypto, wayne Re: Updates on SRS crypto, Shevek Re: Updates on SRS crypto, mw-list-spf-discuss Re: Updates on SRS crypto, wayne Re: Updates on SRS crypto, mw-list-spf-discuss

Previous by Date:	Re: header forgery concern..., Brian Candler
Next by Date:	Re: "Extreme SPF" part II, Brian Candler
Previous by Thread:	Re: Updates on SRS crypto, mw-list-spf-discuss
Next by Thread:	Re: Updates on SRS crypto, Greg Wooledge
Indexes:	[Date] [Thread] [Top] [All Lists]