spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Updates on SRS crypto

2004-02-21 10:54:48
from [Mark] [Permanent Link] 
----- Original Message -----
From: "Brian Candler" <B(_dot_)Candler(_at_)pobox(_dot_)com>
To: <mw-list-spf-discuss(_at_)csi(_dot_)hu>
Cc: <spf-discuss(_at_)v2(_dot_)listbox(_dot_)com>
Sent: Saturday, February 21, 2004 11:46 AM
Subject: Re: [spf-discuss] Updates on SRS crypto


On Fri, Feb 20, 2004 at 11:12:31PM -0600, 
mw-list-spf-discuss(_at_)csi(_dot_)hu
wrote:


To read the secrets file, a program requires special privilages.


No it does not. You are assuming that the MTA has switch its running uid
to the recipient's UID at that stage. I would not implement it there.


Nor would I. Sendmail only switches its running UID to that of the
controlling user when the message is handed over to the LDA. In my sendmail
implementation, SRS is invoked from rulesets, within sendmail.cf, and is not
done at delivery time.

- Mark

        System Administrator Asarian-host.org

---
"If you were supposed to understand it,
we wouldn't call it code." - FedEx
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: DMP vs SPF, Meng Weng Wong
Next by Date:  Re: DMP vs SPF, Hector Santos
Previous by Thread:  Re: Updates on SRS crypto, Brian Candler
Next by Thread:  Re: Updates on SRS crypto, Philip Gladstone
Indexes:  [Date] [Thread] [Top] [All Lists]