----- Original Message -----
From: "Brian Candler" <B(_dot_)Candler(_at_)pobox(_dot_)com>
To: <mw-list-spf-discuss(_at_)csi(_dot_)hu>
Cc: <spf-discuss(_at_)v2(_dot_)listbox(_dot_)com>
Sent: Saturday, February 21, 2004 11:46 AM
Subject: Re: [spf-discuss] Updates on SRS crypto
On Fri, Feb 20, 2004 at 11:12:31PM -0600,
mw-list-spf-discuss(_at_)csi(_dot_)hu
wrote:
To read the secrets file, a program requires special privilages.
No it does not. You are assuming that the MTA has switch its running uid
to the recipient's UID at that stage. I would not implement it there.
Nor would I. Sendmail only switches its running UID to that of the
controlling user when the message is handed over to the LDA. In my sendmail
implementation, SRS is invoked from rulesets, within sendmail.cf, and is not
done at delivery time.
- Mark
System Administrator Asarian-host.org
---
"If you were supposed to understand it,
we wouldn't call it code." - FedEx