From: Jan Kümmel (no email)
Date: Sun Jan 06 2002 - 07:00:46 EST
Amos Gouaux wrote:
>Unless told otherwise, Postfix runs commands as user "nobody".
>
Are you sure? I called a script (as mailbox_command) from postfix that
does the following:
echo $LOGNAME > /tmp/foo
After sending a mail, /tmp/foo contained the recipient's name and was
owned by the recipient, not by nobody.
Also, nobody could never have delivered mail in my former (uw)
configuration because INBOX was in $HOME/mail which had permissions 700.
But it worked, so I am pretty sure it runs as the recipient, like the
documentation says, with one exception: root as nobody.
>Are you sure about that? Cyrus support programs run as user "cyrus".
>
Yes, I am sure. And you are right, most cyrus programs can only be run
as user "cyrus", but deliver can be called by anyone, at least for
delivering mail to himself. I testet it. I logged in as user jan, called
deliver jan, typed a header and body, pressed Ctrl-D and a second later,
this mail appeared in my mailclient. No error at all.
Running deliver as nobody, however, produces the same errror as orrucced
when starting from postfix while trying to deliver to user jan.
How can postfix execute anything besides deliver as the recipient and
deliver only as nobody? I am still confused.
Jan
|
|
|