- Previous message: Paul Boven: "Re: FATAL: failed to mmap cache file"
- In reply to: Rosenbaum, Larry M.: "RE: Creating INBOXes noninteractively"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
|
|
|
From: Daniel O'Connor (no email)
Date: Sun Jan 08 2006 - 19:25:30 EST
On Mon, 9 Jan 2006 07:57, Rosenbaum, Larry M. wrote:
> | you'd have to be "root" (or whatever) to read the file with password,
> | too.
>
> That's a good point. Our security gurus frown on putting passwords in
> files, but in this case it isn't as insecure as I originally thought. I
> may consider it if I can't think of anything better.
On a related note..
I have a script which runs as root and reads a file owned by root out of the
cyrus config path to login to the server as an IMAP admin user. It then reads
Spam/Ham messages and runs sa-learn and bogofilter.
It would have been nice if root could login as the IMAP admin without having
to know the password but I don't know if it's possible. Unless the server is
contacted via a unix domain socket and credential passing is used I don't see
how either.
-- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C
---- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
|
|
|