Dale wrote: >>>> >>>> Gary V >>>> >> >> AFAIK the code for changing the uid/gid was less secure in version >> 0.87 than it is in 0.88. I have created a patch for 0.88 that you can >> use to revert to the somewhat less secure method, while still using >> all the other features of 0.88. >> >> The patch is for Daemonize.pm and should only be used to work around >> this exact problem. Install 0.88, make a backup copy of Daemonize.pm, >> then patch it. Let us know if it works for you. >> >> http://www200.pair.com/mecham/spam/p7.txt >> >> See the full bug report at http://rt.cpan.org/NoAuth/Bug.html?id=13450 >>
> Why would you propose such a patch when it would make more sense to > run the app as the intended or desired user, running from root or the > amavisd user always works? The problem is, running from root does not work. > Also, from what I can see, I see nothing that makes this method more > or less secure, they both achieve the same results which is to set > the uid/gid. > -- Dale I proposed this patch to the Net::Server author to work around the problem for those that wish to use version 0.88 on Perl 5.8.0. I am not a Perl programmer, I simply combined code from patches proposed by the author, and on the amavisd-new FAQ page (by Mark). I found it worked for me (on a Linux box). I am unable to determine if the Net::Server author (Paul) will ever come up with a fix, so at least this can be used to revert to the former method and work around the problem. According to the bug report, Paul writes: "Unfortunately that will break on BSD." "If it is not working then it seems that something dangerous is going on and the server won't be running as the user you think it will." I personally do not know if these statements are valid, I have no doubt you would know better. Gary V ------------------------------------------------------- This SF.Net email is sponsored by: Power Architecture Resource Center: Free content, downloads, discussions, and more. http://solutions.newsforge.com/ibmarch.tmpl _______________________________________________ AMaViS-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
