On Fri, May 14, 2004 at 10:18:18AM +0200, Paul J Stevens wrote: > You are correct in assuming that your approach will work with forking, > running, and waiting for children. The case I was referring to however was > when you send a sighup to dbmail. This will, among other things, close and > reopen all sockets. This will, as Aaron and I have stated, *not* work when > the parent daemon has dropped privileges. > > So either run a single isolated parent as root, and be able to gracefully > restart by sending sighups, or run in a fully dropped privileges mode and > do cold restarts whenever the config needs to be reread.
BTW, If you submit dbmail2 packages to debian, make sure they hit experimental, not sid. We can't afford to inherit anymore RC bugs. For the existing dbmail 1.2.x packages, the security team will have your head if you don't have it drop privleges since nothing really makes use of it. I'll submit some patches so you can use it with xinetd which ought to make it a bit more secure. Essentially xinetd is just mimicing the dynamic prefork stuff. -- Dan Weber
signature.asc
Description: Digital signature
