Piotr, We're using a single, global database connection pool. Since dbmail daemons run as the user specified in dbmail.conf under effective_user, and since this user by no means needs to (or even should) run as root, doing a suid is not even possible.
Piotr Wadas wrote: > Hello, > > Do daemons use priviledge separation? I mean, do they suid for the > authenticated > user, and create private database connection, or a user "john" authenticate > to pop3 > and share some global persistent database connection with "mary" > authenticated > with pop3 ? Efficiency (global persistent connection), or security > (multiplied separated, but private connections) ? This would defeat all the added benefits for connection pooling. Your idea would require a separate connection pool per connected user, which will very effectively kill scalability. -- ________________________________________________________________ Paul Stevens paul at nfg.nl NET FACILITIES GROUP GPG/PGP: 1024D/11F8CD31 The Netherlands________________________________http://www.nfg.nl _______________________________________________ Dbmail-dev mailing list Dbmail-dev@dbmail.org http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail-dev
