Lubos Kejzlar <[EMAIL PROTECTED]> writes:
>In planed configuration is unacceptable to run procmail (or any other
>'uncontrolled' program via pipes in user's .forward because of sharing
>PAG/tokens with sendmail :-( However we would like (or must) continue to
>support any kind of messages filtering.
Hi Lubos,
I had a similar issue with auth-sendmail [1].
The solution is to use a pagsh in the sendmail.cf [2] file (not shell).
This means a new PAG will be obtained to execute the prog and the
token of the re-authenticating sendmail daemon is not compromised.
Hope this helps!
--
paul http://acm.org/~mpb/homepage.html
References:
[1] auth-sendmail
ftp://ftp.transarc.com/pub/afs-contrib/doc/faq/auth-sendmail.tar.Z
[2] excerpt from sendmail.cf
################################################################################
# #
# Local and Program Mailer specification #
# #
################################################################################
#
Mlocal, P=/bin/bellmail, F=lsDFMmn, S=10, R=20, A=mail $u
#Mprog, P=/bin/sh, F=lsDFM, S=10, R=20, A=sh -c $u
Mprog, P=/usr/afsws/pagsh, F=lsDFM, S=10, R=20, A=sh -c $u
