Hi, The patch I posted earlier does not completely fix the problem.
True, the pid file is owned by root, but it's created in a directory owned by defang, so there's still a way for the "defang" user to subvert this. I will have a patch by tomorrow that separates out the pid file (which will be root-owned in a root-owned directory) from the lock file (which can be defang-owned in a defang-owned directory.) Regards, Dianne. _______________________________________________ NOTE: If there is a disclaimer or other legal boilerplate in the above message, it is NULL AND VOID. You may ignore it. Visit http://www.mimedefang.org and http://www.roaringpenguin.com MIMEDefang mailing list MIMEDefang@lists.roaringpenguin.com http://lists.roaringpenguin.com/mailman/listinfo/mimedefang