Tom Browder:
> On Sun, Sep 3, 2017 at 06:44 Wietse Venema <[email protected]> wrote:
>
> > Tom Browder:
>
> > The docs mention not to use root or postfix for the "-u UID" option. Then
> > > what user should it be? Is a new user to be created for that purpose?
> > > Should that same user own the /var/db/dkim directory and files?
> >
> > All my opendkim FILES are owned by root, in directories owned by
> > root, and those files/directories are writable only by root. Note
> > that opendkim reads the secret key before dropping root privileges.
>
>
> Okay, so I assume opendikim will then be run by the appropriate post* user
> so I shouldn't use the "-u UID" option?
AS DOCUMENTED
OPENDKIM MUST NOT RUN AS POSTFIX
OPENDKIM MUST NOT RUN AS ROOT
Wietse
