Or smb.
Often admins (at ISPs especially) give users some form of write access to
their home directories so they can fiddle with their ~user home page or
plonk stuff down for remote ftp.
They then think it's qmail's responsibility if that access also allows that
user to modify or create .qmail files.
It's really only a problem for sites that are small enough to have all of a
users home characteristics on one system. As soon as mail delivery is placed
on a dedicated service away from, eg, public_html, the problem goes away.
Until that time, they have to do work to ensure that the .qmail files cannot
be tampered with by the user if that's what they want to restrict.
Regards.
At 09:23 PM 3/14/99 -0500, xs wrote:
>
>ftp?
>
>
>end
>-------------------------------------------------
>Greg Albrecht Safari Internet
>System Administrator Fort Lauderdale, FL
>[EMAIL PROTECTED] www.safari.net
> +1[888|954]537-9550
>-------------------------------------------------
>
>On Sun, 14 Mar 1999, Mate Wierdl wrote:
>
>>But if the users do not have shell access, how do they create .qmail files?
>>
>>Mate
>>On Sun, Mar 14, 1999 at 10:57:41PM +0100, Joel Eriksson wrote:
>>> On Sun, 14 Mar 1999, Mate Wierdl wrote:
>>>
>>> > What mean things can happen if a user pipes the message to a command?
>>> > They can always do it using the shell anyways. The shell started in
>>> > .qmail is run by the user...
>>>
>>> You see, the server I am administrating does not allow shellaccess for
>>> users, just POP3 and FTP (to put up webpages).
>>>
>>> Of course the shell started by qmail-local to spawn commands specified in
>>> dot-qmail files is run by the user itself. One of the main reasons for me
>>> using Qmail is security.. :-)
>>>
>>> Well, I just patched qmail-local.c to look in
/var/qmail/control/staffusers for
>>> usernames and match the UID of the user against the UID that owns the
dot-qmail
>>> file, so it's not a problem anymore for me. But I'm still interesting in
>>> if there is some standard way of accomplishing this.
>>>
>>> If there isn't, and someone has the same problem, just mail me for the
patch.
>>>
>>> > Mate
>>>
>>> / Joel Eriksson
>>>
>>
>>--
>>---
>>Mate Wierdl | Dept. of Math. Sciences | University of Memphis
>>
>
