Peter Evans on Sun 7/07 17:34 +0900: > > I have a question about server mode. The docs say that you shouldn't > > enable server mode for users who access the mail spool directly. > > What does this mean about MDA's like procmail? > > MDA != users. > > your lusers are things like "mutt/pine/elm/<insert favourite > flavour here>" as long as they agree on their locking protocols > (flock/fcntl/dot-files etc) its ok. if they dont, you are > asking for trouble. > > in this case, make qp lock the same way as procmail and you're > happy.
Wrong. If server mode is used, you need to have the additional condition that spools will not be modified randomly (even with locking). Instead, they can only be appended to (which is usually a safe bet with the MDA, but not with MUAs). In short, *never* use server mode if you allow shell access to or NFS export of your mail spool. Only MDA and POP server should ever touch it.
