http://bugzilla.spamassassin.org/show_bug.cgi?id=3097
------- Additional Comments From [EMAIL PROTECTED] 2004-04-14 12:17 ------- Subject: Re: Make spamd and (possibly) mass-check use Net::Server On Wed, Apr 14, 2004 at 11:54:41AM -0700, [EMAIL PROTECTED] wrote: > I'd assumed that the project would want to maintain this level of paranoia > which > is why I said that some features (like setuid) would have to be pulled to do a > preforker/reuse server (securely.) I don't want to rock the boat or get > presumptuous on how big my tiny role with the project is but I'd personally > like > to see a concensus from the cabal at least that this is the way to go. I'd just like to mention that this specific behavior is the _exact same_ as spamd has always done. There's absoluetely no change in how this works in my new code. old code: daemon is root, waits for connection. when connection is accepted, fork() a process to deal with said connection. if check() is called, change euid appropriately, do the check. child returns result, child dies. new code: daemon is root, spawns children, also running as root. 1: children wait for connection. random child accepts connection, deals with connection. if check() is called, change euid appropriately, do the check. child returns result. changes euid back to root, resets configuration to pre-connection version. child closes connection. if less than 1000 connections have been processed, loop to 1. else, child dies and parent spawns a new child, loop to 1. if we want to make it more secure, that's great, but this isn't an issue due to the new code, so is OT for this ticket IMHO. ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
