--- Petri Riihikallio <[EMAIL PROTECTED]> wrote: > >> 1. chown the authdaemond socket to that user > > > >Brian said it was necessary. I've checked a couple > of our standard > >installs (which don't mess with the socket) and > it's owned by > >root:root with rwx access for ugo. > > IIRC: In classic Unix the mode of the socket doesn't > matter. You have > to control the access to the directory where the > socket is. Linux > obeys the mode of the socket itself. So it depends > on what you are > running. >
The socket is in /usr/local/share/sqwebmail/var/authdaemon/ directory. ls -l /usr/local/share/sqwebmail/var/ drwx------ 2 mailuser mailgroup 4096 Oct 24 21:08 authdaemon > You better check it afterwards. Try to open that > socket as an > ordinary user (other than vmail). If you can, then > you have a huge > security hole. That socket is privileged and you > should take care who > has access to it. cat /usr/local/share/sqwebmail/var/authdaemon/socket cat: /usr/local/share/sqwebmail/var/authdaemon/socket: Permission denied Sagara __________________________________ Do you Yahoo!? The New Yahoo! Shopping - with improved product search http://shopping.yahoo.com
