Sam Varshavchik writes: > If you can finagle the code into running as non-root, then more power to > you. > > However, it is simply not realistic to expect everyone to be able to jump > through this many hoops. There's always going to be an option to use > sqwebmail with plain, garden-variety, system accounts, because this is the > most simple possible setup, that does not have any dependencies on any > additional libraries or software. Almost anyone can set up this simple > configuration.
I think you took my idea in the wrong way. What I am trying to get at is, is it possible to setup sqwebmail as non-root by using authmysql, authvckpw, or authldap. Using sqwebmail with authusedb as non-root is as simple as making it suid sgid to the same group as the database and Maildirs. I just think that if it can be run as non-root by using the other authentication methods it should be documented and distributed with sqwebmail. If the other authentication methods require binaries to have root privilige and won't operate otherwise, I will be content. I also understand that sqwebmail does not constantly run as uid 0, but drops to group priviliges upon login, is that correct? Jericho Thread is not dead, you are dead.
