Launchpad has imported 13 comments from the remote bug at http://issues.apache.org/SpamAssassin/show_bug.cgi?id=4758.
If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. ------------------------------------------------------------------------ On 2006-01-10T17:24:46+00:00 Josko Plazonic wrote: If -u and -x options are used with spamd, e.g. "spamd -u spamuser -x" then in 3.1.0 spamd will change to spamuser only in children. In 3.0.x and before it used to do it much earlier. It is good to shed root privileges as soon as possible and in this case I don't see a reason to run the parent as root - please correct me if I am wrong (I tried asking on dev list, no reply yet). This behaviour also causes issues with preload_modules_with_tmp_homedir which is now ran always as root and therefore it can also initialize certain values and files as root (e.g. without -H option and if using pyzor, razor and friends it might create files as root in spamuser dir). Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/0 ------------------------------------------------------------------------ On 2006-01-10T17:27:49+00:00 Josko Plazonic wrote: Created attachment 3322 Reverts back to 3.0.x behaviour for where were spamd changes to -u user Change to -u specified user much earlier in spamd, as spamd used to do in 3.0.x, shortly after binding to specified port. Change tested for a week now with no issues and it did work like this until 3.1.0 just fine. Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/1 ------------------------------------------------------------------------ On 2006-01-10T18:11:28+00:00 Felicity wrote: the change was made specificially to fix other issues, such as sending a HUP (needs root to get port 783 back), reading config files, writing pid files, etc. the parent has to run as root, but it doesn't actually do anything so there's not a huge issue. Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/2 ------------------------------------------------------------------------ On 2006-01-10T19:35:30+00:00 Josko Plazonic wrote: There is just one problem - now parent preloads modules as root and this runs certain initialization routines. In particular it will initialize pyzor and razor as root. While it is debatable if this is ok to do as root it also creates files as root in spamuser directory (-u spamuser -x) - .pyzor/, .razor/. This is not usually a problem when -x and -u are not used as spamd will su to user running spamc and never use those files. With -u spamuser -x they are shared and children will not be able to write to them. Any modules that might create files during initial load might suffer from the same problem. Pid file is written before rights are given up. Config files are usually 644 or can be made group owned by specified user or similar. Good point about SIGHUP though I personally will give up on it. Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/3 ------------------------------------------------------------------------ On 2006-09-04T12:54:29+00:00 Justin Mason wrote: btw, it should be possible to switch effective UID to non-root for much of spamd's lifetime, as long as UID=root is preserved. Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/4 ------------------------------------------------------------------------ On 2006-12-12T12:40:19+00:00 Justin Mason wrote: moving RFEs and low-priority stuff to 3.3.0 target Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/5 ------------------------------------------------------------------------ On 2010-01-27T02:21:04+00:00 Justin Mason wrote: moving most remaining 3.3.0 bugs to 3.3.1 milestone Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/9 ------------------------------------------------------------------------ On 2010-01-27T03:16:43+00:00 Justin Mason wrote: reassigning, too Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/10 ------------------------------------------------------------------------ On 2010-03-23T16:33:56+00:00 Justin Mason wrote: moving all open 3.3.1 bugs to 3.3.2 Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/11 ------------------------------------------------------------------------ On 2010-03-23T17:42:59+00:00 Guenther-3 wrote: Moving back off of Security, which got changed by accident during the mass Target Milestone move. Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/12 ------------------------------------------------------------------------ On 2013-06-21T16:08:34+00:00 Kmcgrail wrote: Moving all open bugs where target is defined and 3.4.0 or lower to 3.4.1 target Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/13 ------------------------------------------------------------------------ On 2015-04-12T15:28:12+00:00 Kmcgrail wrote: Pushing to 3.4.2 Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/14 ------------------------------------------------------------------------ On 2018-09-04T15:19:50+00:00 Kmcgrail wrote: Unlikely to be fixed without a real world problem. This is not a support forum. Reply at: https://bugs.launchpad.net/ubuntu/+source/spamassassin/+bug/147992/comments/15 ** Changed in: spamassassin Status: Confirmed => Won't Fix ** Changed in: spamassassin Importance: Medium => Wishlist -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/147992 Title: spamd starts razor as root despite -u spamd To manage notifications about this bug go to: https://bugs.launchpad.net/spamassassin/+bug/147992/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
