[TAG] A few questions...
Benjamin Donnachie
benjamin at pythagoras.no-ip.org
Fri Sep 2 16:33:34 MSD 2005
I just had a reply from Thomas Adam and realised that I missed a few bits
out...
>ii) The email delivery system uses procmail. I would like to implement
>an easy way for users to edit their rules and procbuilder
>(http://www.uvm.edu/opensource/?Page=procbuilder.html)
>appears to be the ideal solution. However, procbuilder needs access to
>everyone's .procmail file, apache (correctly) will not run procbuilder as
>root and procmail disregards the user's .procmail file if it can be
accessed
>by more than just the user it refers to.
Sorry - procbuilder doesn't need access to everyone's .procmail file - it
just needs access to the
currently authenticated user's .procmail file. Is there an easy way to
achieve this? I've (so far)
drawn a blank with the apache docs and groups won't work for the reasons
highlighted.
>(If it comes to it - I've got ftp running over localhost, so I could
>modify the source code to access .procmail over that instead)
I agree that ftp is bad - but it's only running over 127.0.0.1 with
authentication and chroots into
the user's home directory. It would be feasible for me to use the user
authentication details to
login over ftp and retrieve the .procmail file - however, I would only use
this solution while apache
and the mail server continued to reside on the same machine.
>iii) Currently I have the default install of one big partition. However,
>I would like the /homes (well, actually /chroot/homes as I run ssh in a
user jail due to my
>paranoia) tree to be non-executable.
Once I've done this, would user any user cgi-bins continue to work?
Thanks again! :-)
Take care,
--
Benjamin
benjamin at pythagoras.no-ip.org
More information about the TAG
mailing list