On Nov 21 22:48, Christian Franke wrote: > Corinna Vinschen wrote: > >>See above (It always switches to $mail_owner and does never use > >>chown()). > >> > >> From postsuper.c: > >> > >>* All file/directory updates must be done as the mail system owner. > >>This > >> * is because Postfix daemons manipulate the queue with those same > >>* privileges, so directories must be created with the right ownership. > >> > >> > >>> In theory postsuper should just use the > >>>account it's running under on Cygwin. > >>In (upstream) theory & practice, it should run with least privileges, > >>which is good :-) > >Well, passwd -R is still some mild variation of security by obscurity, and > >it might not be allowed in some environments. > > Further investigation shows that with a few modifications, postsuper could > be run without passwd -R - except the rare case that the hash_queue_depth > was changed for already queued messages.
Nice. Is the latter a likely operation? I'm running my own postfix on Linux, but I never changed hash_queue_depth, I'm sure. Corinna -- Corinna Vinschen Please, send mails regarding Cygwin to Cygwin Maintainer cygwin AT cygwin DOT com Red Hat
pgpl3O7cCE5n2.pgp
Description: PGP signature
