On Sun, Jan 05, 2014 at 05:23:22PM +0000, Graeme Vetterlein wrote:
> I am trying to use maildrop tacked onto the back of fetchmail(1) as in:
>
> ... options fetchall mda "/usr/bin/maildrop -d testing"
>
> This is reading what is in effect a multidrop mailbox, usinsg maildrop(1)
> config
> to replace the lack of envelope information
>
> I run fetchmail as the user 'fetchmail' for reasons of security.
> The -d option will not work on debain build of maildrop (as it lacks u+s bit)
> if I add u+s , -d is now allowed BUT fetchmail (user) gets the message:
>
> You are not a trusted user
>
> Doing "strings(1)" on /usr/bin/maildrop seems to suggest the "compiled in"
> trusted users
> are 'mail root and daemon' .
>
> 1: I don't see these names documented
> 2: There is no option to maildrop to reveal which optiosn were used in compile
> 3: The "Normal" way to get this to work would be to run fetchmail as "root"
> (trusted user + no need for u+s)
> but exposes me to the obvious risk ... I run fetmail(1) because I (like
> many otheres) don't want to risk an incomming SMTP
Well, the obvious question is, why exactly do you need delivery mode if
you're already unprivileged? Why can't you run fetchmail itself as the
this "testing" user?
--
2. That which causes joy or happiness.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
