I guess you assume then that imapd is setuid, otherwise, how is a user
expected to run it and have access to the mail store? that's fine, i just
want to know your expectations up front are in line with reality
On Tue, 28 Sep 2004, Ken Murchison wrote:
Christiaan den Besten wrote:
Cyrus doesn't support running imapd from the command line. All process
are spawned from the master process.
What type of application requires you to run imapd from the command line?
I *might* be able to add a command line switch which allows you to do this
if its of general use.
We have aprox 300 users who have shell access on the same machine as where
the cyrus process runs. It would be -very- nice if they wouldn't have to
enter their username/password whenever they run Pine.
Pine supports pre-start commands: "ssh-command=/usr/sbin/imapd" is what we
now use with uw-imapd. They can then access their mail folder without
having to authenticate themselves.
Attached is a quick proof-of-concept patch against the current CVS (2.2.x)
which allows the services to be run outside of master and implements PREAUTH
for imapd and allows EXTERNAL to be used for pop3d and nntpd. In order for
the services to be run from the command line, they MUST be setuid 'cyrus'.
If people find this useful (I still think this is questionable), I can clean
it up and commit it to CVS. I don't know whether the methods I'm using to
detect that the process is running outside of master and that the client is
connected on stdio are foolproof, but they were quick to implement without
too much thought (and didn't require a new command line option).
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html