A. Schulze:
> Hello,
>
> I've to rebuild a service: messages to an address are delivered via postfix
> pipe to a script.
> This script use syslog to write it's messages. That worked well for years.
>
> Now, postfix run in a different way, supervised via "postfix start-fg"
> (docker)
> Essentially the is no syslogd.
>
> My idea was to use postlog.
>
> Pipe refuse to execute an external script as root or mail system owner.
> (http://www.postfix.org/pipe.8.html, user= ...)
> Users other then postfix/postdrop may invoke $command_directory/postlog,
> but postlog could not connect to the postlogd as it's not running as root or
> postfix/postdrop.
>
> Is there a recommended/any way to log messages from a script via postfix?
Not at this time. Making the postlog command setgid requires a security
analysis and that may require some code restructuring before this can
be done without opening up a security hole.
Wietse
