On Thu, 2009-06-04 at 21:41 +0200, Karsten Bräckelmann wrote:
> On Thu, 2009-06-04 at 15:15 -0400, Steeve McCauley wrote:
> > Procmail is running as "steeve",
> >
> > Hello, I am steeve.
>
> Weird. :) Honestly, I quickly pulled LOGNAME out of the man page. I'm
> not entirely sure this really reflects the UID. I guess I'd alter that
Err, scratch that. It really should. :)
> > It woudl have been incredbily perplexing if procmail were running
> > as an openpkg user since it's not an openpkg package.
>
> But spamc is. Not that that really should matter, but there's a link.
> Any chance it's a setuid executable?
>
> Can you try to have a glimpse at the user spamc is running as, as called
> by procmail? That requires some fairly good timing. :) Or faking a
> spamd by using 'nc' and checking the User header...
So procmail is running as your user, but spamc isn't...
--
char *t="\10pse\0r\0dtu...@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}
