Yahoo Groups archive

Milter-greylist

Index last updated: 2026-04-28 23:32 UTC

Message

Re: [milter-greylist] rights on greylist socket

2009-02-13 by Vladimir Vassiliev

> Another possibility is to run milter-greylist as root, then
> you can have this:
> 
> drwx------   2 root  wheel   512 Feb 13 12:50 /var/milter-greylist
> -rw-------   1 root  wheel  8331 Feb 13 12:50 greylist.db
> srwx------   1 root  wheel     0 Nov  4 04:43 milter-greylist.sock
> 
> Of course, if you run milter-greylist as root, it is strongly
> recommended to put it into a jail (like those supported on
> FreeBSD) or similarly restricted environment, or use MAC
> (mandatory access control) with appropriate policy if your
> OS supports it.  (I do not recommend to use ordinary chroot
> environment because it is too weak.)

But here you can't have sendmail as non-root.


-- 
Vladimir Vassiliev <vova@...>

Attachments

  • No local attachments were found for this message.

Move to quarantaine

This moves the raw source file on disk only. The archive index is not changed automatically, so you still need to run a manual refresh afterward.