Milter-greylist

Vladimir Vassiliev wrote:
 > 
 > > Another possibility is to run milter-greylist as root, then
 > > you can have this:
 > > 
 > > drwx------   2 root  wheel   512 Feb 13 12:50 /var/milter-greylist
 > > -rw-------   1 root  wheel  8331 Feb 13 12:50 greylist.db
 > > srwx------   1 root  wheel     0 Nov  4 04:43 milter-greylist.sock
 > > 
 > > Of course, if you run milter-greylist as root, it is strongly
 > > recommended to put it into a jail (like those supported on
 > > FreeBSD) or similarly restricted environment, or use MAC
 > > (mandatory access control) with appropriate policy if your
 > > OS supports it.  (I do not recommend to use ordinary chroot
 > > environment because it is too weak.)
 > 
 > But here you can't have sendmail as non-root.

You have to run sendmail as root anyway if you want it to
listen on port 25.  (Of course, other parts of sendmail
such as the "queue runner" are running as user smmsp or
whatever you have configured.)

Best regards
   Oliver

-- 
Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing b. M.
Handelsregister: Registergericht Muenchen, HRA 74606,  Gesch\ufffdftsfuehrung:
secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht M\ufffdn-
chen, HRB 125758,  Gesch\ufffdftsf\ufffdhrer: Maik Bachmann, Olaf Erb, Ralf Gebhart

FreeBSD-Dienstleistungen, -Produkte und mehr:  http://www.secnetix.de/bsd

"I invented Ctrl-Alt-Delete, but Bill Gates made it famous."
        -- David Bradley, original IBM PC design team