GSoC 2008 dma enhancements

Max Lindner gisanka at googlemail.com
Tue Jun 10 04:32:37 PDT 2008


Hi out there!

Seems that the general tenor goes to a separate utility/helper
application with suid-bit set which takes over the steps where
root-access is compulsory. I will take a look at qmail which seems to
have a similar design (as I read in the other dma thread which came up
last week).

But I need some input if the ~/.forward file is considered as strictly
private and its contents should not be revealed under no
circumstances. With this design one can strace/debug the process
running and see the contents of another users .forward file. In my
understanding there is nothing bad about revealing the contents of the
~/.forward file to other users. If someone wants to hide his extern
final recipient-email-address, he can use an freemail account or
something like this as a redirect service but I can't think about a
scenario where this should be neccessary.

Greetings,
Max





More information about the Kernel mailing list