[SA-exim] Wishlist requests

Nigel Metheringham Nigel.Metheringham at dev.intechnology.co.uk
Tue Jan 11 17:13:00 PST 2005


On Tue, 2005-01-11 at 09:01 -0800, Marc MERLIN wrote:
> On Tue, Jan 11, 2005 at 11:27:04AM -0500, Jonathan Vanasco wrote:
> > [ ] Ability to specify the user:group that sa-exim writes files as (for 
> > the timeout/accept/error archiving) -- and not just as the exim user 
> > (exim allows this option in transports)
>  
> I don't think it's likely to happen, a plugin doesn't have the ability.
> It gets the uid/gid that exim gives it.
> There might be an exim option, or you might convince Philip to make one.

This can't be done.  Exim is running unprivileged at this point, so
cannot change its user credentials.  [Or rather, to do so means running
exim as root for message receipt - this just isn't going to happen].

	Nigel. 

>  
> > [ ] Ability to specify the permissions that sa-exim writes files as 
> > (for the timeout/accept/error archiving) -- and not just as 600 (exim 
> > allows this option in transports)
> 
> Mmmh, I could add that, but:
> - directories are made 770, and you can change them to anything you want
>   after that from the command line
> - files are supposed to be created as 660
>   writefd=creat(string_sprintf("%s/new/%s", dir, filename), S_IRUSR|S_IWUSR|S_IRGRP|S_IWGRP);
>   but they seem to be 600 on my system. Mmmmh....
>   There, you could influence the group of those files by making the parent
>   directory 2770
>   That said, since the parent is protected, I could just make the files 0444
>   and people would rely on group permissions.
> 
> > [ ] Numbering scheme to be in sync with exim somehow
> >     Yeah, i know this is crazy.  But sa-exim 4.1 will be out when exim 
> > 4.43 is out.  would it be too crazy to use a scheme like exiscan acl 
> > uses ( so it would be sa-exim4.43-4.1 or sa-exim4.43.1 ).  recently 
> > upgrading exim, i thought sa-exim wouldn't work anymore as the numbers 
> > were way lower.
> 
> No :)
> SA-Exim is a plugin that uses the local_scan API. It should not depend or
> rely on a specific exim version (except for the minimum requirement).
> I upgrade exim all the time without upgrading sa-exim, and the other way
> around.
> 
> exiscan was different because it was an exim patch which depended on the
> version of exim.
> 
> Marc
-- 
[ Nigel Metheringham           Nigel.Metheringham at InTechnology.co.uk ]
[ - Comments in this message are my own and not ITO opinion/policy - ]





More information about the SA-Exim mailing list