From mboxrd@z Thu Jan 1 00:00:00 1970 From: Michael Tremer To: development@lists.ipfire.org Subject: Re: sendEmail-1.56-1 Date: Fri, 08 Feb 2019 12:29:02 +0000 Message-ID: In-Reply-To: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============8236580314875707024==" List-Id: --===============8236580314875707024== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Hi, > On 6 Feb 2019, at 21:35, Rob Brewer wrote: >=20 > Hi Michael >=20 > Michael Tremer wrote: >=20 >> Hi, >>=20 >> Thanks for sending the patch. >>=20 >> I agree that 503.tape is incorrect, but would say that sendEmail should be >> owned by root.root and have 755 as permissions. >>=20 >> Why does the script need to become root when it is being executed by >> nobody? I think that is a security risk. >>=20 > Because those were the owners and permissions with sendEmail in IPCop and I= =20 > have an IPCop addon that uses sendEmail to send my firewall logs to Dshield= .=20 > I dont think a group ID of nobody is essential for this addon though. No. Please change the patch accordingly and submit again. Regarding the IPCop add-on: Please do not use sendEmail. It does not do the j= ob. We have dma, a small mail agent that can be configured over the web-ui. It do= es proper bounce handling and will try to send the email again in case the fi= rst attempt failed. sendEmail doesn=E2=80=99t do that. > The addon based on the IPCop logsend addon been running for the last few=20 > months on my IPFire but need a little more work before I can release it=20 > here. >=20 > (watch this space :) ) >=20 > Rob -Michael --===============8236580314875707024==--