Hi Michael
Michael Tremer wrote:
Hi,
Thanks for sending the patch.
I agree that 503.tape is incorrect, but would say that sendEmail should be owned by root.root and have 755 as permissions.
Why does the script need to become root when it is being executed by nobody? I think that is a security risk.
Because those were the owners and permissions with sendEmail in IPCop and I have an IPCop addon that uses sendEmail to send my firewall logs to Dshield. I dont think a group ID of nobody is essential for this addon though.
The addon based on the IPCop logsend addon been running for the last few months on my IPFire but need a little more work before I can release it here.
(watch this space :) )
Rob