[10118] in bugtraq
Re: more procmail
daemon@ATHENA.MIT.EDU (Kragen Sitaker)
Tue Apr 6 22:29:54 1999
Date: Tue, 6 Apr 1999 21:50:03 -0400
Reply-To: Kragen Sitaker <kragen@POBOX.COM>
From: Kragen Sitaker <kragen@POBOX.COM>
To: BUGTRAQ@NETSPACE.ORG
Chris Evans writes:
> As a comment I would suggest anyone running procmail with elevated
> privs either
>
> a) Needs their head examined or
> b) Hasn't read the code.
Procmail is generally not useful when running on behalf of the person
who wrote the email it's being given as input.
When it is running on behalf of someone else, which is the usual case,
it has privileges that the sender did not.
In my book, that means it's running with elevated privs.
Common examples of this situation:
- filtering your incoming mail with procmail
- running a mailbox (of mail from other people) through procmail
--
<kragen@pobox.com> Kragen Sitaker <http://www.pobox.com/~kragen/>
This is exactly how the World Wide Web works: the HTML files are the pithy
description on the paper tape, and your Web browser is Ronald Reagan.
-- Neal Stephenson, at http://www.cryptonomicon.com/beginning_print.html
