CYRUS-SASL: /var/run/saslauthd permissions

Randy McMurchy randy at linuxfromscratch.org
Fri Oct 30 15:57:48 PDT 2009


Claus Regelmann wrote these words on 10/30/09 17:10 CST:
> The BLFS-installation instuction for cyrus-sasl says:
> 'install -v -m700 -d /var/lib/sasl /var/run/saslauthd'
> this restricts access to '/var/run/saslauthd/mux' to
> processes running with root privs.
> 
> I just recognized this problem, when installing/testing cyrus-imapd from scratch.
> I followed the cyrus instructions to run the service under an unpriv user(cyrus),
> and I set its authentication method to 'sasl_pwcheck_method:to saslauthd'
> 
> Setting the privs for '/var/run/saslauthd' 711 works.

Thanks for this information. I suppose it is the imapd that suggests
using a unpriv user? Or is this in the Cyrus-SASL package instructions?
I'll see if can't work up a ticket for this.

-- 
Randy

rmlscsi: [bogomips 1003.26] [GNU ld version 2.16.1] [gcc (GCC) 4.0.3]
[GNU C Library stable release version 2.3.6] [Linux 2.6.14.3 i686]
17:55:00 up 9 days, 50 min, 1 user, load average: 0.62, 0.20, 0.07



More information about the blfs-dev mailing list