[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [bug-mailutils] pop3d: setting up chroot simply
From: |
Stephen Gildea |
Subject: |
Re: [bug-mailutils] pop3d: setting up chroot simply |
Date: |
Thu, 16 Jun 2005 09:17:59 -0700 |
> Depending on the operating mode, pop3d may still access files in /etc
> and other directories after initial startup. Namely, this happens when
> using PAM authentication (libpam re-reads /etc/pam.conf each time
> pam_start() is called). Chrooting will break it.
My goal here is not to completely eliminate the need to copy some files
into the chroot subdirectory. This may not even be possible. Instead,
I want to find the right balance of calling chroot early enough to be
most useful and late enough to be most convenient to set up.
Even if /etc/pam.conf (and/or a few other files) need to be copied into
the chroot subdirectory at set-up, the chroot is still a valid and
useful addition.
However, in this case pam.conf may not need to be copied. It appears to
me that pop3d_user() calls mu_authenticate() before it calls setuid(),
and hence pam_start() will get called before my proposed chroot().
< Stephen