PREAUTH ?

Ken Murchison ken at oceana.com
Tue Sep 28 15:18:43 EDT 2004 

Derrick J Brashear wrote:

> I guess you assume then that imapd is setuid, otherwise, how is a user 
> expected to run it and have access to the mail store? that's fine, i 
> just want to know your expectations up front are in line with reality

Correct.  I stated as such in my post.


> 
> 
> On Tue, 28 Sep 2004, Ken Murchison wrote:
> 
>> Christiaan den Besten wrote:
>>
>>>> Cyrus doesn't support running imapd from the command line.  All 
>>>> process are spawned from the master process.
>>>>
>>>> What type of application requires you to run imapd from the command 
>>>> line? I *might* be able to add a command line switch which allows 
>>>> you to do this if its of general use.
>>>
>>>
>>>
>>> We have aprox 300 users who have shell access on the same machine as 
>>> where the cyrus process runs. It would be -very- nice if they 
>>> wouldn't have to enter their username/password whenever they run Pine.
>>>
>>> Pine supports pre-start commands: "ssh-command=/usr/sbin/imapd" is 
>>> what we now use with uw-imapd. They can then access their mail folder 
>>> without having to authenticate themselves.
>>
>>
>> Attached is a quick proof-of-concept patch against the current CVS 
>> (2.2.x) which allows the services to be run outside of master and 
>> implements PREAUTH for imapd and allows EXTERNAL to be used for pop3d 
>> and nntpd.  In order for the services to be run from the command line, 
>> they MUST be setuid 'cyrus'.
>>
>> If people find this useful (I still think this is questionable), I can 
>> clean it up and commit it to CVS.  I don't know whether the methods 
>> I'm using to detect that the process is running outside of master and 
>> that the client is connected on stdio are foolproof, but they were 
>> quick to implement without too much thought (and didn't require a new 
>> command line option).
>>
>> -- 
>> Kenneth Murchison     Oceana Matrix Ltd.
>> Software Engineer     21 Princeton Place
>> 716-662-8973 x26      Orchard Park, NY 14127
>> --PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp
>>
> 


-- 
Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

More information about the Info-cyrus mailing list