From: Vsevolod Stakhov <vsevolod@rambler-co.ru>
Date: Wed, 4 Mar 2009 10:58:20 +0000 (+0300)
Subject: * Change method of dropping privilleges
X-Git-Tag: 0.2.7~271
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=b4e3c966595fb52ed7aacd8505d184376eaeaebb;p=thirdparty%2Frspamd.git

* Change method of dropping privilleges
---

diff --git a/utils/redirector.pl.in b/utils/redirector.pl.in
index cb74b02221..da34515804 100755
--- a/utils/redirector.pl.in
+++ b/utils/redirector.pl.in
@@ -50,6 +50,14 @@ my %cfg = (
 
 our $do_reopen_log = 0;
 
+# Drop privilleges
+if ($> == 0) {
+    my $uid = getpwnam($cfg{user}) or die "user $cfg{user} unknown";
+    my $gid = getgrnam($cfg{group}) or die "group $cfg{group} unknown";
+    $< = $uid;
+    $) = $gid;
+}
+
 die "Process is already started, check $cfg{pidfile}" if Proc::PidUtil::is_running($cfg{pidfile});
 
 die "Cannot write to pidfile $cfg{pidfile}" if ! open(PID, "> $cfg{pidfile}");
@@ -60,10 +68,6 @@ $cfg{do_log} = 0 if ! open(LOG, ">> $cfg{logfile}");
 # Do daemonization
 Proc::Daemon::Init if !$cfg{debug};
 
-my $uid = getpwnam($cfg{user}) or die "user $cfg{user} unknown";
-my $gid = getgrnam($cfg{group}) or die "group $cfg{group} unknown";
-setpgrp ($uid, $gid) or die "cannot drop privilleges";
-
 Proc::PidUtil::make_pidfile($cfg{pidfile}, $$) or die "Cannot write pidfile $cfg{pidfile}";
 
 # Init memcached connection