Hi again Tomas,
Since my last post I have decided that the serverside filter plugin is
too immature and insufficiently robust to run suid under my web-server.
This grew out of some exploration of the LDAP code in the latest release
candidate, and the discovery that it isn't even partially complete.
I will probably wind up writing my own. Thanks for you help anyway!
Tomas Kuliavas wrote:
> Why do you have LDAP configuration options enabled?
Because all of my user auth, both for real (shell) users and for virtual
users comes from an LDAP. It would be nice if I could provide procmail
filtering for *all* of my users.
> Could you provide more information about your setup? Where do you store
> your user information?
In an LDAP. SquirrelMail authenticates indirectly via the Apache
AuthLDAP mechanism, as do all of my admin tools, my web gallery, my user
blogs and my wiki. Single-sign-on on the cheap. :)
> Secured PHP installation is not suitable for serversidefilters 1.42 or
> 1.5rc1 plugin. If you want to secure PHP, you will have to turn off exec
> functions used by plugin.
??? My php is whatever comes by default with Ubuntu 6.06. The limit of
my customization was to turn off 'display errors'.
Anyway, thanks for your help.