[Mimedefang] Privilege escalation via PID file manipulation

Dianne Skoll dfs at roaringpenguin.com
Thu Aug 31 11:55:48 EDT 2017

On Thu, 31 Aug 2017 11:38:25 -0400
Michael Orlitzky <michael at orlitzky.com> wrote:

> You'll have to forgive the stupid question since I'm not a regular
> user of MIMEDefang, but what's the purpose of the file lock? Is it to
> prevent multiple daemons from running at the same time when they're
> not managed by an init system?

Yep.  In the days of systemd and the like, this is probably not
necessary, but not everyone runs systemd.

If people do use systemd or whatever, then they'd start mimedefang and
mimedefang-multiplexor without the options that create the pidfiles
and let systemd manage the processes.



More information about the MIMEDefang mailing list