On Thu, 2006-08-24 at 00:22, Andy Green wrote:
Les Mikesell wrote:
Postfix still doesn't have a way to let you hook user defined scanners running under a different uid to run in realtime during the smtp conversation, does it? MimeDefang
I just implemented a greylisting app called GPS with postfix on an embedded ARM board here, and it runs as "nobody" and is active during the smtp conversation.
You add something like this to /etc/postfix/master.cf and you're away:
policy unix - n n - - spawn user=nobody argv=/usr/bin/gps /etc/gps.conf
^^^^
Does that mean it starts a new process for every message? The milter interface chats over a socket to a long-running process so you don't have to initialize it every time. MimeDefang also multiplexes to several slaves that do the scanning work so you don't have to serialize everything either.
I realize often the skills one acquires managing a particular setup can outweigh moving to another platform even if it is better, but one look at the need for a Makefile to translate one incomprehensible config format into a config format that sends grown men insane convinced me to back the Postfix horse :-)
I'm still missing the 'better' part. And Makefiles have always been a useful way to automate repetitive tasks - even better when someone else has written them and embedded the execution in the program startup script.