Bug 230766

Summary: mail/rspamd default user and group entries in UIDs GIDs (please)
Product: Ports & Packages Reporter: dewayne
Component: Individual Port(s)Assignee: Vsevolod Stakhov <vsevolod>
Status: Closed FIXED    
Severity: Affects Some People CC: mfechner
Priority: --- Flags: bugzilla: maintainer-feedback? (vsevolod)
Version: Latest   
Hardware: Any   
OS: Any   

Description dewayne 2018-08-20 06:15:55 UTC 
Is it time to create an entry in /usr/ports/UIDs and /usr/ports/GIDs for the mail/rspamd/Makefile to use, rather than nobody?  This would help with consistency for those that move between sites to manage rspamd easier. 

I scanned both for free ID's on either side of redis.  This would be a great help, particularly for those like me that use unix sockets.  I'm temporarily setting _rspamd:_rspamd to 533 for both ;)
Comment 1 commit-hook freebsd_committer freebsd_triage 2019-03-04 07:32:45 UTC 
A commit references this bug:

Author: mfechner
Date: Mon Mar  4 07:31:48 UTC 2019
New revision: 494558
URL: https://svnweb.freebsd.org/changeset/ports/494558

Log:
  Added new user rspamd to be used for mail/rspamd.

  Reason for this is, if you like to use rspamd to also sign emails using DKIM, ARC,
  rspamd need access to the private key used for signing.
  As user nobody is correctly used to run rspamd each service that fallback
  to user nobody would have access to the private key, which is a security risk.

  PR:		230766

Changes:
  head/GIDs
  head/UIDs
Comment 2 Matthias Fechner freebsd_committer freebsd_triage 2019-03-16 12:33:00 UTC 
New version uses now this user, please see 236505.
I close this one now.