Allow only Exim or CONFIGURE_OWNER to use whitelisted configs with -C

We only added TRUSTED_CONFIG_PREFIX_FILE to compensate for the enforcing of ALT_CONFIG_ROOT_ONLY. Let's not open it up any further than we need to; other users don't get to make use of it.
author: David Woodhouse <David.Woodhouse@intel.com> 2010-12-15 13:47:46 +0000
committer: David Woodhouse <David.Woodhouse@intel.com> 2010-12-15 13:47:46 +0000
commit: 74935b987fd0312f535747fea636883ae22fec77 (patch)
tree: 1860bee3f904244601d52f72db0e412f6584100e /doc/doc-txt/ChangeLog
parent: fb08281fe4730834c1265012d3cdeb558a671811 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 201d9616d..f405cda5f 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -102,6 +102,10 @@ DW/29 Remove use of va_copy() which breaks pre-C99 systems. Duplicate the
       result string, instead of calling string_vformat() twice with the same
       arguments.
 
+DW/30 Allow TRUSTED_CONFIG_PREFIX_FILE only for Exim or CONFIGURE_OWNER, not
+      for other users. Others should always drop root privileges if they use
+      -C on the command line, even for a whitelisted configure file.
+
 
 Exim version 4.72
 -----------------
author	David Woodhouse <David.Woodhouse@intel.com>	2010-12-15 13:47:46 +0000
committer	David Woodhouse <David.Woodhouse@intel.com>	2010-12-15 13:47:46 +0000
commit	74935b987fd0312f535747fea636883ae22fec77 (patch)
tree	1860bee3f904244601d52f72db0e412f6584100e /doc/doc-txt/ChangeLog
parent	fb08281fe4730834c1265012d3cdeb558a671811 (diff)