I have an AGI script, that sends a mail for each call listing its details.
It works fine, but now I want to encrypt those mails with gpg to secure the private data.
The problem is, that the asterisk user has no keyring, so it doesn’t work.
My first idea was to create a keyring for the asterisk user but that user has no home directory
and no login shell, but /bin/false instaed.
Is it secure to change those defaults?
Is it possible and safe to run AGI scripts as another user?
What is the proper and secure way to do that?
Thank you for taking the time!