From owner-freebsd-isp Tue Mar 6 11:57:56 2001 Delivered-To: freebsd-isp@freebsd.org Received: from horsey.gshapiro.net (horsey.gshapiro.net [209.220.147.178]) by hub.freebsd.org (Postfix) with ESMTP id 6400A37B718 for ; Tue, 6 Mar 2001 11:57:54 -0800 (PST) (envelope-from gshapiro@gshapiro.net) Received: (from gshapiro@localhost) by horsey.gshapiro.net (8.12.0.Beta3/8.12.0.Beta3) id f26JvnVQ094380; Tue, 6 Mar 2001 11:57:49 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <15013.16701.398129.55710@horsey.gshapiro.net> Date: Tue, 6 Mar 2001 11:57:49 -0800 From: Gregory Neil Shapiro To: heckfordj@psi-domain.co.uk Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Sendmail Question In-Reply-To: <20010303143635.M3359@storm.psi-domain.co.uk> References: <20010303142510.K3359@storm.psi-domain.co.uk> <20010303143635.M3359@storm.psi-domain.co.uk> X-Mailer: VM 6.90 under 21.2 (beta42) "Poseidon" XEmacs Lucid Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org heckfordj> Quick update, I just set mail.local SUID. heckfordj> I noticed from reading /usr/src/UPDATING that this heckfordj> was disabled (I built the sendmail binary and tools heckfordj> myself) heckfordj> Just wondering, what was the reason for this? Will a heckfordj> security vunrability arisin from setting mail.local heckfordj> SUID? No, it is ok to set mail.local to be set-user-id. It was removed as it is better to have as few set-user-id programs on the filesystem as possible. sendmail can run mail.local as root using the F=S mailer flag. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message