Date: Thu, 13 Apr 1995 10:10:20 -0700 (PDT) From: "Rodney W. Grimes" <rgrimes@gndrsh.aac.dev.com> To: mmead@goof.com (matthew c. mead) Cc: bugs@FreeBSD.org, FAQ@FreeBSD.org Subject: Re: /var/mail Message-ID: <199504131710.KAA10573@gndrsh.aac.dev.com> In-Reply-To: <199504131521.LAA12090@goof.com> from "matthew c. mead" at Apr 13, 95 11:21:32 am
next in thread | previous in thread | raw e-mail | index | archive | help
> > /var/mail should be owner bin, group bin, permissions 775, so that packages > like elm can write dot-lock files in /var/mail. This has been gone over several times. Use of dot-lock files for elm and such mailers or for having site wide NFS mounted /var/mail is a site decision and requires the relaxation of the permission on /var/mail. Since having /var/mail bin:bin 775 presents a possible security risk FreeBSD as shipped keeps uses bin:bin 755. You also must install elm sgid bin if you want the mode 775 stuff to work, yet another potential security whole (and yes there have been versions of elm that allowed you to ! out of them and become bin and then go happely trash the whole system :-(. Can some one please add this to a FAQ!!! -- Rod Grimes rgrimes@gndrsh.aac.dev.com Accurate Automation Company Custom computers for FreeBSD
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199504131710.KAA10573>