From owner-freebsd-security Mon Nov 16 10:55:21 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA17008 for freebsd-security-outgoing; Mon, 16 Nov 1998 10:55:21 -0800 (PST) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from smtp02.wxs.nl (smtp02.wxs.nl [195.121.6.60]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA16986 for ; Mon, 16 Nov 1998 10:55:14 -0800 (PST) (envelope-from asmodai@wxs.nl) Received: from chronias.ninth-circle.org ([195.121.58.8]) by smtp02.wxs.nl (Netscape Messaging Server 3.6) with ESMTP id AAA57A7; Mon, 16 Nov 1998 19:54:48 +0100 Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <199811152309.PAA17526@burka.rdy.com> Date: Mon, 16 Nov 1998 19:59:13 +0100 (CET) Organization: Ninth Circle Enterprises From: Jeroen Ruigrok/Asmodai To: security@FreeBSD.ORG Subject: Re: "Todd C. Miller": sendmail changes in OpenBSD 2.4 Cc: (Jordan K. Hubbard) , (Dima Ruban) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 15-Nov-98 Dima Ruban wrote: > Jordan K. Hubbard writes: >> Hmmm. This sounds like a rather large user hit to take, but one less >> suid root executable (and an end to the other problems described >> below) also has strong appeal. Comments? > > We were using the same on FreeBSD here at BEST and didn't have any single > problem with it. Would we need to define OSTYPE as FreeBSD then, just like OpenBSD changes to OpenBSD instead of bsd4.4? As far as I am concerned, every exploit we can avoid if worthwhile in the long run IMHO. And Best already used it ;) --- Jeroen Ruigrok van der Werven/Asmodai asmodai(at)wxs.nl | Cum angelis et pueris, Junior Network/Security Specialist | fideles inveniamur *BSD & picoBSD: The Power to Serve... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message