From owner-freebsd-security  Mon Nov 18 08:54:44 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id IAA26854
          for security-outgoing; Mon, 18 Nov 1996 08:54:44 -0800 (PST)
Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93])
          by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id IAA26842
          for <freebsd-security@freebsd.org>; Mon, 18 Nov 1996 08:54:39 -0800 (PST)
Received: from crevenia.parc.xerox.com ([13.2.116.11]) by alpha.xerox.com with SMTP id <17573(5)>; Mon, 18 Nov 1996 08:53:29 PST
Received: from localhost ([127.0.0.1]) by crevenia.parc.xerox.com with SMTP id <177557>; Mon, 18 Nov 1996 08:53:04 -0800
X-Mailer: exmh version 1.6.7 5/3/96
To: Warner Losh <imp@village.org>
cc: newton@communica.com.au (Mark Newton), batie@agora.rdrop.com,
        adam@homeport.org, pgiffuni@fps.biblos.unal.edu.co,
        freebsd-security@freebsd.org
Subject: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2). 
In-reply-to: Your message of "Sun, 17 Nov 1996 20:45:35 PST."
             <E0vPLaR-0003jx-00@rover.village.org> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Mon, 18 Nov 1996 08:53:00 PST
From: Bill Fenner <fenner@parc.xerox.com>
Message-Id: <96Nov18.085304pst.177557@crevenia.parc.xerox.com>
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

In message <E0vPLaR-0003jx-00@rover.village.org>you write:
>In message <9611180312.AA15775@communica.com.au> Mark Newton writes:
>: ... create the mailbox at the same time that you create
>: the user ...
>
>And if that file is ever removed?  Then you are SOL.

Then you exit with EX_TEMPFAIL and log an error.  sendmail will keep the mail 
in the queue, and the person monitoring the logs will notice and recreate the 
missing mailbox.

  Bill