Date: Sun, 23 Mar 1997 17:33:12 +0100 From: j@uriah.heep.sax.de (J Wunsch) To: peter@spinner.DIALix.COM (Peter Wemm) Cc: dv@kis.ru (Dmitry Valdov), freebsd-bugs@freebsd.org, security-officer@freebsd.org Subject: Re: sendmail can't create PID file because of owner permission of /var/run Message-ID: <19970323173312.AN02657@uriah.heep.sax.de> In-Reply-To: <199703231611.AAA05625@spinner.DIALix.COM>; from Peter Wemm on Mar 24, 1997 00:11:35 %2B0800 References: <19970323162952.NW34878@uriah.heep.sax.de> <199703231611.AAA05625@spinner.DIALix.COM>
next in thread | previous in thread | raw e-mail | index | archive | help
As Peter Wemm wrote: > Don't forget, the pid file is (or might become) an "option" in the > .cf file.. ie: sendmail -o' 'PidFile=/tmp/sendmail.pid. Quite what > Eric has in mind, I am not sure. Ah, right. > I have a vague feeling that the reason for the safefopen() in the first > place was for cases where the pid file was not stored in a "secure" > directory, eg: /tmp, or a generic pid's directory that's mode 1777. Hmm, but as it stands, it's always possible to create this file under /tmp (since it's world-writable). It's possible to store it in such a directory even: d-------wx nobody nobody -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19970323173312.AN02657>