Date: Wed, 03 Nov 1999 11:43:17 +0000 From: Adam Laurie <adam@algroup.co.uk> To: matt@sevenone.com Cc: freebsd-security@FreeBSD.ORG Subject: Re: Sendmail options, what's more secure? Message-ID: <38201FD5.89EAAD09@algroup.co.uk> References: <3820051F.B2BAAF89@sevenone.com>
next in thread | previous in thread | raw e-mail | index | archive | help
matt baker wrote: > > Hello, > > I'm currently setting up a firewall that's using FreeBSD 3.x, and > sendmail 8.9.3. > The machine itself doesn't need to receive any mail, but will be passing > it onto several other machines internal to the firewall (2 nic card design). > > Given this setup, I was wondering about the merits of either: > > 1. Using the RunAsUser option, setting the mqueue directory to be owned > by this user, and also setting /etc/mail/aliases and similar files to be > also owned by this user or group writable. It's this later part that > I'm not keen on. > > 2. Running sendmail as root, but chrooted to a certain area using the > SafeFileEnvironment option. Does this mean I have to place the mqueue > and other config files in this area also? A popular alternative is qmail... http://www.qmail.org/ cheers, Adam -- Adam Laurie Tel: +44 (181) 742 0755 A.L. Digital Ltd. Fax: +44 (181) 742 5995 Voysey House Barley Mow Passage http://www.aldigital.co.uk London W4 4GB mailto:adam@algroup.co.uk UNITED KINGDOM PGP key on keyservers To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?38201FD5.89EAAD09>