From owner-freebsd-current@FreeBSD.ORG  Mon Feb 24 15:01:56 2014
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: current@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 424288F7;
 Mon, 24 Feb 2014 15:01:56 +0000 (UTC)
Received: from zxy.spb.ru (zxy.spb.ru [195.70.199.98])
 by mx1.freebsd.org (Postfix) with ESMTP id EF39A10B7;
 Mon, 24 Feb 2014 15:01:54 +0000 (UTC)
Received: from slw by zxy.spb.ru with local (Exim 4.69 (FreeBSD))
 (envelope-from <slw@zxy.spb.ru>)
 id 1WHx2Y-0005CK-AB; Mon, 24 Feb 2014 19:01:54 +0400
Date: Mon, 24 Feb 2014 19:01:54 +0400
From: Slawa Olhovchenkov <slw@zxy.spb.ru>
To: Baptiste Daroussin <bapt@FreeBSD.org>
Subject: Re: Import of DragonFly Mail Agent
Message-ID: <20140224150154.GJ15848@zxy.spb.ru>
References: <20140223211155.GS1699@ithaqua.etoilebsd.net>
 <20140224141737.GA15581@zxy.spb.ru>
 <20140224143013.GD83610@ithaqua.etoilebsd.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20140224143013.GD83610@ithaqua.etoilebsd.net>
User-Agent: Mutt/1.5.21 (2010-09-15)
X-SA-Exim-Connect-IP: <locally generated>
X-SA-Exim-Mail-From: slw@zxy.spb.ru
X-SA-Exim-Scanned: No (on zxy.spb.ru); SAEximRunCond expanded to false
Cc: current@FreeBSD.org
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current/>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Feb 2014 15:01:56 -0000

On Mon, Feb 24, 2014 at 03:30:14PM +0100, Baptiste Daroussin wrote:

> On Mon, Feb 24, 2014 at 06:17:37PM +0400, Slawa Olhovchenkov wrote:
> > On Sun, Feb 23, 2014 at 10:11:56PM +0100, Baptiste Daroussin wrote:
> > 
> > > As some of you may have noticed, I have imorted a couple of days ago dma
> > > (DragonFly Mail Agent) in base. I have been asked to explain my motivation so
> > > here they are.
> > 
> > What's about suid, security separations & etc?
> 
> What do you mean? dma is changing user as soon as possible, dma will be
> capsicumized, what else do you want as informations?

sendmail (in the past) have same behaviour (run as root and chage
user).
This is some security risk.
For many  scenario change user is not simple (for example -- send file
from local user A to local user B, file with permsion 0400).
sendmail will be forced to change behaviour -- mailnull suid program
for place mail into queue and root daemon for deliver to user.
This is more complex.
Can be dma avoid this way?