From owner-freebsd-security  Thu Nov  2  5:59: 6 2000
Delivered-To: freebsd-security@freebsd.org
Received: from peitho.fxp.org (peitho.fxp.org [209.26.95.40])
	by hub.freebsd.org (Postfix) with ESMTP id 9F76737B4C5
	for <freebsd-security@freebsd.org>; Thu,  2 Nov 2000 05:59:04 -0800 (PST)
Received: by peitho.fxp.org (Postfix, from userid 1501)
	id 25D8D1360E; Thu,  2 Nov 2000 08:59:08 -0500 (EST)
Date: Thu, 2 Nov 2000 08:59:07 -0500
From: Chris Faulhaber <jedgar@fxp.org>
To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
Cc: freebsd-security@freebsd.org
Subject: Re: vulnerability in mail.local (fwd)
Message-ID: <20001102085907.C5928@peitho.fxp.org>
Mail-Followup-To: Chris Faulhaber <jedgar@fxp.org>,
	Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>,
	freebsd-security@freebsd.org
References: <200011021341.eA2DfuZ34050@cwsys.cwsent.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <200011021341.eA2DfuZ34050@cwsys.cwsent.com>; from Cy.Schubert@uumail.gov.bc.ca on Thu, Nov 02, 2000 at 05:41:49AM -0800
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Thu, Nov 02, 2000 at 05:41:49AM -0800, Cy Schubert - ITSD Open Systems Group wrote:
> Looks like we could be vulnerable too.
> 

mail.local(8) is not longer suid by default.

-- 
Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org
--------------------------------------------------------
FreeBSD: The Power To Serve   -   http://www.FreeBSD.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message