From owner-freebsd-questions  Sat Feb  3 18:33:15 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mailhost01.reflexnet.net (mailhost01.reflexnet.net [64.6.192.82])
	by hub.freebsd.org (Postfix) with ESMTP id 27EC537B491
	for <freebsd-questions@freebsd.org>; Sat,  3 Feb 2001 18:32:58 -0800 (PST)
Received: from rfx-216-196-73-168.users.reflexcom.com ([216.196.73.168]) by mailhost01.reflexnet.net  with Microsoft SMTPSVC(5.5.1877.197.19);
	 Sat, 3 Feb 2001 18:31:04 -0800
Received: (from cjc@localhost)
	by rfx-216-196-73-168.users.reflexcom.com (8.11.1/8.11.1) id f142W4952326;
	Sat, 3 Feb 2001 18:32:04 -0800 (PST)
	(envelope-from cjc)
Date: Sat, 3 Feb 2001 18:32:03 -0800
From: "Crist J. Clark" <cjclark@reflexnet.net>
To: Dmitry.Karpov@misa.ac.ru
Cc: edwin@d9168.upc-d.chello.nl, freebsd-questions@FreeBSD.ORG
Subject: Re: root-SetUID for /usr/libexec/mail.local
Message-ID: <20010203183203.O91447@rfx-216-196-73-168.users.reflex>
Reply-To: cjclark@alum.mit.edu
References: <200102031452.f13EqHH17387@titan.misa.ac.ru>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0i
In-Reply-To: <200102031452.f13EqHH17387@titan.misa.ac.ru>; from Dmitry.Karpov@misa.ac.ru on Sat, Feb 03, 2001 at 02:52:17PM +0000
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Sat, Feb 03, 2001 at 02:52:17PM +0000, Dmitry.Karpov@misa.ac.ru wrote:

[snip]

> Sorry, I am very little speak english.
> My problem was: When I install FreeBSD'4.2 on computer,
> my computer can't receive local mail and put it into mailbox.

You have not updated your sendmail.cf.

> I remember, some time ago today-installed FreeBSD don't relay e-mail -
> Ok, I am understand, the reason is spam-danger open mail-relay
> (spammes may use open mial-relay to send spam).
> Does anybody know: why mail.local has no SetUID,
> and F=S flag is absent in local mailer, both?
> Is SetUID for mail.local some "security hole"?

It is a potential security hole. There is no good reason mail.local
needs to be setuid, so why have the extra risk?

> Will SetUID for mail.local in next FreeBSD versions?

No. This was actually a change made in sendmail itself and not just
FreeBSD's distribution of it.
-- 
Crist J. Clark                           cjclark@alum.mit.edu


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message