From owner-freebsd-security Sat Jan 18 17:39:54 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id RAA11482 for security-outgoing; Sat, 18 Jan 1997 17:39:54 -0800 (PST) Received: from maslow.cia-g.com (root@maslow.cia-g.com [206.206.162.5]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id RAA11476 for ; Sat, 18 Jan 1997 17:39:51 -0800 (PST) Received: from maslow.cia-g.com (lithium@maslow.cia-g.com [206.206.162.5]) by maslow.cia-g.com (8.8.4/8.7.3) with SMTP id SAA21325; Sat, 18 Jan 1997 18:39:40 -0700 (MST) Date: Sat, 18 Jan 1997 18:39:40 -0700 (MST) From: Stephen Fisher To: "Sean J. Schluntz" cc: freebsd-security@FreeBSD.ORG, Ollivier Robert Subject: Re: sendmail running non-root SUCCESS! In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I would like to use a mailer which I feel is better designed and programmed (security wise) but.... Since everyone uses Sendmail and everyone is hacking away at it I feel I'm pretty safe. Security problems are fixed quickly and without problems. And it's assumed you're using sendmail: when people work on "anti-spam" things they have sendmail rulesets to do it. Write a new mailer that has the power and functionality of Sendmail without the problems and uses sendmail.cf's format and I'll use it. On Wed, 15 Jan 1997, Sean J. Schluntz wrote: > > Anyone can use any mailer they want, the real discussion has never been to > > choose between one or the other but what should be standard (i.e. in > > /usr/src). > > Just to stick my nose in on this one for a moment. I would in the past, now, > and will continue to vote for sendmail. Just because another projgram is > newer does not mean that it is any easer to crack, it just means that the > holes have not been discovered yet. sendmail is not my favorit to work on, > but I will never trade it for anything else.