From owner-freebsd-security  Mon May  6 09:46:20 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id JAA24011
          for security-outgoing; Mon, 6 May 1996 09:46:20 -0700 (PDT)
Received: from ibp.ibp.fr (ibp.ibp.fr [132.227.60.30])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id JAA23791
          for <security@freebsd.org>; Mon, 6 May 1996 09:43:41 -0700 (PDT)
Received: from blaise.ibp.fr (blaise.ibp.fr [132.227.60.1])
	by ibp.ibp.fr (8.6.12/jtpda-5.0) with ESMTP id SAA04697
	; Mon, 6 May 1996 18:42:21 +0200
Received: from (uucp@localhost)
	by blaise.ibp.fr (8.6.12/jtpda-5.0) with UUCP id SAA08160
	; Mon, 6 May 1996 18:42:30 +0200
Received: (from roberto@localhost) by keltia.freenix.fr (8.7.5/keltia-uucp-2.7) id IAA23833; Mon, 6 May 1996 08:44:12 +0200 (MET DST)
From: Ollivier Robert <roberto@keltia.freenix.fr>
Message-Id: <199605060644.IAA23833@keltia.freenix.fr>
Subject: Re: sendmail
To: trost@cloud.rain.com (Bill Trost)
Date: Mon, 6 May 1996 08:44:11 +0200 (MET DST)
Cc: tbalfe@tioga.com, security@freebsd.org
In-Reply-To: <m0uGIS5-00002MC@cloud.rain.com> from Bill Trost at "May 5, 96 10:03:15 pm"
X-Operating-System: FreeBSD 2.2-CURRENT ctm#1948
X-Mailer: ELM [version 2.4ME+ PL16 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

It seems that Bill Trost said:
> However, if the sendmail is not doing any local delivery, then

Sendmail never  does local delivery  itself.  It  always  pass the mail  to
mail.local or procmail...

> You might get away with making sendmail only setgid to a user
> capable of writing the files in /var/mail, but that gets really
> strange and you still lose deliveries to pipes.

Won't make a difference. Sendmail in CURRENT is  already not setgid anymore
as the method of getting the load avg is now sysctl(3). 
 
> WARNING: I have not tried this with sendmail, but have successfully
> run smail non-root on a machine with no local mailboxes.

Smail   does local delivery  itself  if I remember   well (I've switched to
sendmail since 8.2...).
-- 
Ollivier ROBERT    -=- The daemon is FREE! -=-    roberto@keltia.freenix.fr
FreeBSD keltia.freenix.fr 2.2-CURRENT #14: Tue Apr 30 21:08:35 MET DST 1996