From owner-freebsd-hackers Sat Jul 19 02:38:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA16036 for hackers-outgoing; Sat, 19 Jul 1997 02:38:36 -0700 (PDT) Received: from verdi.nethelp.no (verdi.nethelp.no [195.1.171.130]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id CAA16030 for ; Sat, 19 Jul 1997 02:38:30 -0700 (PDT) From: sthaug@nethelp.no Received: (qmail 15279 invoked by uid 1001); 19 Jul 1997 09:38:25 +0000 (GMT) To: andreas@klemm.gtn.com Cc: hackers@FreeBSD.ORG Subject: Re: sendmail complains about being unable to write his pid file In-Reply-To: Your message of "Fri, 18 Jul 1997 17:27:09 +0200" References: <19970718172709.25620@gtn.com> X-Mailer: Mew version 1.05+ on Emacs 19.28.2 Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Date: Sat, 19 Jul 1997 11:38:25 +0200 Message-ID: <15277.869305105@verdi.nethelp.no> Sender: owner-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Sendmail couldn't write his /var/run/sendmail.pid file. > I saw this behaviour in FreeBSD 2.2.2 and -current. > > I think the newest sendmail version introduces this. > It's important, that every directory is owned by root. > > FreeBSD's /var/run directory permissions are > drwxr-xr-x 2 bin bin 512 Jul 18 17:20 run > > After changing the permissions to: > drwxr-xr-x 2 root bin 512 Jul 18 17:20 run > > everything is fine. So we should fix the installation and > possibly the mtree files as well. > > Any takers ? Any other voices ??? I'm always nervous about directories owned by bin, on the assumption that bin might be easier to break than root, and could then be used as a stepstone to breaking root. So I tend to manually change most system directories to be owned by root. *Why* are so many of the FreeBSD system directories owned by bin in the standard distribution? Steinar Haug, Nethelp consulting, sthaug@nethelp.no