From owner-freebsd-ports  Thu Jul 16 12:39:37 1998
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id MAA01403
          for freebsd-ports-outgoing; Thu, 16 Jul 1998 12:39:37 -0700 (PDT)
          (envelope-from owner-freebsd-ports@FreeBSD.ORG)
Received: from mail.HiWAAY.net (fly.HiWAAY.net [208.147.154.56])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA01397
          for <freebsd-ports@FreeBSD.ORG>; Thu, 16 Jul 1998 12:39:36 -0700 (PDT)
          (envelope-from sprice@hiwaay.net)
Received: from localhost (sprice@localhost)
	by mail.HiWAAY.net (8.9.0/8.9.0) with SMTP id OAA10725;
	Thu, 16 Jul 1998 14:37:50 -0500 (CDT)
Date: Thu, 16 Jul 1998 14:37:50 -0500 (CDT)
From: Steve Price <sprice@hiwaay.net>
To: patl@phoenix.volant.org
cc: Matt Behrens <matt@megaweapon.zigg.com>, imap-uw@freebsd.ady.ro,
        FreeBSD ports <freebsd-ports@FreeBSD.ORG>
Subject: Re: imap-uw security hole -- please update port
In-Reply-To: <ML-3.3.900607823.4619.patl@asimov>
Message-ID: <Pine.OSF.3.96.980716124328.25445A-100000@fly.HiWAAY.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org



On Thu, 16 Jul 1998 patl@phoenix.volant.org wrote:

# > Hey, I won't worry if Matt doesn't. :)  If we don't install
# > the imap tools does that satisfy your requirements Matt or
# > are you expecting them to be installed as part of pine4?
# > If so, would a *_DEPENDS on the imap-uw port work?  Of
# > course its build/install would have to be conditionalized
# > appropriately first of course.
# 
# You absolutely do NOT want to make the pine port depend on the imap-uw
# port; nor do you want it to automatically install the IMAP and POP
# servers that are packaged with it.  Either choice would severely tick
# off those of us who use any other IMAP/POP server package. (Also,
# remember, the pine client may be built and installed on machines that
# will never run a local IMAP or POP daemon.)

Fair enough, I was just asking because if I'm going to be in
there anyway I might as well do this too if it was a desired
feature.  NOTE: however I did say that if it were to be done
that it "would have to be conditionalized appropriately...".
By this I meant that it wouldn't act any different than it does
today unless you did something like this:

	# cd /usr/ports/mail/pine4
	# WANT_IMAP_TOOLS=yes make install

Steve

# Personally, I prefer the Cyrus IMAP server.  Among other things, once
# it has bound to the privileged IMAP port, it gives up root permission.
# Aall deliveries are also run as a specific unprivileged user.  This
# drasticly reduces the severity of any potential security holes.
# 
# 
# 
# -Pat
# 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message