From owner-freebsd-security Wed Jan 8 01:50:08 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id BAA23957 for security-outgoing; Wed, 8 Jan 1997 01:50:08 -0800 (PST) Received: from pdx1.world.net (pdx1.world.net [192.243.32.18]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id BAA23949 for ; Wed, 8 Jan 1997 01:50:06 -0800 (PST) From: proff@suburbia.net Received: from suburbia.net (suburbia.net [203.4.184.1]) by pdx1.world.net (8.7.5/8.7.3) with SMTP id BAA20064 for ; Wed, 8 Jan 1997 01:50:58 -0800 (PST) Received: (qmail 383 invoked by uid 110); 8 Jan 1997 09:49:42 -0000 Message-ID: <19970108094942.382.qmail@suburbia.net> Subject: Re: sendmail running non-root SUCCESS! In-Reply-To: <199701080838.JAA06611@bsd.lss.cp.philips.com> from Guido van Rooij at "Jan 8, 97 09:38:45 am" To: Guido.vanRooij@nl.cis.philips.com (Guido van Rooij) Date: Wed, 8 Jan 1997 20:49:42 +1100 (EST) Cc: security@freebsd.org X-Mailer: ELM [version 2.4ME+ PL28 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > Other notes, i believe all .forward and related files need to be readable > > by the user daemon. I also recommend using tcp_wrappers for logging > > because in /var/log/maillog the relay will show up as localhost because of > > the redirection. > > > > Any comments? > > Yes. A program in a .forward will need to be executed under uid user. How > is sendmail going to do that if it is not suid root? > > -Guido > qmail qmail qmail http://www.qmail.org -Julian