Date: Mon, 26 Jun 2000 15:37:53 -0500 (CDT) From: Alex Charalabidis <alex@wnm.net> To: keith@mail.telestream.com Cc: freebsd-questions@FreeBSD.ORG Subject: Re: sendmail ownership Message-ID: <Pine.BSF.4.21.0006261528190.1729-100000@earth.wnm.net> In-Reply-To: <Pine.LNX.4.10.10006261319550.13614-100000@mail.telestream.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 26 Jun 2000 keith@mail.telestream.com wrote: > No, sendmail is not running as nobody. I did however fix the problem by > chmod +s on sendmail. Not sure yet of the implications of doing that so > I'd like to hear some comments. Security risk ??? > Sendmail is 4755 by default, so the problem was the missing setuid bit to begin with. Security risk? Of course it is by definition a break-in waiting to happen, never mind that many people choose to live with the risk. If you want to be paranoid, you'll run sendmail as a non-root user, unless you change MTAs altogether. hth -ac -- ============================================================== Alex Charalabidis (AC8139) 5050 Poplar Ave, Ste 170 Systems Administrator Memphis, TN 38157 WebNet Memphis (901) 432 6000 Author, The Book of IRC http://www.bookofirc.com/ ============================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0006261528190.1729-100000>