From owner-freebsd-questions Mon Jun 26 13:34:26 2000 Delivered-To: freebsd-questions@freebsd.org Received: from earth.wnm.net (earth.wnm.net [208.246.240.243]) by hub.freebsd.org (Postfix) with ESMTP id BD84937B695 for ; Mon, 26 Jun 2000 13:34:14 -0700 (PDT) (envelope-from alex@wnm.net) Received: from localhost (alex@localhost) by earth.wnm.net (8.11.0.Beta1/8.11.0.Beta1) with ESMTP id e5QKbrO45945; Mon, 26 Jun 2000 15:37:53 -0500 (CDT) Date: Mon, 26 Jun 2000 15:37:53 -0500 (CDT) From: Alex Charalabidis To: keith@mail.telestream.com Cc: freebsd-questions@FreeBSD.ORG Subject: Re: sendmail ownership In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, 26 Jun 2000 keith@mail.telestream.com wrote: > No, sendmail is not running as nobody. I did however fix the problem by > chmod +s on sendmail. Not sure yet of the implications of doing that so > I'd like to hear some comments. Security risk ??? > Sendmail is 4755 by default, so the problem was the missing setuid bit to begin with. Security risk? Of course it is by definition a break-in waiting to happen, never mind that many people choose to live with the risk. If you want to be paranoid, you'll run sendmail as a non-root user, unless you change MTAs altogether. hth -ac -- ============================================================== Alex Charalabidis (AC8139) 5050 Poplar Ave, Ste 170 Systems Administrator Memphis, TN 38157 WebNet Memphis (901) 432 6000 Author, The Book of IRC http://www.bookofirc.com/ ============================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message