Date: Mon, 26 Jun 2000 15:49:30 -0500 From: "Travis Leuthauser" <travis@winconx.com> To: <keith@mail.telestream.com> Cc: <freebsd-questions@freebsd.org> Subject: Re: sendmail ownership Message-ID: <008c01bfdfb0$0c0ed500$20503cd0@travis> References: <Pine.LNX.4.10.10006261319550.13614-100000@mail.telestream.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Permissions for Sendmail on my 3.5 system were:
r-sr-xr-x root wheel sendmail
Which is correct since the only users that can write to /var/mail/{user's
mailbox} are the user themselves and root. Personally, it sounds like a
security risk to me though, having sendmail run setuid root. I personally
run qmail, which accepts a message for local delivery as root, then spawns a
child process running as the local user to deliver the message. Much more
secure.. :)
Travis Leuthauser
Network Administrator
DDS Group
----- Original Message -----
From: <keith@mail.telestream.com>
To: "Alex Charalabidis" <alex@wnm.net>
Cc: <freebsd-questions@FreeBSD.ORG>
Sent: Monday, June 26, 2000 3:21 PM
Subject: Re: sendmail ownership
> No, sendmail is not running as nobody. I did however fix the problem by
> chmod +s on sendmail. Not sure yet of the implications of doing that so
> I'd like to hear some comments. Security risk ???
>
> Keith
>
> =================================
> Keith W.
>
> At the helm <for better or worse>
> =================================
>
>
> On Mon, 26 Jun 2000, Alex Charalabidis wrote:
>
> > On Mon, 26 Jun 2000 keith@mail.telestream.com wrote:
> >
> > > I'm getting failures from sendmail that look like this when trying to
send
> > > mail via a perl script on a mail server. It looks like it's possibly a
> > > permisions issue. Anyone with some insight as to why sendmail would do
> > > this?
> > >
> > > Jun 26 11:26:02 bsd sendmail[54205]: e5QIQ2x54205: SYSERR(nobody):
> > > collect: Cannot write ./dfe5QIQ2x54205 (bfcommit, uid=65534):
Permission denied
> > >
> > >
> > > FreeBSD 4.0-Stable
> > > sendmail 8.10
> >
> > I'd say you have sendmail running as a user ('nobody' apparently) that
> > has no write access to /var/spool/mail. Change its ownership to the
> > appropriate user.
> >
> > hth
> >
> > -ac
> >
> > --
> > ==============================================================
> > Alex Charalabidis (AC8139) 5050 Poplar Ave, Ste 170
> > Systems Administrator Memphis, TN 38157
> > WebNet Memphis (901) 432 6000
> > Author, The Book of IRC http://www.bookofirc.com/
> > ==============================================================
> >
> >
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?008c01bfdfb0$0c0ed500$20503cd0>