From owner-freebsd-questions Mon Jun 26 13:50: 3 2000 Delivered-To: freebsd-questions@freebsd.org Received: from winconx.com (ns1.winconx.net [208.60.80.2]) by hub.freebsd.org (Postfix) with SMTP id A8B4137BCD7 for ; Mon, 26 Jun 2000 13:49:44 -0700 (PDT) (envelope-from travis@winconx.com) Received: (qmail 90904 invoked from network); 26 Jun 2000 20:54:02 -0000 Received: from dhcp01.winconx.net (HELO travis) (208.60.80.32) by ns1.winconx.net with SMTP; 26 Jun 2000 20:54:02 -0000 Message-ID: <008c01bfdfb0$0c0ed500$20503cd0@travis> From: "Travis Leuthauser" To: Cc: References: Subject: Re: sendmail ownership Date: Mon, 26 Jun 2000 15:49:30 -0500 Organization: DDS Group of Companies MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Permissions for Sendmail on my 3.5 system were: r-sr-xr-x root wheel sendmail Which is correct since the only users that can write to /var/mail/{user's mailbox} are the user themselves and root. Personally, it sounds like a security risk to me though, having sendmail run setuid root. I personally run qmail, which accepts a message for local delivery as root, then spawns a child process running as the local user to deliver the message. Much more secure.. :) Travis Leuthauser Network Administrator DDS Group ----- Original Message ----- From: To: "Alex Charalabidis" Cc: Sent: Monday, June 26, 2000 3:21 PM Subject: Re: sendmail ownership > No, sendmail is not running as nobody. I did however fix the problem by > chmod +s on sendmail. Not sure yet of the implications of doing that so > I'd like to hear some comments. Security risk ??? > > Keith > > ================================= > Keith W. > > At the helm > ================================= > > > On Mon, 26 Jun 2000, Alex Charalabidis wrote: > > > On Mon, 26 Jun 2000 keith@mail.telestream.com wrote: > > > > > I'm getting failures from sendmail that look like this when trying to send > > > mail via a perl script on a mail server. It looks like it's possibly a > > > permisions issue. Anyone with some insight as to why sendmail would do > > > this? > > > > > > Jun 26 11:26:02 bsd sendmail[54205]: e5QIQ2x54205: SYSERR(nobody): > > > collect: Cannot write ./dfe5QIQ2x54205 (bfcommit, uid=65534): Permission denied > > > > > > > > > FreeBSD 4.0-Stable > > > sendmail 8.10 > > > > I'd say you have sendmail running as a user ('nobody' apparently) that > > has no write access to /var/spool/mail. Change its ownership to the > > appropriate user. > > > > hth > > > > -ac > > > > -- > > ============================================================== > > Alex Charalabidis (AC8139) 5050 Poplar Ave, Ste 170 > > Systems Administrator Memphis, TN 38157 > > WebNet Memphis (901) 432 6000 > > Author, The Book of IRC http://www.bookofirc.com/ > > ============================================================== > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message