Date: Mon, 25 Feb 2002 16:11:02 +0100 From: Cliff Sarginson <csfbsd@raggedclown.net> To: freebsd-security@FreeBSD.ORG Subject: Re: Why procmail port installed with SUID root? Message-ID: <20020225151102.GA6292@raggedclown.net> In-Reply-To: <95519839649.20020225104332@mgul.ac.ru> References: <95519839649.20020225104332@mgul.ac.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Feb 25, 2002 at 10:43:32AM +0300, Andrey V. Pevnev wrote:
> Hello!
>
> Does anybody knows why procmail-3.22 port installed with SUID root by
> default? I'am using it as MDA from sendmail-8.12.2
> (FEATURE(`local_procmail')), and it works fine without SUID (I've
> chmod'ed it to 555).
> I think that it's better to install it without SUID by default (as
> mail.local) to make system more secure.
>
-d recipient ...
This turns on explicit delivery mode, delivery will
be to the local user recipient. This, of course,
only is possible if procmail has root privileges (or
if procmail is already running with the recipient's
euid and egid). Procmail will setuid to the intended
recipients and delivers the mail as if it were
invoked by the recipient with no arguments (i.e., if
no rcfile is found, delivery is like ordinary mail).
This option is incompatible with -p.
--
Regards
Cliff Sarginson -- <csfbsd@raggedclown.net>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020225151102.GA6292>