From owner-freebsd-security Sun Jun 9 23:15:57 1996 Return-Path: owner-security Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id XAA22089 for security-outgoing; Sun, 9 Jun 1996 23:15:57 -0700 (PDT) Received: from hemi.com (hemi.com [204.132.158.10]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id XAA22052 for ; Sun, 9 Jun 1996 23:15:51 -0700 (PDT) Received: (from mbarkah@localhost) by hemi.com (8.6.12/8.6.12) id AAA05361; Mon, 10 Jun 1996 00:15:36 -0600 From: Ade Barkah Message-Id: <199606100615.AAA05361@hemi.com> Subject: Re: setuid root sendmail vs. mode 1733 /var/spool/mqueue? To: rgrimes@GndRsh.aac.dev.com (Rodney W. Grimes) Date: Mon, 10 Jun 1996 00:15:35 -0600 (MDT) Cc: freebsd-security@freebsd.org In-Reply-To: <199606100512.WAA15320@GndRsh.aac.dev.com> from "Rodney W. Grimes" at Jun 9, 96 10:12:05 pm X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Rodney Grimes wrote: > On mail hub servers I usually make /tmp and /var/tmp a seperate > partition to avoid this denial of service attack, makeing > /var/spool/mqueue 1733 would open it back up :-(. > > It is impossible to totally close, as the user can mail himself > or someone else a large file, or lots of smaller files :-(. Like /tmp, we have a separate filesystem for /var/mail, and we put the mqueue directory as /var/mail/mqueue (you can either do this by making /var/spool/mqueue a link to /var/mail/mqueue or explicitly in the sendmail.cf file.) | Filesystem 1K-blocks Used Avail Capacity Mounted on | /dev/sd0s2f 127151 6619 110359 6% /tmp | /dev/sd0s2g 127151 18397 98581 16% /var/mail We hope to minimize damage this way in case of a denial of service via mail. Regards, -Ade ------------------------------------------------------------------- Inet: mbarkah@hemi.com - HEMISPHERE ONLINE - -------------------------------------------------------------------