Date: Sat, 22 Jun 2002 00:14:43 -0500 From: Sean Kelly <smkelly@zombie.org> To: twig les <twigles@yahoo.com> Cc: Darren Pilgrim <dmp@pantherdragon.org>, "Kevin Kinsey, DaleCo, S.P." <kdk@daleco.biz>, Mark Hartley <mark@work.drapple.com>, security@FreeBSD.ORG Subject: Re: Possible security liability: Filling disks with junk or spam Message-ID: <20020622051443.GA31072@edgemaster.zombie.org> In-Reply-To: <20020622045559.41921.qmail@web10106.mail.yahoo.com> References: <3D13FFB2.39A80570@pantherdragon.org> <20020622045559.41921.qmail@web10106.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jun 21, 2002 at 09:55:59PM -0700, twig les wrote: > When I asked if it would break something to forward > those accounts' mail to /dev/null instead of root, I > meant: do those psuedo-users actually send anything > via mail or everything via syslog? Excuse the strange > question, I'm a psuedo-admin (aka user). Having a username aliased to /dev/null doesn't affect the transmission of mail from that user. Even if there is a daemon that sends mail as that user, the mail will be delivered. The problem arises when there is important incoming mail, such as bounces and errors or alerts. Whether a specific pseudo-user needs to receive mail depends on your particular configuration and needs. If I were running a news server, I'd want to receive mail sent to news@. > --- Darren Pilgrim <dmp@pantherdragon.org> wrote: > > "Kevin Kinsey, DaleCo, S.P." wrote: > > > > > > Better yet, comment out the lines in /etc/aliases, > > > which will cause the mail to be returned > > > since that user won't exist. > > > > > > Why increase the spam traffic by the use > > > of the bitbucket? If the mail doesn't come > > > back they just keep sending...... > > > > Without the aliases(5) entries, the mail will be > > delivered to local > > mailboxes for those pesudo-users, eventually filling > > the disk if you > > don't monitor disk usage. This was precisely the > > problem for Brett's > > client. IMO the proper way to handle this is to use > > an MTA that has > > some kind of access-control mechanism to restrict > > mail delivery to > > non-user accounts in addition to having a forwarding > > mechanism for > > them. > > > ===== > ----------------------------------------------------------- > Only fools have all the answers. > ----------------------------------------------------------- > > __________________________________________________ > Do You Yahoo!? > Yahoo! - Official partner of 2002 FIFA World Cup > http://fifaworldcup.yahoo.com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message -- Sean Kelly | PGP KeyID: 77042C7B smkelly@zombie.org | http://www.zombie.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020622051443.GA31072>