From owner-freebsd-hackers Mon Apr 22 09:52:16 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id JAA17134 for hackers-outgoing; Mon, 22 Apr 1996 09:52:16 -0700 (PDT) Received: from Root.COM (implode.Root.COM [198.145.90.17]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id JAA17123 for ; Mon, 22 Apr 1996 09:52:13 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by Root.COM (8.7.5/8.6.5) with SMTP id PAA00388; Sun, 28 Apr 1996 15:51:41 -0700 (PDT) Message-Id: <199604282251.PAA00388@Root.COM> X-Authentication-Warning: implode.Root.COM: Host localhost [127.0.0.1] didn't use HELO protocol To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch) cc: freebsd-hackers@freebsd.org (FreeBSD hackers), henrich@crh.cl.msu.edu (Charles Henrich) Subject: Re: .forward and sendmail? In-reply-to: Your message of "Mon, 22 Apr 1996 07:44:27 +0200." <199604220544.HAA18025@uriah.heep.sax.de> From: David Greenman Reply-To: davidg@Root.COM Date: Sun, 28 Apr 1996 15:51:41 -0700 Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk >As Charles Henrich wrote: > >> Explain to me how exactly sendmail is supposed to read .forward's >> out of peoples directories, when it apparently runs as daemon? I >> have had zero luck with this unless the directories are world read, >> as well as the .forward, this is unusual! What am I missing here? > >I think it must be readable by `daemon' (and i would even call this a >security feature, as opposed to reading the file with root >privileges). Of course, your directory doesn't need to be readable by >`daemon', it's sufficient if it is _search_able by him (e.g.., >drwxr-x--x). sendmail is _supposed_ to run as suid root: -r-sr-xr-x 3 root bin 245760 Mar 28 23:02 /usr/sbin/sendmail -DG David Greenman Core-team/Principal Architect, The FreeBSD Project