Date: Fri, 11 Apr 1997 17:52:20 -0500 (EST) From: pgiffuni@fps.biblos.unal.edu.co To: "Jordan K. Hubbard" <jkh@time.cdrom.com> Cc: hackers@freebsd.org Subject: Re: on the subject of changes to -RELEASEs... Message-ID: <Pine.A41.3.95.970411173738.36236A-100000@fps.biblos.unal.edu.co> In-Reply-To: <20865.860782035@time.cdrom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 11 Apr 1997, Jordan K. Hubbard wrote:
> > Besides, you can burn yourself with this feature when you make a
> > change to the /etc/xxx file and forget to disable writing to it...
>
> I think the idea would be that you'd be discouraged from writing
> changes there. There is precedent - you're technically not supposed
> to modify your sendmail.cf, for example, but rather build it from
> source using the convenient feature macros.
>
> Jordan
Speaking of which.....
Looking into /etc/sendmail.cf (2.2-Release),It reads:
_____________
Mprog, P=/bin/sh, F=lsDFMoqeu9, S=10/30, R=20/40, D=$z:/,
T=X-Unix,
A=sh -c $u
_____________
I have not heard of cracking attempts to sendmail RECENTLY, but it IS
recommended to use smrsh (included with sendmail) on all versions. Why
aren't we including this? (yes, there is a macro to do this)
I always end up hand editing this, not to mention that I also add a mail
user without privileges to avoid running sendmail as root.
--Pedro.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.A41.3.95.970411173738.36236A-100000>