From owner-freebsd-security  Mon Nov 16 10:45:38 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id KAA14231
          for freebsd-security-outgoing; Mon, 16 Nov 1998 10:45:38 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from rover.village.org (rover.village.org [204.144.255.49])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id KAA14213
          for <security@freebsd.org>; Mon, 16 Nov 1998 10:45:27 -0800 (PST)
          (envelope-from imp@village.org)
Received: from harmony [10.0.0.6] 
	by rover.village.org with esmtp (Exim 1.71 #1)
	id 0zfTdH-0001lT-00; Mon, 16 Nov 1998 11:44:15 -0700
Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.1/8.8.3) with ESMTP id LAA05055; Mon, 16 Nov 1998 11:43:36 -0700 (MST)
Message-Id: <199811161843.LAA05055@harmony.village.org>
To: "Jordan K. Hubbard" <jkh@zippy.cdrom.com>
Subject: Re: "Todd C. Miller": sendmail changes in OpenBSD 2.4 
Cc: security@FreeBSD.ORG
In-reply-to: Your message of "Sun, 15 Nov 1998 14:10:34 PST."
		<21235.911167834@zippy.cdrom.com> 
References: <21235.911167834@zippy.cdrom.com>  
Date: Mon, 16 Nov 1998 11:43:35 -0700
From: Warner Losh <imp@village.org>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <21235.911167834@zippy.cdrom.com> "Jordan K. Hubbard" writes:
: Hmmm.  This sounds like a rather large user hit to take, but one less
: suid root executable (and an end to the other problems described
: below) also has strong appeal.  Comments?

Sounds like a good idea to me.  Setuid mail.local has always struck me
as a bad idea, especially one that was world executable.

Warner

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message