Date: Mon, 16 Nov 1998 11:47:20 -0700 From: Lyndon Nerenberg <lyndon@esys.ca> To: jkh@zippy.cdrom.com Cc: security@FreeBSD.ORG Subject: Re: "Todd C. Miller": sendmail changes in OpenBSD 2.4 Message-ID: <199811161847.LAA19471@rembrandt.esys.ca> In-Reply-To: <21235.911167834@zippy.cdrom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 15 Nov, Jordan K. Hubbard wrote: > Hmmm. This sounds like a rather large user hit to take, but one less > suid root executable (and an end to the other problems described > below) also has strong appeal. Comments? > ------- Forwarded Message > In 2.4, /usr/libexec/mail.local is no longer setuid, to prevent its > abuse by users (trivial mail forgery, filling up /var/mail, etc). The downside here is that you can't deliver to multiple recipients via LMTP. For busy machines, where a significant portion of your local mail has multiple local RCPT TO's, you lose one of the major benefits of LMTP (multiple recipient delivery with a single fork/exec). It also means mode 777+sticky bit on /var/mail -- a denial of service waiting to happen. My preference would be for a mode 500 mail.local, owned by root, and with sendmail speaking to it via LMTP --lyndon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199811161847.LAA19471>