From owner-freebsd-hackers Sat Nov 23 13:30:10 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id NAA14196 for hackers-outgoing; Sat, 23 Nov 1996 13:30:10 -0800 (PST) Received: from rover.village.org (rover.village.org [204.144.255.49]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id NAA14185 for ; Sat, 23 Nov 1996 13:30:03 -0800 (PST) Received: from rover.village.org [127.0.0.1] by rover.village.org with esmtp (Exim 0.56 #1) id E0vRPdB-0003Vq-00; Sat, 23 Nov 1996 14:28:57 -0700 To: Marc Slemko Subject: Re: non-root users binding to ports < 1024 (was: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2).) Cc: Mark Newton , Peter Childs , freebsd-hackers@freebsd.org, miff@spam.frisbee.net.au In-reply-to: Your message of "Fri, 22 Nov 1996 22:56:54 MST." References: Date: Sat, 23 Nov 1996 14:28:57 -0700 From: Warner Losh Message-Id: Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk In message Marc Slemko writes: : This thread started in freebsd-security earlier in the week; it : evolved from a discussion of the reasons why sendmail runs as root. : The basic suggestion was to implement some system of allowing the : specification of what non-root users could bind to what ports below : 1024. I am moving it to -hackers since the response in -security : has been limited and it possibly involves issues related to a common : interface similar to sysctl. The other reason that sendmail needs to run as root is to fork of user shells on mail delivery. Has there been any thought as to how to solve that problem? It was ignored while this thread was going on in -security, and should not be ignored. I tried to make this point, but no body was listening to me there, or so it appeared. This is an absolute requirement for a mail system based on sendmail. While I think it is maybe useful to allow binding to port 1024 to non-root programs, it is also potentially dangerous and should only be entered into if you are sure that there are *NO* holes possible. Warner