[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: mail.local vs. Smail3

To: Louis Bertrand <louis@signalpath.on.ca>
Subject: Re: mail.local vs. Smail3
From: stanislav shalunov <shalunov@websci.com>
Date: Mon, 04 Jan 1999 15:15:30 -0500
CC: OpenBSD Misc List <misc@openbsd.org>
Organization: WebSci Technologies
References: <Pine.BSF.4.03.9901041445410.17158-100000@tronix.signalpath.on.ca>

Louis Bertrand wrote:

> The way to do this is to patch mail.local to first check gid against 
> the mail gid (if so, /var/mail is gid=mail) or revert to the
> must-run-as-root behaviour.

Why not remove the stupid check altogether?  These "if (uid!=0)"
add *no* security value and are just annoyance.  Just open the
mailbox for appending; if open() fails, say why and exit with
an appropriate error code.

Follow-Ups:
- Re: mail.local vs. Smail3
  - From: "Todd C. Miller" <Todd.Miller@courtesan.com>

References:
- mail.local vs. Smail3
  - From: Louis Bertrand <louis@signalpath.on.ca>

Prev by Date: Re: mail.local vs. Smail3
Next by Date: Re: mail.local vs. Smail3
Prev by thread: Re: mail.local vs. Smail3
Next by thread: Re: mail.local vs. Smail3
Index(es):
- Date
- Thread