Michael J. Corrigan <corrigan@ucsd.edu> says:
>1 sendmail hacking point !
>Also there may the problem that the -oQ option will cause sendmail (v8)
>to drop root privileges therefore the queue directory used for this must
>be writable by group DefGid (from sendmail.cf) or the group that the
>queuing is done under, and also sendmail will refuse to deliver the
>messages because they will no longer be owned by root (qf->Qf) so the
>cron job needs to chown the files back to root before they are processed.
>
Unless I misunderstand what you're saying, I don't think this is a good
idea. Here's the problem. Since sendmail believes it is the only
program writing files to the mail queue, it implicitly trusts the
content of those files. Sendmail runs as root. Changing the
permissions on the queue directory which might allow people to write
bogus files in there is definitely a bad idea-- doing this lets people
easily gain unauthorized privileges on your system. Changing the owner
of any files in the queue from non-root to root is even worse.
Regards,
Tom.III
----------------------------------------------------------------
Thomas Dwyer III Email: tomiii@mtu.edu
Systems Programmer Voice: (906) 487-2112
Computing Technology Services Fax: (906) 487-2787
Michigan Technological University VHF/UHF: N8MHF
References:
|
|
