Great Circle Associates Majordomo-Users
(April 1998) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: security of lists in unix system
From: Christopher Lindsey <lindsey @ ncsa . uiuc . edu>
Date: Tue, 28 Apr 1998 08:48:52 -0500 (CDT)
To: tibbs @ hpc . uh . edu (Jason L Tibbitts III)
Cc: oantar @ aecom . yu . edu, majordomo-users @ GreatCircle . COM
In-reply-to: <ufara2jnhty.fsf@sina.hpc.uh.edu> from "Jason L Tibbitts III" at Apr 27, 98 03:13:45 pm 
> OA> I was wondering if it is general majordomo problem on
> OA> how to implement security for the lists, so that only majordomo and
> OA> root can see and write to the lists and config files, and not anyone
> OA> with shell access on the unix computer you are operating the majordomo
> OA> lists on.
> 
> The lists must be world-readable, so that the MTA can see them.  If you
> don't like this, get one of the addons that eliminates this restriction
> (like TLB, do an archive search) or investigate Majordomo 2.0 alpha 1
> (http://www.hpc.uh.edu/majordomo), which also doesn't have this problem.

Can you add the uid that your MTA is running as to the group 'majordomo'?
If running sendmail, check your /etc/sendmail.cf for a DefaultUser
setting; that uid would then be added to the majordomo group.  Then
make sure that everything is set 640.

Haven't thought about this too much; anyone think of any ramifications
to this?

Chris
Follow-Ups:
References:
Indexed By Date Previous: Re: security of lists in unix system
From: Dave Sill <de5@sws5.ctd.ornl.gov>
Next: Re: X-Authentication
From: "Phillip H. Kwon" <PhilKwon@OaksNet.com>
Indexed By Thread Previous: Re: security of lists in unix system
From: Dave Sill <de5@sws5.ctd.ornl.gov>
Next: Re: security of lists in unix system
From: Jason L Tibbitts III <tibbs@hpc.uh.edu>
Google
 
Search Internet Search www.greatcircle.com