The 'Security Digest' Archives (TM)

Archive: About | Browse | Search | Contributions | Feedback
Site: Help | Index | Search | Contact | Notices | Changes

ARCHIVE: 'Phage List' - Archives (1988 - 1989)
DOCUMENT: phage #075 [Re: Disassembled virus?] (1 message, 712 bytes)
SOURCE: http://securitydigest.org/exec/display?f=phage/archive/075.txt&t=text/plain
NOTICE: securitydigest.org recognises the rights of all third-party works.

START OF DOCUMENT

From: Paul A Vixie <vixie@decwrl.dec.com>
To: phage
Date: Sun 03:00:05 06/11/1988 EST
Subject: Re: Disassembled virus?
References: [Thread Prev: 070] [Thread Next: 058] [Message Prev: 074] [Message Next: 078]

# giving F=S will fork mailers setuid root.

My reading of the code and docs for sendmail says that F=S makes it setuid
to the recipient if possible when doing delivery.  The doc says this is
useful if sendmail runs setuid.  I'd say!  But sendmail seems to be setuid
to 1 (daemon) otherwise.  In no case I can find will sendmail deliver
anything or exec anything while it is uid==0 || euid==0. 

# This came up somewhere else where someone (I'll leave him nameless) said
# he was about to send the same comment to me and, upon glancing at his
# sendmail.cf, saw that in fact the S flag was present in at least one mailer..

I'll name him: me.  I checked our .cf and saw that we don't use F=S anywhere
and I asked (this was on another mailing list sorta like this one) whether
anyone anywhere used F=s on Mprog and if not why not.  I repeat the query.

Paul

END OF DOCUMENT