[128] in Release_7.7_team
Re: Sendmail vulnerability
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Fri Jul 15 23:03:50 1994
Date: Fri, 15 Jul 94 23:03:04 EDT
From: tytso@MIT.EDU (Theodore Ts'o)
To: Marc Horowitz <marc@MIT.EDU>
Cc: Matt Braun <mhbraun@MIT.EDU>, holes@MIT.EDU, release-77@MIT.EDU
In-Reply-To: Marc Horowitz's message of Fri, 15 Jul 94 20:34:57 EDT,
<9407160034.AA14843@deathtongue.MIT.EDU>
Date: Fri, 15 Jul 94 20:34:57 EDT
From: Marc Horowitz <marc@MIT.EDU>
>> As I see it we have 3 choices:
There's a fourth choice. Put a setuid /usr/athena/lib/sendmail in the
release, based on sendmail 8.6.9. Use it for everything. Put the
vendor version in the release, non-setuid. Have mkserv mail or
whatever ask the user which sendmail to use, and have an rc.conf
variable to indicate which one should be used. This way, normal
machines are secure, admins who don't hack them mail conf are secure,
and people can choose to use a less-trusted sendmail if they really
want to.
The problem with sendmail 8.6.9 is that it isn't completely compatible
with sendmail 5.61 --- not all old sendmail.cf files will work with
sendmail 8.
- Ted