[1095] in linux-security and linux-alert archive
[linux-security] sendmail w/o suid root?
daemon@ATHENA.MIT.EDU (Roscinante)
Tue Aug 27 12:56:22 1996
Date: Mon, 26 Aug 1996 12:32:32 -0400 (EDT)
From: Roscinante <rosc@fbn.globalent.net>
To: Linux-security <linux-security@tarsier.cv.nrao.edu>
I've been looking for info on a couple of things, which I haven't found:
How to config sendmail so suid root isn't needed (will it run correctly if
it's suid mail/sgid mail or bin?)
And, how to configure inetd daemons as non-root?
Are there any that MUST be suid root??
Any info 'preciated :)
[REW: I doubt that you can configure sendmail to not need root.
Telnet uses login to change the uid, so it needs the suid bit on login
or it needs to be run as root itself. Suff like rshd, ftpd, rshd,
rlogind, popd, will need to change the uid to the final user. They
need root for that. I think finger should be run as nobody. I think
imap is similar to popd. I think this covers just about all the
services in MY inetd.conf, so there is very little room for
improvement.]
~~
All that is gold does not glitter.. .
Not all those who wander are lost..J.R.R.T. . /\ .
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ._____// \\_____.
And the knowledge that they fear . \\ Rush // .
is a weapon to be held against them.. N.P. . \\ 2112 // .
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ . // /\ \\ .
Ghost in the Machine (wraith@styx.ios.com) I[[[[[[[[]]]]]]]]I
Roscinante (rosc@fbn.globalent.net)
http://www.globalent.net/users/fbn