[237] in Info-AFS_Redistribution
Re: /usr/spool/mail
daemon@ATHENA.MIT.EDU (Bob Andrews)
Mon Jul 22 16:13:39 1991
From: bob@ibmpa.awdpa.ibm.com (Bob Andrews)
To: jfwang@ralvm31.vnet.ibm.com
Date: Mon, 22 Jul 91 11:56:34 PDT
Cc: info-afs@transarc.com
In-Reply-To: <Added.IcWlRk=0Bi81E_iE9V@transarc.com>; from "jfwang@ralvm31.vnet.ibm.com" at Jul 22, 91 1:34 pm
jfwang@ralvm31.vnet.ibm.com writes:
> Date: Mon, 22 Jul 91 13:34:31 EDT
> From: jfwang@ralvm31.vnet.ibm.com
> To: info-afs@transarc.com
> Subject: /usr/spool/mail
>
> We have problem setting up /usr/spool/mail directory under AFS.
> The problem is with the setuid part of bellmail or sendmail
> which actually put mails into /usr/spool/mail. Once the setuid is
> set to root, it is mapped to nobody by AFS. Unless we change the
> ACL of /usr/spool/mail to allow system:anyuser to read/write files
> mails can't be delivered. But doing that means anyone can read
> mails not belong to him/herself.
>
> We were told by Transarc several sites reported this problem. They
> suggest we post the question here. We don't want to use Andrew
> message system, or whatever the name is. Any other suggestion is
> deeply appreciated.
>
If a user has gotten him/herself authenticated without ever having done
a setpag() (simply running klog w/o running pagsh), then the tokens are
based on the uid, and not the pag. This will tend to break setuid
programs as they run under a different uid.
Bob
