[8410] in Info-AFS_Redistribution
Re: help!!!
daemon@ATHENA.MIT.EDU (Kelsang Wangden)
Thu Jan 11 11:13:17 2001
From: Kelsang Wangden <wngdn@src.uchicago.edu>
Date: Thu, 11 Jan 2001 09:19:29 -0600
To: David Thompson <thomas@cs.wisc.edu>
Cc: Marcus Watts <mdw@umich.edu>, info-afs@transarc.com
Message-ID: <20010111091929.A2037@src.uchicago.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200012121758.LAA21697@pongo.cs.wisc.edu>; from thomas@cs.wisc.edu on Tue, Dec 12, 2000 at 11:58:47AM -0600
David Thompson <thomas@cs.wisc.edu> wrote:
> Marcus Watts wrote:
> >
> >I find myself curious as to how these sites that presumably keep pop
> >mailboxes in AFS handle mail forwarding. Do you handle mail forwarding
> >on the pop servers? Do you allow programs, such as procmail and
> >vacation? How do you handle AFS tokens and pags for such programs? If
> >you haven't thought about this, and are using sendmail or something
> >similar, what happens if a user creates a .forward in their home
> >directory? Is it honored?
> We pretty much punt on this, because allowing users to run arbitrary
> commands on the pop server would get us into an arbitrary load
> ("Let's see, if I change my .forward to run this _really big_
> compile and send myself an email..." Don't laugh. Things like this
> happen).
(This email was a good month ago, but I'm just catching up on info-afs.)
If you're running sendmail, and you use smrsh, you get to restrict
very tightly the commands that a .forward or an alias can run. We
allow procmail, majordomo's wrapper, and /bin/sh (just kidding on the
last one). Smrsh has a bunch of other security safeguards for
.forward files which makes it one nice tool. It comes with sendmail.
Regards,
Wangden