[plug] problems with sendmail

Evan Lau evanlau at tartarus.uwa.edu.au
Sun Aug 5 18:17:54 WST 2001 

Hi guys again,

I tried to solution provided by both Brian and Leon (using chmod/chown
on the .forward file) but there was no success. I had to put these two lines
in the sendmail.cf file:

O DontBlameSendmail=MapInUnsafeDirPath,ForwardFileInGroupWritableDirPath
O UnsafeGroupWrites=True

And this works. But of course, all you out there will know that this ends
up compromising system security. This will work for now but of course
if there's a better solution (especially in terms of security), then I would
love
to be enlightened!

Thanks again guys. I've learnt a lot from this list.

Cheers,
Evan

----- Original Message -----
From: "Brian Tombleson" <brian at paradigmit.com.au>
To: <plug at plug.linux.org.au>
Sent: Saturday, August 04, 2001 8:46 PM
Subject: Re: [plug] problems with sendmail


> The latter versions of sendmail progressively get tighter on their
security.
>
> It's warning you about a possible security hole where .forward files are
> group writable.
>
> Literally, check the permission on the ~teste/.forward file and take make
> sure chmod g-w
>
> HTH.
>
> - Brian.
>
> From: "Evan Lau" <evanlau at tartarus.uwa.edu.au>
> > Something I came about after another person upgraded sendmail on our
> server.
> > Say I send an e-mail to an account "teste" which is supposed to forward
> its mail
> > to account "testf" (which it did before). But now it's staying in
"teste"
> > mailbox and I get these lines in the mail log:
> >
> > Aug  4 16:58:50 abc sendmail[7151]: f748woB07150: forward
> > /u/t/teste/.forward.abc+: Group writable directory
> > Aug  4 16:58:50 abc sendmail[7151]: f748woB07150: forward
> > /u/t/teste/.forward+: Group writable directory
> > Aug  4 16:58:50 abc sendmail[7151]: f748woB07150: forward
> > /u/t/teste/.forward.abc: Group writable directory
> > Aug  4 16:58:50 abc sendmail[7151]: f748woB07150: forward
> > /u/t/teste/.forward: Group writable directory
> > Aug  4 16:58:50 abc sendmail[7151]: f748woB07150:
> to=<teste at abc.xyz.com.au>,
> > ctladdr=<root at abc.xyz.com.au> (0/0), delay=00:00:00, xdelay=00:00:00,
> > mailer=local, pri=30013, dsn=2.0.0, stat=Sent
> >
> > Could anybody help me out?
>
>
>

More information about the plug mailing list