anonymous messages


Craig Finseth (fin@uf.msc.umn.edu)
Wed, 9 Nov 88 09:34:52 CST


With the large number of workstations, personal computers, and other
hosts outside of the control of "official, responsible" (note the
quotes) people, you already *must* assume that *all* mail is suspect.

Requiring sendmail to send on a privileged port would force it to run
as setuid root. There are several efforts to collect the parts of
sendmail that must run privileged (in particular, opening the port to
listen on) into the initialization code, then have sendmail downgrade
itself to enhance security. Your proposal is in conflict with those
efforts.

Unfortunately, security is a multidimensional problem and it isn't
possible to always win across all dimensions. *sigh*

Craig A. Finseth fin@uc.msc.umn.edu [CAF13]
Minnesota Supercomputer Center, Inc. (612) 624-3375



This archive was generated by hypermail 2.0b3 on Thu Mar 09 2000 - 14:44:29 GMT