Mail security
Brad Templeton
bstempleton at watmath.UUCP
Mon Jun 13 17:46:00 AEST 1983
Come on, guys. Mail security is not hard at all.
First of all, ignore that /bin/mail calls delivermail calls /bin/mail -d
This is a kludge of a high order, although not hard to get around, since
you just have to split the two programs.
Delivermail gets no powers. You give the delivery programs the power.
This includes something like /bin/mail -d and uux (on our system uucp is
secure) etc.
Now, if you leave /usr/spool/mail writable so mailers can release
mailboxes, you are of course leaving lots of holes. If, however you
secure it and right a small utility suid to the owner of /usr/spool/mail
that will release the mailbox of getuid() then mailers can call this.
Voila, you are secure.
There is no need to have group permissions or anything else as I
see it. Mind you, why not put the mailbox in the user's directory
(perhaps in a system-files directory if we can ever get one going)
and avoid any problems you imagine.
.
--
Brad Templeton - Waterloo, Ont. (519) 886-7304
More information about the Comp.unix.wizards
mailing list