Path: utzoo!attcan!uunet!wyse!vsi1!ames!mailrus!cornell!rochester!rutgers!att!icus!lenny
From: lenny@icus.islp.ny.us (Lenny Tropiano)
Newsgroups: comp.sources.bugs
Subject: Re: smail 2.5 bug
Message-ID: <515@icus.islp.ny.us>
Date: 9 Oct 88 05:06:10 GMT
References: <2800010@kailand> <2800011@kailand>
Reply-To: lenny@icus.islp.ny.us (Lenny Tropiano)
Organization: ICUS Software Systems, Islip, New York
Lines: 29

In article <2800011@kailand> pwolfe@kailand.KAI.COM writes:
|>
|>oops.
|>
|>When I upgraded from smail v2.3 to v2.5, I must have accidentally munged the
|>permissions on the logfile (/usr/spool/uucp/mail.log).  Apparently, that file
|>needs to be world writable for outgoing mail to be logged.  Everything works
|>now.
|>
|>Patrick Wolfe
|>Patrick.Wolfe@kailand.kai.com  -or-  kailand!Patrick.Wolfe

It doesn't have to be world writable.  In fact if it was, anyone could
just clear it out (what good would logging messages do then).  I would
make the file owned by group "mail" (or some equivalent), and make smail/rmail
run as a setgid program to mail.

# chown mail /usr/spool/uucp/mail.log /bin/smail
# chmod 660  /usr/spool/uucp/mail.log
# chmod 2711 /bin/smail

This is much more secure.

-Lenny
-- 
Lenny Tropiano             ICUS Software Systems       [work] +1 (516) 582-5525
lenny@icus.islp.ny.us      Telex; 154232428 ICUS       [home] +1 (516) 968-8576
{talcott,boulder,hombre,pacbell,sbcs}!icus!lenny       attmail!icus!lenny
        ICUS Software Systems -- PO Box 1; Islip Terrace, NY  11752