Re: MTAs

To: Marcin Owsiany <porridge@debian.org>
Cc: <debian-security@lists.debian.org>
Subject: Re: MTAs
From: Juha Jäykkä <juolja@utu.fi>
Date: Mon, 19 Nov 2001 08:39:17 +0200 (EET)
Message-id: <[🔎] Pine.SOL.4.30.0111190834490.11029-100000@alya.utu.fi>
In-reply-to: <[🔎] 20011118150546.A1801@melina.ds14.agh.edu.pl>

> I don't know much about exim's guts, but is there a point in starting it
> as "mail" if it's SUID root?
> -rwsr-xr-x    1 root     root       466308 sie 15 01:13 /usr/sbin/exim

  There is a "small" point of binding to port 25. Only root can do
that. I have not looked at exim's code, but if run as a stand-alone
daemon (i.e. not from inetd), I would guess it just opens the port as
root and drops the priviledges right away. Someone who knows the code
might want to confirm/rebuke this.
  On the other hand, if exim is run from inetd (as I do), does it
still need to be suid root? Since inetd runs root anyway, there should
be no need for exim to: the port is already bound when exim starts and
exim will not be able to bind to it anyway. Just wondering if I should
do some dpkg-statoverrides.

-- 
		 -----------------------------------------------
		| Juha Jäykkä, juolja@utu.fi			|
		| home: http://www.utu.fi/~juolja/		|
		 -----------------------------------------------

Reply to:

Follow-Ups:
- Re: MTAs
  - From: Alexander Clouter <alexander.clouter@ic.ac.uk>

References:
- Re: MTAs
  - From: Marcin Owsiany <porridge@debian.org>

Prev by Date: Re: In Praise of Dos (RE: Mutt & tmp files)
Next by Date: Re: In Praise of Dos (RE: Mutt & tmp files)
Previous by thread: Re: MTAs
Next by thread: Re: MTAs
Index(es):
- Date
- Thread