diff options
| author | Todd C. Miller <millert@cvs.openbsd.org> | 2003-09-17 17:31:42 +0000 |
|---|---|---|
| committer | Todd C. Miller <millert@cvs.openbsd.org> | 2003-09-17 17:31:42 +0000 |
| commit | e883408a0913641ec2d452de3978a47db5f4c85e (patch) | |
| tree | 32d45bdda26765a93ea86ef564a3ec12a3fa0416 /gnu/usr.sbin/sendmail/smrsh | |
| parent | dcd8a09464d293189795148dba784b422795dd9f (diff) | |
Update to sendmail-8.12.10. This includes a fix for a buffer overflow
in address parsing. That fix (but not all of sendmail-8.12.10) has
been applied to OpenBSD 3.4 and the 3.2 and 3.2 -stable branches.
Diffstat (limited to 'gnu/usr.sbin/sendmail/smrsh')
| -rw-r--r-- | gnu/usr.sbin/sendmail/smrsh/README | 14 | ||||
| -rw-r--r-- | gnu/usr.sbin/sendmail/smrsh/smrsh.8 | 17 |
2 files changed, 23 insertions, 8 deletions
diff --git a/gnu/usr.sbin/sendmail/smrsh/README b/gnu/usr.sbin/sendmail/smrsh/README index 687360aad38..ffcc502584d 100644 --- a/gnu/usr.sbin/sendmail/smrsh/README +++ b/gnu/usr.sbin/sendmail/smrsh/README @@ -44,7 +44,17 @@ With gcc, the GNU C compiler, use the -static option. or host.domain% sh Build LDOPTS=-static - +The following C defines can be set defined to change the search path and +the bin directory used by smrsh. + +-DSMRSH_PATH=\"path\" \"/bin:/usr/bin:/usr/ucb\" The default search + path. +-DSMRSH_CMDDIR=\"dir\" \"/usr/adm/sm.bin\" The default smrsh + program directory + +These can be added to the devtools/Site/site.config.m4 file using the +global M4 macro confENVDEF or the smrsh specific M4 macro +conf_smrsh_ENVDEF. As root, install smrsh in /usr/libexec. Using the Build script: @@ -153,4 +163,4 @@ a typical system follows: host.domain# /usr/sbin/sendmail -bd -q30m -$Revision: 1.4 $, Last updated $Date: 2001/09/11 19:02:50 $ +$Revision: 1.5 $, Last updated $Date: 2003/09/17 17:31:41 $ diff --git a/gnu/usr.sbin/sendmail/smrsh/smrsh.8 b/gnu/usr.sbin/sendmail/smrsh/smrsh.8 index 66692452316..03a0c861eaf 100644 --- a/gnu/usr.sbin/sendmail/smrsh/smrsh.8 +++ b/gnu/usr.sbin/sendmail/smrsh/smrsh.8 @@ -9,9 +9,9 @@ .\" the sendmail distribution. .\" .\" -.\" $Sendmail: smrsh.8,v 8.15 2001/01/24 00:40:47 gshapiro Exp $ +.\" $Sendmail: smrsh.8,v 8.16.2.1 2003/07/08 01:33:03 gshapiro Exp $ .\" -.Dd April 25, 2002 +.Dd July 8, 2003 .Dt SMRSH 8 .Os .Sh NAME @@ -78,7 +78,7 @@ and .Dq && to enable commands like: .Bd -literal -compact -offset "XXXX" -.Qq "|exec /usr/local/bin/procmail -f- /etc/procmailrcs/user || exit 75" +.Qq "|exec /usr/local/bin/filter || exit 75" .Ed .Pp Initial pathnames on programs are stripped, @@ -93,9 +93,8 @@ all actually forward to .Pp System administrators should be conservative about populating the sm.bin directory. -Reasonable additions are -.Xr vacation 1 , -.Xr procmail , +For example, a reasonable additions is +.Xr vacation 1 and the like. No matter how brow-beaten you may be, never include any shell or shell-like program @@ -109,6 +108,12 @@ in the sm.bin directory (using the .Dq #! syntax); it simply disallows execution of arbitrary programs. +Also, including mail filtering programs such as +.Xr procmail +is a very bad idea. +.Xr procmail +allows users to run arbitrary programs in their +.Xr procmailrc . .Sh FILES .Bl -tag -width "/usr/libexec/sm.bin" -compact .It Pa /usr/libexec/sm.bin |