At 13:10 11.05.2000 -0700, James P. Salsman wrote:
These sorts of things are less common on the more heterogeneous
Unix world, but Unix mailers are just as culpable. If I wanted to
be consistent, I would demand that anything I run on Unix (without
a special permitted shell) which connects to port 25 should be
intercepted, wrapped with an "ok queued" SMTP response, and
forwarded to me instead. Would anyone argue that isn't reasonable?
Yes, but only because I have 15 different programs that more or less
indirectly invoke /usr/sbin/sendmail for various reasons.
Most of them are tools invoked from cron.
In a fine-grained capabilities control system, I'd have the "send email" as
one access control descriptor I could grant these programs.
But that's not been implemented in any widespread system I know of.
Harald
--
Harald Tveit Alvestrand, EDB Maxware, Norway
Harald(_dot_)Alvestrand(_at_)edb(_dot_)maxware(_dot_)no