From nobody@FreeBSD.ORG  Fri Oct 20 07:10:47 2000
Return-Path: <nobody@FreeBSD.ORG>
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id A3F0237B686; Fri, 20 Oct 2000 07:10:47 -0700 (PDT)
Message-Id: <20001020141047.A3F0237B686@hub.freebsd.org>
Date: Fri, 20 Oct 2000 07:10:47 -0700 (PDT)
From: pdp@nl.demon.net
Sender: nobody@FreeBSD.ORG
To: freebsd-gnats-submit@FreeBSD.org
Subject: /etc/periodic/daily/450.status-security ignores mail recipient config
X-Send-Pr-Version: www-1.0

>Number:         22150
>Category:       conf
>Synopsis:       /etc/periodic/daily/450.status-security ignores mail recipient config
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Oct 20 07:20:01 PDT 2000
>Closed-Date:    Fri Feb 2 17:04:30 PST 2001
>Last-Modified:  Fri Feb 02 17:06:52 PST 2001
>Originator:     Phil Pennock
>Release:        4.1.1-RELEASE
>Organization:
Thus PLC
>Environment:
GENERIC i386
Confirmed present via CVSWeb in current
>Description:
Setting $daily_output in /etc/periodic.conf changes daily output recipient.
/etc/periodic/daily/450.status-security runs /etc/security and sends
through "sendmail root", completely ignoring any administrative settings.
>How-To-Repeat:
Set something other than 'root' as the value of $daily_output in one of
the periodic configuration files; witness the security mail go somewhere
else.
>Fix:
Either use a new config variable, or apply:

--- 450.status-security.dist    Tue Sep 26 02:04:27 2000
+++ 450.status-security Fri Oct 20 16:10:12 2000
@@ -36,7 +36,7 @@
            *)
                    echo "    (output mailed separately)"
                    sh /etc/security $args 2>&1 |
-                       sendmail root && rc=0 || rc=3;;
+                       sendmail ${daily_output:-root} && rc=0 || rc=3;;
        esac;;

     *)  rc=0;;


>Release-Note:
>Audit-Trail:

From: Brian Somers <brian@Awfulhak.org>
To: pdp@nl.demon.net
Cc: freebsd-gnats-submit@FreeBSD.ORG, brian@Awfulhak.org
Subject: Re: conf/22150: /etc/periodic/daily/450.status-security ignores mail recipient config 
Date: Fri, 20 Oct 2000 08:37:51 -0700

 > >Number:         22150
 > >Category:       conf
 > >Synopsis:       /etc/periodic/daily/450.status-security ignores mail recipient config
 
 I don't think that $daily_output is the right variable to use here.  
 How about introducing a $security_output variable and documenting it 
 in rc.conf.5 ?
 
 Cheers.
 -- 
 Brian <brian@Awfulhak.org>                        <brian@[uk.]FreeBSD.org>
       <http://www.Awfulhak.org>                   <brian@[uk.]OpenBSD.org>
 Don't _EVER_ lose your sense of humour !
 
 
 

From: Phil Pennock <pdp@nl.demon.net>
To: Brian Somers <brian@Awfulhak.org>
Cc: freebsd-gnats-submit@FreeBSD.ORG
Subject: Re: conf/22150: /etc/periodic/daily/450.status-security ignores mail recipient config
Date: Fri, 20 Oct 2000 18:57:12 +0200

 On 2000-10-20 at 08:37 -0700, Brian Somers wrote:
 > > >Number:         22150
 > > >Category:       conf
 > > >Synopsis:       /etc/periodic/daily/450.status-security ignores mail recipient config
 > 
 > I don't think that $daily_output is the right variable to use here.  
 > How about introducing a $security_output variable and documenting it 
 > in rc.conf.5 ?
 
 Whatever.  That's why I suggested in the first line of the Fix section:
  "Either use a new config variable, or apply:"
 -- 
 Phil Pennock                        <pdp@nl.demon.net> <Phil.Pennock@thus.net>
 Demon Internet Nederland -- Network Operations Centre -- Systems Administrator
 Libertes philosophica.
 Sales: +31 20 422 20 00                                Support: 0800 33 6666 8
 
State-Changed-From-To: open->closed 
State-Changed-By: brian 
State-Changed-When: Fri Feb 2 17:04:30 PST 2001 
State-Changed-Why:  
There's now a $daily_status_security_output periodic.conf variable. 
The change will be brought into -current in about 10 days. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=22150 
>Unformatted:
