From nobody@FreeBSD.org  Thu Apr 25 20:33:23 2002
Return-Path: <nobody@FreeBSD.org>
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id 5C8C937B416
	for <freebsd-gnats-submit@FreeBSD.org>; Thu, 25 Apr 2002 20:33:23 -0700 (PDT)
Received: (from nobody@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id g3Q3XNC53455;
	Thu, 25 Apr 2002 20:33:23 -0700 (PDT)
	(envelope-from nobody)
Message-Id: <200204260333.g3Q3XNC53455@freefall.freebsd.org>
Date: Thu, 25 Apr 2002 20:33:23 -0700 (PDT)
From: Brett Glass <brett@lariat.org>
To: freebsd-gnats-submit@FreeBSD.org
Subject: When -STABLE is installed with "high" security or with an existing rc.conf file, Sendmail runs when it shouldn't
X-Send-Pr-Version: www-1.0

>Number:         37475
>Category:       conf
>Synopsis:       When -STABLE is installed with "high" security or with an existing rc.conf file, Sendmail runs when it shouldn't
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    gshapiro
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Apr 25 20:40:01 PDT 2002
>Closed-Date:    Thu May 09 20:18:56 PDT 2002
>Last-Modified:  Thu May 09 20:18:56 PDT 2002
>Originator:     Brett Glass
>Release:        4.5-STABLE
>Organization:
>Environment:
>Description:
I installed a recent snapshot of -STABLE with "High" security --
a setting which is documented to be one which turns off all
daemons by default. However, when installation was complete, I
discovered that Sendmail was running. I had to alter the Sendmail
setting in rc.conf manually from "NO" to "NONE" to turn it off.

When one installs using a setting that says the daemon will be
"off," it should really be off! Also, the "NO/NONE" is sure
to confuse users and administrators, because they will assume (quite
reasonably) that "NO" means "no," as it does for every other setting
in rc.conf. For the sake of consistency, and to ensure that rc.conf 
files can be moved from older to newer machines without mishaps,
the settings should be YES/SOMETHING ELSE/NO rather than YES/NO/NONE. 
>How-To-Repeat:
      
>Fix:
      
>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->gshapiro 
Responsible-Changed-By: dougb 
Responsible-Changed-When: Thu Apr 25 21:18:30 PDT 2002 
Responsible-Changed-Why:  

Over to sendmail maintainer. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=37475 

From: Brett Glass <brett@lariat.org>
To: freebsd-gnats-submit@FreeBSD.org
Cc:  
Subject: conf/37475: When -STABLE is installed with "high" security or with an existing rc.conf file, Sendmail runs when it shouldn't
Date: Thu, 25 Apr 2002 20:33:23 -0700 (PDT)

 >Number:         37475
 >Category:       conf
 >Synopsis:       When -STABLE is installed with "high" security or with an existing rc.conf file, Sendmail runs when it shouldn't
 >Confidential:   no
 >Severity:       serious
 >Priority:       medium
 >Responsible:    freebsd-bugs
 >State:          open
 >Quarter:        
 >Keywords:       
 >Date-Required:
 >Class:          sw-bug
 >Submitter-Id:   current-users
 >Arrival-Date:   Thu Apr 25 20:40:01 PDT 2002
 >Closed-Date:
 >Last-Modified:
 >Originator:     Brett Glass
 >Release:        4.5-STABLE
 >Organization:
 >Environment:
 >Description:
 I installed a recent snapshot of -STABLE with "High" security --
 a setting which is documented to be one which turns off all
 daemons by default. However, when installation was complete, I
 discovered that Sendmail was running. I had to alter the Sendmail
 setting in rc.conf manually from "NO" to "NONE" to turn it off.
 
 When one installs using a setting that says the daemon will be
 "off," it should really be off! Also, the "NO/NONE" is sure
 to confuse users and administrators, because they will assume (quite
 reasonably) that "NO" means "no," as it does for every other setting
 in rc.conf. For the sake of consistency, and to ensure that rc.conf 
 files can be moved from older to newer machines without mishaps,
 the settings should be YES/SOMETHING ELSE/NO rather than YES/NO/NONE. 
 >How-To-Repeat:
       
 >Fix:
       
 >Release-Note:
 >Audit-Trail:
 >Unformatted:
 
 To Unsubscribe: send mail to majordomo@FreeBSD.org
 with "unsubscribe freebsd-bugs" in the body of the message
 
State-Changed-From-To: open->feedback 
State-Changed-By: gshapiro 
State-Changed-When: Tue Apr 30 14:39:18 PDT 2002 
State-Changed-Why:  
When sendmail_enable="NO", the sendmail daemon that is running is *not* 
listening for external network connections.  It is only listening for 
localhost connections.  Therefore, it is still high security (the user 
needs to be locally logged in).  This was done to *increase* system 
security as it allows sendmail to be a non-set-user-ID binary on the 
file system. 

For more information, read /etc/mail/README. 


http://www.freebsd.org/cgi/query-pr.cgi?pr=37475 
State-Changed-From-To: feedback->closed 
State-Changed-By: gshapiro 
State-Changed-When: Thu May 9 20:18:31 PDT 2002 
State-Changed-Why:  
I assume my answer sufficiently explained the situation. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=37475 
>Unformatted:
