On Mon, 3 Feb 2003, Darren Shepard wrote: > On Mon, Feb 03, 2003 at 03:24:46PM -0800, > Horst <[EMAIL PROTECTED]> writes: ... > | > | ~~~~~~~ from the /etc/postfix/aliases ~~~~~~~~~ > | ... > | # For various security reasons, postfix WILL NOT deliver mail as root, so > | # ensure that the root alias is aliased to a HUMAN user, as otherwise > | # mail may get delivered to the $default_privs user (nobody). > | ... > [snip] ... > > It's a bad idea for root to recieve mail directly (ie. because > you then invoke a mail client as root, and read a spool file > full of potentially malicious data from the net).
Interesting. Could you expand a bit on that ? I am using a text based mailer, and almost never GUI as root. As I said earlier, I like root to handle internal administrative tasks, and recieve reports generated by root's own cron jobs (I'd consider that a clean concept since that's what root is for, though security issues add another twist to it). So a) creating an admin user that receives root's mail b) an alias for root, like pine='su - admin' c) last step of login script for admin opens pine d) upon pine exit admin logs out would make it both, smooth and safe, I guess. - Horst _______________________________________________ Eug-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
