David Thompson <[EMAIL PROTECTED]> wrote:
> Marcus Watts wrote:
> >
> >I find myself curious as to how these sites that presumably keep pop
> >mailboxes in AFS handle mail forwarding. Do you handle mail forwarding
> >on the pop servers? Do you allow programs, such as procmail and
> >vacation? How do you handle AFS tokens and pags for such programs? If
> >you haven't thought about this, and are using sendmail or something
> >similar, what happens if a user creates a .forward in their home
> >directory? Is it honored?
> We pretty much punt on this, because allowing users to run arbitrary
> commands on the pop server would get us into an arbitrary load
> ("Let's see, if I change my .forward to run this _really big_
> compile and send myself an email..." Don't laugh. Things like this
> happen).
(This email was a good month ago, but I'm just catching up on info-afs.)
If you're running sendmail, and you use smrsh, you get to restrict
very tightly the commands that a .forward or an alias can run. We
allow procmail, majordomo's wrapper, and /bin/sh (just kidding on the
last one). Smrsh has a bunch of other security safeguards for
.forward files which makes it one nice tool. It comes with sendmail.
Regards,
Wangden
