Bug#875954: courier-mta: /usr/sbin/sendmail has wrong permissions
Control: tags -1 moreinfo Hello Bernard, thanks for taking time to file a bug report. On 09/16/2017 03:47 PM, Bernard wrote: > sendmail gets installed with setgid but has to be installed with setuid. Could you please elaborate on why setgid is not enough (with the group set to courier)? The change would grant extra permissions to sendmail, which I'm hesitant to implement. Especially as I can successfully send emails from normal user accounts using sendmail with setgid. On 09/16/2017 07:23 PM, Willi Mann wrote: > according to the previous maintainer, this bug was fixed in version > 0.75.0-15. However, I never verified that (I reported the bug back > then) Thanks for this link. Interestingly, that very issue asked for the exact opposite: changing from setuid to setgid. Willi Mann wrote this: > Changing the permission from 4755 to 2755 (setgid instead of setuid bit) > solves > the issue. Given the OP reports that sendmail currently has setgit set and that's the case on my box as well, I conclude that Ondřej has properly applied the patch asked for in #812235. Kind Regards Markus Wanner signature.asc Description: OpenPGP digital signature
Bug#875954: courier-mta: /usr/sbin/sendmail has wrong permissions
Package: courier-mta Version: 0.76.3-5 Severity: important sendmail gets installed with setgid but has to be installed with setuid. -- System Information: Debian Release: 9.1 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=ja_JP.utf8, LC_CTYPE=ja_JP.utf8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages courier-mta depends on: pn courier-authlib pn courier-base ii debconf [debconf-2.0] 1.5.61 ii init-system-helpers1.48 ii libc6 2.24-11+deb9u1 pn libcourier-unicode1 ii libgcc11:6.3.0-18 ii libgdbm3 1.8.3-14 ii libidn11 1.33-1 pn libnet-cidr-perl ii libperl5.245.24.1-3+deb9u1 ii libstdc++6 6.3.0-18 ii sysvinit-utils 2.88dsf-59.9 courier-mta recommends no packages. Versions of packages courier-mta suggests: ii claws-mail [mail-reader] 3.14.1-3+b1 pn courier-doc pn courier-filter-perl pn couriergrey
