Path: utzoo!utgpu!water!watmath!clyde!att!osu-cis!killer!tness7!bellboy!hack
From: hack@bellboy.UUCP (Greg Hackney)
Newsgroups: comp.mail.elm
Subject: Re: Problems running elm as sgid
Summary: plus another security problem
Message-ID: <1114@bellboy.UUCP>
Date: 9 Jul 88 15:44:54 GMT
References: <983@tellab5.UUCP>
Reply-To: hack@bellboy.UUCP (Greg Hackney)
Distribution: na
Organization: home
Lines: 28

In article <983@tellab5.UUCP> dpb@tellab5.UUCP (Darryl Baker) writes:
 
>I have a PC7300 at home and decided to install elm as a suid mailer well
>everything is fine execept that if I leave only some mail in the system mailbox
>it gets unwritable by the group

I'm a bit confused because the subject line says "group id" and
the text says "user id". It should work okay if you setgid to "mail":

chgrp mail elm
chmod 2755 elm

I have a little different problem with permissions...

When using Elm, the editor (vi or Lyrix on my system) creates a
file in /tmp that is readable by others, thus a security violation.
Instead of hacking the C code, I'm waiting for the new 2.0 release.
But in the meantime, I made a front end shell script to Elm
that says:

umask 066
exec /usr/lbin/.elm $*   #the real ELm

This also fixed the problem with my "mail.sent" file in my
home directory being readable by others. (I am on version 1.5).

--
Greg