Path: utzoo!utgpu!water!watmath!clyde!att!osu-cis!killer!tness7!bellboy!hack From: hack@bellboy.UUCP (Greg Hackney) Newsgroups: comp.mail.elm Subject: Re: Problems running elm as sgid Summary: plus another security problem Message-ID: <1114@bellboy.UUCP> Date: 9 Jul 88 15:44:54 GMT References: <983@tellab5.UUCP> Reply-To: hack@bellboy.UUCP (Greg Hackney) Distribution: na Organization: home Lines: 28 In article <983@tellab5.UUCP> dpb@tellab5.UUCP (Darryl Baker) writes: >I have a PC7300 at home and decided to install elm as a suid mailer well >everything is fine execept that if I leave only some mail in the system mailbox >it gets unwritable by the group I'm a bit confused because the subject line says "group id" and the text says "user id". It should work okay if you setgid to "mail": chgrp mail elm chmod 2755 elm I have a little different problem with permissions... When using Elm, the editor (vi or Lyrix on my system) creates a file in /tmp that is readable by others, thus a security violation. Instead of hacking the C code, I'm waiting for the new 2.0 release. But in the meantime, I made a front end shell script to Elm that says: umask 066 exec /usr/lbin/.elm $* #the real ELm This also fixed the problem with my "mail.sent" file in my home directory being readable by others. (I am on version 1.5). -- Greg