Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!linus!wivax!decvax!harpo!seismo!hao!hplabs!sri-unix!cepu!scw@ucla-locus
From: scw%ucla-locus@cepu.UUCP
Newsgroups: net.unix-wizards
Subject: Re: Mail security
Message-ID: <2095@sri-arpa.UUCP>
Date: Mon, 13-Jun-83 10:58:00 EDT
Article-I.D.: sri-arpa.2095
Posted: Mon Jun 13 10:58:00 1983
Date-Received: Thu, 16-Jun-83 06:11:32 EDT
Lines: 21

From:  Steve Woods 

	.
	.
	.
	It seems that making the recipient fully responsible for his mail
	is only reasonable, and safe.

I would aggree with this except that it would open far more problems
than it would cure.{FLAME ON} Another objection (partially cleared up
by having 'symbolic' links to system mail utilitys) is:  there are many
ignorant (may i even say dumb) users around, some of them with great
powers (like project directors), who might take great umbrage at the
loss of even 1 small memo and are not compentant to deal with ANY
programing, it is far far better to have them manually dispatch their
own mail than to have even a canned dispatcher do it.
 {FLAME OFF}

   I would think that limiting pipe/non_mailfile_file writes to
.../aliases specified destinations would be the best way (as long as
.../aliases is protected).