From owner-freebsd-hackers  Mon Nov 25 13:35:27 1996
Return-Path: owner-hackers
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id NAA11364
          for hackers-outgoing; Mon, 25 Nov 1996 13:35:27 -0800 (PST)
Received: from brasil.moneng.mei.com (brasil.moneng.mei.com [151.186.109.160])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id NAA11347
          for <hackers@freebsd.org>; Mon, 25 Nov 1996 13:35:13 -0800 (PST)
Received: (from jgreco@localhost) by brasil.moneng.mei.com (8.7.Beta.1/8.7.Beta.1) id PAA15621; Mon, 25 Nov 1996 15:33:23 -0600
From: Joe Greco <jgreco@brasil.moneng.mei.com>
Message-Id: <199611252133.PAA15621@brasil.moneng.mei.com>
Subject: Re: Replacing sendmail
To: brantk@atlas.com
Date: Mon, 25 Nov 1996 15:33:22 -0600 (CST)
Cc: jgreco@brasil.moneng.mei.com, peter@taronga.com, hackers@freebsd.org
In-Reply-To: <199611252128.NAA12882@itchy.atlas.com> from "Brant Katkansky" at Nov 25, 96 01:28:48 pm
X-Mailer: ELM [version 2.4 PL24]
Content-Type: text
Sender: owner-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

> > That extends to other things as well.  :-)  Anybody want to write a little
> > tool that "knows" how to do this, configurably?  Maybe some mtree files
> > plus a little menu widget.
> > 
> > A quick inspection reveals that the following files (maybe more) are suid:
> 
> [snip]
> 
> > It seems to me that many of these are parts of various system "services"
> > (UUCP, LPR, Mail, YP, rcmds).  What might be way cool is a program that
> > presents a menu such as
> > 
> > System Services
> > ---------------
> > enabled  A) Sendmail
> > disabled B) UUCP
> > disabled C) Printing
> > enabled  D) IIJ-PPP
> > disabled E) sliplogin
> 
> I think this is something I'd be interested in doing.
> 
> How 'bout I do it as a command-line util first (cf. pkg_* tools)
> and then wedge in a convenient user interface later?

That would certainly be appropriate, at least from the point of view of
MTA's, or alternative printing mechanisms.

pkg_control -disable sendmail

perhaps, for an install of Qmail, Smail, etc.

People will argue over whether to simply remove suid bits or to make it
mode 000...

(This might even help to lay the foundations to start packagizing a lot
of the "base" system components.  There is no real reason to have a lot
of this stuff on something like a router.  I might like very much to
remove Sendmail, or the LPR stuff, etc., from a router at some point.)

But little steps first.  ;-)

If I can offer any advice, please do not hesitate to ask.

... JG