"Security was an absolute requirement".
Dan has put up a $500 bounty.
Very little is done SUID or as root.
Of 20 recent Sendmail holes, 11 worked only because the whole thing is SUID.
Qmail has one SUID program (qmail-inject SUID qmailq).
2 daemons that run as root (qmail-send and qmail-lspawn).
Uses 7 user-ids to compartmentalize damage.
Copyright © 1995-2003 tummy.com, ltd, All Rights Reserved
5400 Fossil Court North, Fort Collins, Colorado, USA, 80525
Last modified on 2004-06-07
Python programming makes us more efficient.