1.2 on page 857. Those files are processed at the same
time as the configuration file, before the chdir.)
??? If you use V8.12 and later queue groups (?§11.4 on page 408), all the queues used
by those queue groups must be subdirectories of the base queue directory.
The base queue directory, and all subdirectories under it, should be set to have very
narrow permissions. They must be owned by root. We (and CERT) recommend a
mode of 0700. Prior to V8 sendmail, suchnarrow permissions would cause C-shell
scripts run from a ~/.forward file to fail. V8 sendmail lets you specify alternative
directories in which to run programs (see the D= delivery agent equate, ?§20.5.4 on
page 741). This allows you to use mode 0700 queue directories without the associated
problems.
As a further precaution, all the components of the path leading to the queue directories
should be owned by root and be writable only by root. In the case of our example
of /var/spool/mqueue, permissions should look like this:
drwxr-xr-x root /
drwxr-xr-x root /var/
drwxr-xr-x root /var/spool/
drwx------ root /var/spool/mqueue/
For additional security, see the restrictmailq keyword for the PrivacyOptions option
(?§24.9.86.15 on page 1069). It allows only users in the same group as the group
ownership of the queue directory to be able to print its contents with mailq or -bp
(?§11.
Pages:
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712