Prior to V8 sendmail,
this problem was not handled well. Instead of queueing mail until a user??™s
home directory could be accessed, sendmail wrongly assumed that the ~/.forward
didn??™t exist. This caused mail to be delivered locally when it should have been forwarded
to another site. This can be fixed by using the ForwardPath option
(?§24.9.52 on page 1034) of V8 sendmail.
??? Prior to V8 sendmail, there was no way to disable user forwarding via ~/.forward
files. At sites withproprietary or confidential information, there was no simple
way to prevent local users from arbitrarily forwarding confidential mail offsite.
But ~/.forward files can be centrally administered by using the ForwardPath
option (?§24.9.52 on page 1034) of V8 sendmail, even to the point of completely
disabling forwarding with:
define(`confFORWARD_PATH??, `??)
??? Programs run from ~/.forward files should take care to clear or reset all untrusted
environment variables. Only V8 properly presets the environment.
This is the Title of the Book, eMatter Edition
Copyright ?© 2007 O??™Reilly & Associates, Inc. All rights reserved.
13.9 Pitfalls | 507
??? If a user??™s ~/.forward file evaluates to an empty address, the mail will be silently
discarded. This has been fixed in IDA and V8 sendmail.
??? A program run from a ~/.forward file is always run on the machine running
sendmail.
Pages:
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908