DON'T USE 'FU/usr/lib/uucp/L.sys' in sendmail.cf
Piet Beertema
piet at cwi.nl
Wed Apr 3 05:30:22 AEST 1991
As stated earlier, it is potentially dangerous to use 'F' lines in
sendmail.cf to read sensitive files, such as /usr/lib/uucp/L.sys
(or whatever your UUCP systems file is called).
Depends. If you're running 5.64 or older *and* if
you do *not* have
#define SCANF 1
in your conf.h, then indeed sensitive information
can end up in your frozen config file.
This is no longer the case in 5.65/IDA-1.4.2 and
later, since SCANF is effectively always enabled.
--
Piet Beertema, CWI, Amsterdam (piet at cwi.nl)
More information about the Comp.unix.wizards
mailing list