- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Ownership of files executed through Mail aliases f...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-06-2012 07:45 AM
03-06-2012 07:45 AM
Ownership of files executed through Mail aliases file
I'm trying to meet some system security requirments for my 11i v2 box, but I'm having trouble determining one requirement.
"Files executed through a mail aliases file must be owned by root and must reside within a directory owned and writable only by root"
Does this mean that only root should be listed after the : for each alias in /etc/mail/aliases ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-06-2012 10:30 AM
03-06-2012 10:30 AM
Re: Ownership of files executed through Mail aliases file
I think it means: "if you have mail aliases that cause the mail to be piped to programs or scripts, those programs must be owned by root and located in a directory owned & writable by root only." (Yes, you can use aliases to pipe incoming mail to programs or scripts!)
For example, if you have an alias like this: (example from chapter 24.4, Special Aliases of the 2nd edition of Sendmail by O'Reilly)
mail-errors: "|/etc/mail/filter postmaster"
... then you must verify that /etc/mail/filter is owned by root and /etc/mail is owned and writable by root only.
If you don't have any executable aliases (the default /etc/mail/aliases certainly does not have any), then you don't have to do anything to comply with this requirement.