- Add ral(4) for Ralink RT2500/RT2501/RT2600 chip based wireless NIC

[dragonfly.git] / contrib / sendmail-8.13.6 / smrsh / smrsh.0

SMRSH(8)                                                              SMRSH(8)



N\bNA\bAM\bME\bE
       smrsh - restricted shell for sendmail

S\bSY\bYN\bNO\bOP\bPS\bSI\bIS\bS
       s\bsm\bmr\brs\bsh\bh -\b-c\bc command

D\bDE\bES\bSC\bCR\bRI\bIP\bPT\bTI\bIO\bON\bN
       The  _\bs_\bm_\br_\bs_\bh  program  is intended as a replacement for _\bs_\bh for use in the
       ``prog'' mailer in _\bs_\be_\bn_\bd_\bm_\ba_\bi_\bl(8) configuration files.  It sharply  limits
       the  commands that can be run using the ``|program'' syntax of _\bs_\be_\bn_\bd_\bm_\ba_\bi_\bl
       in order to improve the over all security  of  your  system.   Briefly,
       even  if  a ``bad guy'' can get sendmail to run a program without going
       through an alias or forward file, _\bs_\bm_\br_\bs_\bh limits the set of programs that
       he or she can execute.

       Briefly,  _\bs_\bm_\br_\bs_\bh limits programs to be in a single directory, by default
       /usr/adm/sm.bin, allowing the system administrator to choose the set of
       acceptable  commands,  and  to  the  shell  builtin  commands ``exec'',
       ``exit'', and ``echo''.  It also rejects any commands with the  charac-
       ters ``', `<', `>', `;', `$', `(', `)', `\r' (carriage return), or `\n'
       (newline) on the command line  to  prevent  ``end  run''  attacks.   It
       allows   ``||''   and   ``&&''   to   enable  commands  like:  ``"|exec
       /usr/local/bin/filter || exit 75"''

       Initial  pathnames  on  programs  are  stripped,   so   forwarding   to
       ``/usr/ucb/vacation'',                           ``/usr/bin/vacation'',
       ``/home/server/mydir/bin/vacation'', and ``vacation'' all actually for-
       ward to ``/usr/adm/sm.bin/vacation''.

       System  administrators  should  be  conservative  about  populating the
       sm.bin directory.  For example, a reasonable additions is  _\bv_\ba_\bc_\ba_\bt_\bi_\bo_\bn(1),
       and  the like.  No matter how brow-beaten you may be, never include any
       shell or shell-like program (such as _\bp_\be_\br_\bl(1)) in the sm.bin  directory.
       Note  that  this  does not restrict the use of shell or perl scripts in
       the sm.bin directory (using the ``#!''  syntax);  it  simply  disallows
       execution  of  arbitrary programs.  Also, including mail filtering pro-
       grams such as _\bp_\br_\bo_\bc_\bm_\ba_\bi_\bl(1) is a very bad idea.  _\bp_\br_\bo_\bc_\bm_\ba_\bi_\bl(1) allows users
       to run arbitrary programs in their _\bp_\br_\bo_\bc_\bm_\ba_\bi_\bl_\br_\bc(5).

C\bCO\bOM\bMP\bPI\bIL\bLA\bAT\bTI\bIO\bON\bN
       Compilation  should  be  trivial  on most systems.  You may need to use
       -DSMRSH_PATH=\"_\bp_\ba_\bt_\bh\" to adjust the default search  path  (defaults  to
       ``/bin:/usr/bin:/usr/ucb'') and/or -DSMRSH_CMDDIR=\"_\bd_\bi_\br\" to change the
       default program directory (defaults to ``/usr/adm/sm.bin'').

F\bFI\bIL\bLE\bES\bS
       /usr/adm/sm.bin - default directory for restricted programs on most OSs

       /var/adm/sm.bin  -  directory  for  restricted  programs  on  HP UX and
       Solaris

       /usr/libexec/sm.bin - directory for restricted programs on FreeBSD  (>=
       3.3) and DragonFly BSD


S\bSE\bEE\bE A\bAL\bLS\bSO\bO
       sendmail(8)



                         $Date: 2004/08/06 03:55:35 $                 SMRSH(8)