 | Using the sendmail Restricted Shell |
The Solaris 8 release provides the sendmail restricted shell, smrsh. Using smrsh instead of /bin/sh for mailing to programs improves control of what gets run with e-mail.
smrsh runs only the programs in the /var/admin/sm.bin directory, enabling you to choose the set of acceptable commands. Reasonable additions to the sm.bin directory are commands such as vacation(1) and procmail. Never include any shell or shell-like program (for example, Perl) in the sm.bin directory. The absence of perl in the sm.bin directory does not restrict the use of shell or Perl scripts in the sm.bin directory. It simply disallows the ...
Get Solaris™ 8 Advanced System Administrator's Guide, Third Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
