Finding sendmail during configure

Erik Klavon erik at eriq.org
Thu Sep 4 19:52:22 UTC 2003 

On Thu, Sep 04, 2003 at 10:54:55AM -0700, Russ Allbery wrote:
> What do you think about the question of whether to look along the user's
> path or not?  One of the problems that I had with the original behavior
> (and have had since the beginning) is that the stated reason for it was to
> avoid using some random version of sendmail that the sysadmin didn't know
> they had installed, but we looked for sendmail on the path of the user
> doing the compile.  I think that's *far* more likely to pick up some
> broken sendmail than looking in /usr/sbin and /usr/lib.

Yeah, that isn't something I could stomach because its subject to too
many variables. Forrest gives a really good example of why this is not
a good idea (excerpted below).

Forrest J. Cavalier III  wrote:
> The goal of configure is to install software properly with as few
> surprises as possible. It is NOT a goal to do it in as few commands
> as possible, with the least amount of messages presented to the user
> (although autoconf is waaay too noisy.)

I agree (well, I don't think autoconf is too talkative, but anyway =).

> The "people who know enough to be concerned" are a fraction of those
> who install INN.  Is it a service to the rest (the majority) to
> silently pick a sendmail which is not trusted to be in the installer's
> path? 

No, it is certainly a disservice! Sorry I wasn't clear on this
point. I belive I advocated doing what everyone else does. I just
poked around a bit and it looks like only one package I have
recently compiled from source looks in the path for things like
sendmail. (There are cases of looking for build tools like cc in $PATH
if all else fails, which seems reasonable.) Is this behavior common or
recommended by some authority in autoconf?

> Consider that there are plenty of sites which have a junior
> admin using a root account set up by policy or a senior admin who
> carefully picked what was in the path.

A good example!
 
Russ Allbery wrote:
> It seems to me that if there's a broken sendmail in /usr/sbin or /usr/lib,
> the user is going to have a lot more problems than just an outside chance
> of a security hole via INN, given the amount of software that just assumes
> something that's command-line-compatible with sendmail is there
> (particularly in /usr/lib).

Yeah, I think I would notice quickly if sendmail in the usual places
was broken and I wasn't using some other mta.

Erik

-- 
erik         | "It is idle to think that, by means of words, | Maurice
  kl at von     | any real communication can ever pass | Maeterlinck
    eriq.org | from one [human] to another." | Silence

More information about the inn-workers mailing list