Bug#927898: ITP: rsendmail -- safer sendmail command to send email without passwords, over SSH
- Date: Wed, 24 Apr 2019 15:29:46 -0400
- From: Antoine Beaupre <anarcat@xxxxxxxxxx>
- Subject: Bug#927898: ITP: rsendmail -- safer sendmail command to send email without passwords, over SSH
Owner: Antoine Beaupre <anarcat@xxxxxxxxxx>
* Package name : rsendmail
Version : 1.0.1
Upstream Author : Antoine Beaupré <anarcat@xxxxxxxxxx>
* URL : https://gitlab.com/anarcat/rsendmail/
* License : AGPLv3
Programming Lang: Python
Description : safer sendmail command to send email without passwords, over SSH
This command aims at replacing the builtin sendmail command which
gives too much privileges to the caller. For example, Postfix's
sendmail(1) command can list the mail queue (-bp), rehash the alias
database (-bi), start a daemon (-bl, -bd), or flush the queue (-q);
all remnants of the old Sendmail binary, which probably is
turing-complete on its own.
It's a mess. All I want to do is to easily queue up mails on a remote
system without giving any extra privileges to the remote system. In
turns, this makes configuring a satellite system like a laptop or a
workstaiton as simple as adding an SSH key to be added to an
authorized_keys file. That key can then send email, but only send
email: no shell access or server management.
This can of course be accomplished by a regular SMTP client, but that
requires passwords, and passwords are weak.
So I built the above already. I didn't think of packaging it for
Debian until someone said "oh i'm not going to use this because it's
not in Debian", so here we are.
This is what I like to describe as "modern UUCP", more or
less. Instead of relying on SMTP for transport, I rely on SSH, which
brings a bunch of interesting properties. I am not aware of anything
like that currently in the archive.
I would be happy to co-maintain it with the relevant Python team but
maybe it's better if I just maintain my own stuff too. :)