Web lists-archives.com

Bug#927898: ITP: rsendmail -- safer sendmail command to send email without passwords, over SSH




Package: wnpp
Severity: wishlist
Owner: Antoine Beaupre <anarcat@xxxxxxxxxx>

* Package name    : rsendmail
  Version         : 1.0.1
  Upstream Author : Antoine Beaupré <anarcat@xxxxxxxxxx>
* URL             : https://gitlab.com/anarcat/rsendmail/
* License         : AGPLv3
  Programming Lang: Python
  Description     : safer sendmail command to send email without passwords, over SSH

This command aims at replacing the builtin sendmail command which
gives too much privileges to the caller. For example, Postfix's
sendmail(1) command can list the mail queue (-bp), rehash the alias
database (-bi), start a daemon (-bl, -bd), or flush the queue (-q);
all remnants of the old Sendmail binary, which probably is
turing-complete on its own.

It's a mess. All I want to do is to easily queue up mails on a remote
system without giving any extra privileges to the remote system. In
turns, this makes configuring a satellite system like a laptop or a
workstaiton as simple as adding an SSH key to be added to an
authorized_keys file. That key can then send email, but only send
email: no shell access or server management.

This can of course be accomplished by a regular SMTP client, but that
requires passwords, and passwords are weak.

----

So I built the above already. I didn't think of packaging it for
Debian until someone said "oh i'm not going to use this because it's
not in Debian", so here we are.

This is what I like to describe as "modern UUCP", more or
less. Instead of relying on SMTP for transport, I rely on SSH, which
brings a bunch of interesting properties. I am not aware of anything
like that currently in the archive.

I would be happy to co-maintain it with the relevant Python team but
maybe it's better if I just maintain my own stuff too. :)