Paul J Stevens wrote: > Thomas Mueller wrote: > >Ilja Booij wrote: > >>On Thu, 30 Dec 2004 10:16:05 +0100, Thomas Mueller <[EMAIL PROTECTED]> > >>wrote: > >> > >>>dbmail-lmtpd tries to execute /bin/bash ?? Why? > >> > >>I'm guessing this is used for opening a pipe to sendmail for forwarding. > > > >A pipe for lmtp, why? lmtpd should simply open a TCP port localhost:24 and > >that's it, no necessity to start processes. > >RSBAC denied execution of /bin/bash nevertheless everything works fine > >so it's not necessary to execute /bin/bash. > > Access to /bin/sh is required for opening a pipe (3). Of course we could > redesign the forwarding and notification code to use smtp for sending > messages, but that seems like a bit of overkill at the moment.
The lmtpd code can't be extended for that task? The shouldn't be a big difference I think? But that's not too important yes. Ilja wrote: > If a message is to be forwarded to an external address, dbmail-lmtpd > will open a pipe to /usr/bin/sendmail So that should only happen if I have an alias pointing to an external adress? If dbmail-lmtpd can't open the pipe I should see an error message in the logs? Neither happend here I think. That's all I have from that PID at that time. Dec 30 07:53:33 geht-schon dbmail/lmtpd[24743]: PerformChildTask(): incoming connection from [127.0.0.1 (localhost)] Dec 30 07:53:34 geht-schon dbmail/lmtpd[24743]: sort.c, sort_and_deliver: message id=331614, size=1545 is inserted Dec 30 07:53:34 geht-schon dbmail/lmtpd[24743]: pool.c,child_unregister: child [24743] unregistered Thomas -- http://www.tmueller.com for pgp key (95702B3B)
