news...@acrocat.com wrote:
> Hi Franz -
> 
> Thanks for the quick reply...
> 
> Here they are:
> 
> ls -l /usr/bin/dspam
> -r-xr-s--- 1 root mail 258639 2011-01-26 15:25 /usr/bin/dspam
> 
> ls -l /usr/bin/procmail
> -rwsr-sr-x 1 root mail 89176 2010-08-04 19:49 /usr/bin/procmail
> 
> 
> On 1/27/2011 9:18 PM, Frantisek Hanzlik wrote:
>>
>> I'm running dspam with sendmail (on fedora, but this probably doesn't 
>> matter).
>> You may have bad permissions on dspam binary, this isn't see from smrsh
>> (symlinks have all permissions, thus actual are taken from file on which
>> they points).
>> Can You list
>> "ls -l /usr/bin/dspam"
>> "ls -l /usr/bin/procmail"

It looks fine...
But, maybe are bad permissions on "/etc/mail" and "/etc/mail/smrsh"
directories himself. You wrote in previous mail they are:

ls -la /etc/mail/smrsh/
drwxr-sr-x 2 root  root  4096 2011-01-24 14:14 .
drwxr-sr-x 9 smmta smmsp 4096 2011-01-26 09:06 ..

Here is suspicious SGID bit on both direstories.
Fedora has "smrsh" directory directly under /etc, with permissions:
ls -ld /etc/smrsh
drwxr-xr-x. 2 root root 4096 21. led 00.40 /etc/smrsh

ls -ld /etc/mail
drwxr-xr-x. 2 root root 4096 25. led 11.42 /etc/mail

I think there isn't any reason to have SGID bits set on both these
directories, on the contrary this may cause these problems when sendmail
does any security checks.

Franta Hanzlik

------------------------------------------------------------------------------
Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
Finally, a world-class log management solution at an even better price-free!
Download using promo code Free_Logger_4_Dev2Dev. Offer expires 
February 28th, so secure your free ArcSight Logger TODAY! 
http://p.sf.net/sfu/arcsight-sfd2d
_______________________________________________
Dspam-user mailing list
Dspam-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/dspam-user

Reply via email to