Quoting Philip Guenther <[email protected]>:
On Wed, Sep 16, 2009 at 10:44 AM, Chris <[email protected]> wrote:
I'm building an email server, and I want to use smtp-vilter to send my
emails through spamassassin and clamav. I'm using obsd 4.5 and sendmail.
I keep getting this in my logs:
Milter (smtp-vilter): local socket name
/var/smtp-vilter/smtp-vilter.sock unsafe
Milter (smtp-vilter): to error state
Milter: initialization failed, temp failing commands
Those are from the sendmail process (sm-mta), right? (You left out
some of the useful bits in the log messages...)
If so, then the issue is that sendmail, before connecting to a milter
socket, examines the path up to the socket and---by default---will
complain and refuse to use that socket if any of the *directories* are
group or world writable. There may be other checks made; I haven't
checked the source. What are the mode, ownership, and group of the
directories
/
/var
/var/smtp-vilter
?
Philip Guenther
Philip,
You are right... those are errors from sendmail. I have messed with
perms on this thing so much, and on directory structure (I'm not
entirely how the chroot works for smtp-vilter, so I copied the cofig
files from /etc into the chroot environment as well -- I realize this
may be unnecessary, but I'm getting desperate!).
My perms:
-------------------------------------------------------------------
ls -lR smtp-vilter
total 16
drwxr-xr-x 3 _vilter _vilter 512 Sep 16 13:35 etc
drwxr-xr-x 2 _vilter _vilter 512 Sep 16 13:35 smtp-vilter
drwxrwxrwx 2 _vilter _vilter 512 Sep 16 13:34 tmp
drwxrwx--- 3 _vilter _vilter 512 Sep 16 13:40 var
smtp-vilter/etc:
total 4
drwxr-xr-x 2 _vilter _vilter 512 Sep 16 16:39 smtp-vilter
smtp-vilter/etc/smtp-vilter:
total 36
-rw-r--r-- 1 _vilter _vilter 469 Sep 16 13:35 attachment-notification
-rw-r--r-- 1 _vilter _vilter 855 Sep 16 13:35 attachment.conf
-rw-r--r-- 1 _vilter _vilter 1279 Sep 16 13:35 clamd.conf
-rw-r--r-- 1 _vilter _vilter 401 Sep 16 13:35 recipient-notification
-rw-r--r-- 1 _vilter _vilter 577 Sep 16 13:35 regex.conf
-rw-r--r-- 1 _vilter _vilter 5003 Sep 16 16:40 smtp-vilter.conf
-rw-r--r-- 1 _vilter _vilter 1191 Sep 16 13:35 spamd.conf
smtp-vilter/smtp-vilter:
smtp-vilter/tmp:
smtp-vilter/var:
total 4
drwxrwx--- 2 _vilter _vilter 512 Sep 16 23:37 smtp-vilter
smtp-vilter/var/smtp-vilter:
total 0
srwxr-xr-x 1 _vilter _vilter 0 Sep 16 16:47 smtp-vilter.sock
-------------------------------------------------------------------
Like I said, I have tried a million perm combinations, and always wind
up with the same results. Also, if smtp-vilter says that it should
have the dirs owned by _vilter:_vilter. If sendmail doesn't want the
dir group writeable, then how do I resolve this? (afterall there is
no point in having ownership be _vilter:_vilter if the group is
excluded).
Help?
