On Thu, 11 Aug 2011 12:33:44 -0500, Stan Hoeppner <s...@hardwarefreak.com> wrote:
> > Trivial fix: modify the init script to invoke "postfix start" etc. > > instead of directly invoking the master daemon. > > I don't believe the current init script directly invokes the master > daemon, Debian/Ubuntu's current /etc/init.d/postfix script does not invoke master. That script sets: DAEMON=/usr/sbin/postfix NOTE: file /usr/sbin/postfix being: /usr/sbin/postfix: ELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.15, stripped and then uses $DAEMON in start), stop), restart), etc. start) uses: awk '/^[0-9a-z]/ && ($5 ~ "[-yY]")' /etc/postfix/master.cf to check if anything is to be chrooted. If anything chrooted, the relevant files are copied to the chroot and after that /usr/sbin/postfix is started as a daemon with: start-stop-daemon --start --exec ${DAEMON} -- quiet-quick-start stop) stop uses: ${DAEMON} quiet-stop reload) reload uses: ${DAEMON} quiet-reload Regards, M. I am attaching the Debian/Ubuntu current /etc/init.d/postfix script: ############################## #!/bin/sh -e # Start or stop Postfix # # LaMont Jones <lam...@debian.org> # based on sendmail's init.d script ### BEGIN INIT INFO # Provides: postfix mail-transport-agent # Required-Start: $local_fs $remote_fs $syslog $named $network $time # Required-Stop: $local_fs $remote_fs $syslog $named $network # Should-Start: postgresql mysql clamav-daemon postgrey spamassassin saslauthd dovecot # Should-Stop: postgresql mysql clamav-daemon postgrey spamassassin saslauthd dovecot # Default-Start: 2 3 4 5 # Default-Stop: 0 1 6 # Short-Description: start and stop the Postfix Mail Transport Agent # Description: postfix is a Mail Transport agent ### END INIT INFO PATH=/bin:/usr/bin:/sbin:/usr/sbin DAEMON=/usr/sbin/postfix NAME=Postfix TZ= unset TZ # Defaults - don't touch, edit /etc/default/postfix SYNC_CHROOT="y" test -f /etc/default/postfix && . /etc/default/postfix test -x $DAEMON && test -f /etc/postfix/main.cf || exit 0 . /lib/lsb/init-functions #DISTRO=$(lsb_release -is 2>/dev/null || echo Debian) running() { queue=$(postconf -h queue_directory 2>/dev/null || echo /var/spool/postfix) if [ -f ${queue}/pid/master.pid ]; then pid=$(sed 's/ //g' ${queue}/pid/master.pid) # what directory does the executable live in. stupid prelink systems. dir=$(ls -l /proc/$pid/exe 2>/dev/null | sed 's/.* -> //; s/\/[^\/]*$//') if [ "X$dir" = "X/usr/lib/postfix" ]; then echo y fi fi } case "$1" in start) log_daemon_msg "Starting Postfix Mail Transport Agent" postfix RUNNING=$(running) if [ -n "$RUNNING" ]; then log_end_msg 0 else # if you set myorigin to 'ubuntu.com' or 'debian.org', it's wrong, and annoys the admins of # those domains. See also sender_canonical_maps. MYORIGIN=$(postconf -h myorigin | tr 'A-Z' 'a-z') if [ "X${MYORIGIN#/}" != "X${MYORIGIN}" ]; then MYORIGIN=$(tr 'A-Z' 'a-z' < $MYORIGIN) fi if [ "X$MYORIGIN" = Xubuntu.com ] || [ "X$MYORIGIN" = Xdebian.org ]; then log_failure_msg "Invalid \$myorigin ($MYORIGIN), refusing to start" log_end_msg 1 exit 1 fi # see if anything is running chrooted. NEED_CHROOT=$(awk '/^[0-9a-z]/ && ($5 ~ "[-yY]") { print "y"; exit}' /etc/postfix/master.cf) if [ -n "$NEED_CHROOT" ] && [ -n "$SYNC_CHROOT" ]; then # Make sure that the chroot environment is set up correctly. oldumask=$(umask) umask 022 queue_dir=$(postconf -h queue_directory) cd "$queue_dir" # copy the CA path if specified ca_path=$(postconf -h smtp_tls_CApath) case "$ca_path" in '') :;; # no ca_path $queue_dir/*) :;; # skip stuff already in chroot *) if test -d "$ca_path"; then dest_dir="$queue_dir/${ca_path#/}" new=0 if test -d "$dest_dir" # write to a new directory ... then dest_dir="$dest_dir.NEW" && new=1 else mkdir --parent ${dest_dir%/*} fi # handle files in subdirectories find "$ca_path" -print0 | cpio -0pdL "$dest_dir" if [ "$new" = 1 ]; then # and replace the old directory rm -r "${dest_dir%.NEW}" mv "$dest_dir" "${dest_dir%.NEW}" fi fi ;; esac # if there is a CA file, copy it ca_file=$(postconf -h smtp_tls_CAfile) case "$ca_file" in $queue_dir/*) :;; # skip stuff already in chroot '') # no ca_file # or copy the bundle to preserve functionality ca_bundle=/etc/ssl/certs/ca-certificates.crt if [ -f $ca_bundle ]; then mkdir --parent "$queue_dir/${ca_bundle%/*}" cp -L "$ca_bundle" "$queue_dir/${ca_bundle%/*}" fi ;; *) if test -f "$ca_file"; then dest_dir="$queue_dir/${ca_path#/}" mkdir --parent "$dest_dir" cp -L "$ca_file" "$dest_dir" fi ;; esac # if we're using unix:passwd.byname, then we need to add etc/passwd. local_maps=$(postconf -h local_recipient_maps) if [ "X$local_maps" != "X${local_maps#*unix:passwd.byname}" ]; then if [ "X$local_maps" = "X${local_maps#*proxy:unix:passwd.byname}" ]; then sed 's/^\([^:]*\):[^:]*/\1:x/' /etc/passwd > etc/passwd chmod a+r etc/passwd fi fi FILES="etc/localtime etc/services etc/resolv.conf etc/hosts \ etc/nsswitch.conf etc/nss_mdns.config" for file in $FILES; do [ -d ${file%/*} ] || mkdir -p ${file%/*} if [ -f /${file} ]; then rm -f ${file} && cp /${file} ${file}; fi if [ -f ${file} ]; then chmod a+rX ${file}; fi done rm -f usr/lib/zoneinfo/localtime mkdir -p usr/lib/zoneinfo ln -sf /etc/localtime usr/lib/zoneinfo/localtime rm -f lib/libnss_*so* tar cf - /lib/libnss_*so* 2>/dev/null |tar xf - umask $oldumask fi if start-stop-daemon --start --exec ${DAEMON} -- quiet-quick-start; then log_end_msg 0 else log_end_msg 1 fi fi ;; stop) RUNNING=$(running) log_daemon_msg "Stopping Postfix Mail Transport Agent" postfix if [ -n "$RUNNING" ]; then if ${DAEMON} quiet-stop; then log_end_msg 0 else log_end_msg 1 fi else log_end_msg 0 fi ;; restart) $0 stop $0 start ;; force-reload|reload) log_action_begin_msg "Reloading Postfix configuration" if ${DAEMON} quiet-reload; then log_action_end_msg 0 else log_action_end_msg 1 fi ;; status) RUNNING=$(running) if [ -n "$RUNNING" ]; then log_success_msg "postfix is running" exit 0 else log_success_msg "postfix is not running" exit 3 fi ;; flush|check|abort) ${DAEMON} $1 ;; *) log_action_msg "Usage: /etc/init.d/postfix {start|stop|restart|reload|flush|check|abort|force-reload|status}" exit 1 ;; esac exit 0 ##############################