2008/6/4 John Simpson <[EMAIL PROTECTED]>:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 2008-06-04, at 0052, Tom Collins wrote:
>>
>> On Jun 3, 2008, at 12:48 AM, Maurizio Rottin wrote:
>>>
>>> this is the point, you are right!
>>> i always forget that centos adds users directory with mask 700
>>> drwx------ 9 vpopmail vchkpw 4096 15 feb 11:43 vpopmail
>>>
>>> a chmod 755 does the job!
>>
>> You really only need to add the world execute bit (I'm pretty sure) to the
>> directory.
>
> true, 0711 would technically work just as well, but i would go with 0755
> anyway, since the only sensitive information is the "domains" directory (for
> obvious reasons) and maybe one or two files in the "etc" directory. i don't
> see the harm in leaving the rest of it open, especially the "doc" directory
> (although the people who have shell access on my machine are, for the most
> part, people who are running their own mail servers and may want to compare
> their own server to how i'm doing things.)
>
> maurizio, i would suggest you look at the "vfixpermissions" script on my web
> site. it would have fixed this particular problem, although you would have
> lost out on the experience of troubleshooting, finding, and fixing the
> problem for yourself (i.e. you learned more by doing it by hand, which i
> feel is always a good thing.)
>
> i also think it's a good starting point when debugging vpopmail-related
> issues in general... and one person told me that reading it helped them to
> understand how shell scripts worked in general, for what that may be worth
> to you (i was glad i could help him- i think he should have known the stuff
> already, but the fact that he was trying to learn gives me hope.)
>
> http://qmail.jms1.net/scripts/#vfixpermissions
>
thank you very much i'll try it!
may i ask another question in the same thread?
i think i have what you call a "mailhub scenario", but i have a
problem in adding domains in morercpt.cdb:
i did not install vpopmail in the "frontends"(the external servers
where the emails actually arrive), then i wrote a simple script called
vaddrcpt and this is the code:
<--
#!/bin/bash
if [ $# -ne 1 ];then
echo "Usage: vaddrcpt <domain>"
exit 1
fi
DOMAIN=$1
cd /var/qmail/control
/bin/cp -pf morercpthosts morercpthosts.tmp
echo $DOMAIN >> morercpthosts.tmp
cat morercpthosts.tmp | sort -u > morercpthosts
/var/qmail/bin/qmail-newmrh
exit 0
-->
(Note that i need to keep the frontends morercpthosts file different
from the backend one, so i don't push it with the onchange script)
in this way all the qmail-scanner running at that moment get stuck,
and if i issue a "lsof| grep delete" i can see them waiting for
morercptohosts.cdb file.
the workaround up to now is to stop qmail, add the domain and start
qmail, but i'm very tired of doing this.
do you have any idea?
--
mr
!DSPAM:4846450632352003826217!
