subject:"Bug#832576\: postfix\: Messages postfix\-script\: warning\: group or other writable\: in the logs"

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

2016-08-05 Thread Scott Mcdermott

> The solution is to use "find -L", although Wietse seems to
> have reservations about that (see his replies in the thread on
> postfix-users).

reference is
http://marc.info/?l=postfix-users=145687936712995=raw
msgid 3qfgk11pspzj...@spike.porcupine.org

that patch should be ok right? if symlink, it must have been put
there by root anyways so there is no additional danger by
following it...

here is his patch with debian line numbers, seems to work.

everyone on debian has these warnings emitted since these .so
file will always have symlinks in /usr/lib/postfix placed there
for the different sonames


--- a/conf/postfix-script
+++ b/conf/postfix-script
@@ -299,10 +304,17 @@
}
todo=`echo "$todo" | tr ' ' '\12' | sort -u`
 
-   find $todo ! -user root \
+   if find -L $config_directory/main.cf >/dev/null 2>&1
+   then
+   FIND="find -L"
+   else
+   FIND=find
+   fi
+
+   $FIND $todo ! -user root \
-exec $WARN not owned by root: {} \;
 
-   find $todo \( -perm -020 -o -perm -002 \) \
+   $FIND $todo \( -perm -020 -o -perm -002 \) \
-exec $WARN group or other writable: {} \;
 
# Check Postfix mail_owner-owned directory tree owner/permissions.

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

2016-07-29 Thread Francois Mescam


On 29/07/2016 12:07, Sven Joachim wrote:

Control: forwarded -1 http://marc.info/?l=postfix-users=145686783109440=2

On 2016-07-27 09:36 +0200, Francois Mescam wrote:


When I do "systemctl restart postfix" in the logs I have :
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9559]: stopping the Postfix mail 
system
Jul 27 09:27:08 eiffel6 postfix/master[9515]: terminating on signal 15
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9706]: warning: group
or other writable: /usr/lib/postfix/./libpostfix-tls.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9707]: warning: group or other 
writable: /usr/lib/postfix/./sbin/lmtp
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9708]: warning: group
or other writable: /usr/lib/postfix/./libpostfix-dns.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9709]: warning: group
or other writable: /usr/lib/postfix/./libpostfix-util.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9710]: warning: group
or other writable: /usr/lib/postfix/./libpostfix-master.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9711]: warning: group
or other writable: /usr/lib/postfix/./libpostfix-global.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9712]: warning: group or other 
writable: /usr/lib/postfix/sbin/./lmtp
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9762]: starting the Postfix mail 
system
Jul 27 09:27:08 eiffel6 postfix/master[9764]: daemon started -- version 3.1.0, 
configuration /etc/postfix

I see nothing bad in the files mentionned, for example :
# ls -l /usr/lib/postfix/./sbin/lmtp
lrwxrwxrwx 1 root root 4 juil. 20 23:42 /usr/lib/postfix/./sbin/lmtp -> smtp
# ls -l /usr/lib/postfix/./sbin/smtp
-rwxr-xr-x 1 root root 123464 juil. 20 23:42 /usr/lib/postfix/./sbin/smtp

Yeah, all these warnings are about symlinks.  The solution is to use
"find -L", although Wietse seems to have reservations about that (see
his replies in the thread on postfix-users).
Thanks for these explanations. I'll continue to live with theses 
massages, perhaps I'll filter them with logcheck.


Cheers,
Sven



--
 Francois Mescam

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

2016-07-29 Thread Sven Joachim

Control: forwarded -1 http://marc.info/?l=postfix-users=145686783109440=2

On 2016-07-27 09:36 +0200, Francois Mescam wrote:

> When I do "systemctl restart postfix" in the logs I have :
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9559]: stopping the Postfix 
> mail system
> Jul 27 09:27:08 eiffel6 postfix/master[9515]: terminating on signal 15
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9706]: warning: group
> or other writable: /usr/lib/postfix/./libpostfix-tls.so.1
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9707]: warning: group or other 
> writable: /usr/lib/postfix/./sbin/lmtp
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9708]: warning: group
> or other writable: /usr/lib/postfix/./libpostfix-dns.so.1
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9709]: warning: group
> or other writable: /usr/lib/postfix/./libpostfix-util.so.1
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9710]: warning: group
> or other writable: /usr/lib/postfix/./libpostfix-master.so.1
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9711]: warning: group
> or other writable: /usr/lib/postfix/./libpostfix-global.so.1
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9712]: warning: group or other 
> writable: /usr/lib/postfix/sbin/./lmtp
> Jul 27 09:27:08 eiffel6 postfix/postfix-script[9762]: starting the Postfix 
> mail system
> Jul 27 09:27:08 eiffel6 postfix/master[9764]: daemon started -- version 
> 3.1.0, configuration /etc/postfix
>
> I see nothing bad in the files mentionned, for example :
> # ls -l /usr/lib/postfix/./sbin/lmtp
> lrwxrwxrwx 1 root root 4 juil. 20 23:42 /usr/lib/postfix/./sbin/lmtp -> smtp
> # ls -l /usr/lib/postfix/./sbin/smtp
> -rwxr-xr-x 1 root root 123464 juil. 20 23:42 /usr/lib/postfix/./sbin/smtp

Yeah, all these warnings are about symlinks.  The solution is to use
"find -L", although Wietse seems to have reservations about that (see
his replies in the thread on postfix-users).

Cheers,
   Sven

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

2016-07-27 Thread Francois Mescam

Package: postfix
Version: 3.1.0-4
Severity: normal

Dear Maintainer,

When I do "systemctl restart postfix" in the logs I have :
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9559]: stopping the Postfix mail 
system
Jul 27 09:27:08 eiffel6 postfix/master[9515]: terminating on signal 15
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9706]: warning: group or other 
writable: /usr/lib/postfix/./libpostfix-tls.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9707]: warning: group or other 
writable: /usr/lib/postfix/./sbin/lmtp
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9708]: warning: group or other 
writable: /usr/lib/postfix/./libpostfix-dns.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9709]: warning: group or other 
writable: /usr/lib/postfix/./libpostfix-util.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9710]: warning: group or other 
writable: /usr/lib/postfix/./libpostfix-master.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9711]: warning: group or other 
writable: /usr/lib/postfix/./libpostfix-global.so.1
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9712]: warning: group or other 
writable: /usr/lib/postfix/sbin/./lmtp
Jul 27 09:27:08 eiffel6 postfix/postfix-script[9762]: starting the Postfix mail 
system
Jul 27 09:27:08 eiffel6 postfix/master[9764]: daemon started -- version 3.1.0, 
configuration /etc/postfix

I see nothing bad in the files mentionned, for example :
# ls -l /usr/lib/postfix/./sbin/lmtp
lrwxrwxrwx 1 root root 4 juil. 20 23:42 /usr/lib/postfix/./sbin/lmtp -> smtp
# ls -l /usr/lib/postfix/./sbin/smtp
-rwxr-xr-x 1 root root 123464 juil. 20 23:42 /usr/lib/postfix/./sbin/smtp

I have these warnings since I installed postfix (3.1.0-3.1).

With my best regards.

François

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (900, 'testing'), (800, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.6.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages postfix depends on:
ii  adduser3.115
ii  cpio   2.11+dfsg-5
ii  debconf [debconf-2.0]  1.5.59
ii  dpkg   1.18.9
ii  init-system-helpers1.36
ii  libc6  2.23-2
ii  libdb5.3   5.3.28-12
ii  libicu55   55.1-7
ii  libsasl2-2 2.1.26.dfsg1-15
ii  libsqlite3-0   3.13.0-1
ii  libssl1.0.21.0.2h-1
ii  lsb-base   9.20160629
ii  netbase5.3
ii  ssl-cert   1.0.38

Versions of packages postfix recommends:
ii  python3  3.5.1-4

Versions of packages postfix suggests:
ii  bsd-mailx [mail-reader]8.1.2-0.20160123cvs-3
ii  dovecot-core [dovecot-common]  1:2.2.25-1
ii  icedove [mail-reader]  1:45.1.0-1
ii  libsasl2-modules   2.1.26.dfsg1-15
ii  mutt [mail-reader] 1.6.0-1
pn  postfix-cdb
ii  postfix-doc3.1.0-4
pn  postfix-ldap   
pn  postfix-mysql  
pn  postfix-pcre   
pn  postfix-pgsql  
ii  procmail   3.22-25
pn  resolvconf 
pn  sasl2-bin  
pn  ufw

-- debconf information:
  postfix/relay_restrictions_warning:
* postfix/main_mailer_type: Internet Site
  postfix/chattr: false
* postfix/mailname: eiffel6.mcfm
  postfix/destinations: eiffel6, localhost, eiffel6.mcfm
  postfix/recipient_delim: +
  postfix/protocols: all
  postfix/compat_conversion_warning: true
  postfix/sqlite_warning:
  postfix/not_configured:
  postfix/main_cf_conversion_warning: true
  postfix/kernel_version_warning:
  postfix/retry_upgrade_warning:
  postfix/mydomain_warning:
  postfix/root_address:
  postfix/rfc1035_violation: false
  postfix/mynetworks: 127.0.0.1/32 192.168.1.18/32 172.17.0.1/32 [::1]/128 
[fe80::6257:18ff:fe03:28d9]/128
  postfix/bad_recipient_delimiter:
  postfix/tlsmgr_upgrade_warning:
  postfix/relayhost:
  postfix/procmail: true
  postfix/dynamicmaps_conversion_warning:
  postfix/mailbox_limit: 0

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

Bug#832576: postfix: Messages postfix-script: warning: group or other writable: in the logs

4 matches

Site Navigation

Mail list logo

Footer information