Re: Using maildrop from sendmail aliases file
W. Sierke wrote: to recap: I'm trying to run maildrop from /etc/mail/aliases with the following entry: second-domain-tld:|/usr/local/bin/maildrop -d [EMAIL PROTECTED] where second-domain-tld is from an entry in virtusertable. Initially this gave me: Dec 25 17:05:19 maildrop[75657]: Cannot set my user or group id. so as per the above included text, I tried making maildrop setuid: Dec 26 15:08:20 maildrop[93442]: You are not a trusted user. Turns out this was an issue with the maildrop port. There doesn't appear to be a way of configuring 'trusted users' for maildrop without directly modifying the Makefile. And maildrop doesn't get installed suid despite having it's --enable-maildrop-uid option set. Making maildrop suid and configuring it with user:mailnull as a trusted user got it working. Time for a change request I think. Wayne ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using maildrop from sendmail aliases file
W. Sierke wrote: More guessing (as I'm still not clear on the specifics of what is failing)... Is sendmail running as user:smmsp when it's calling maildrop? That would explain why maildrop isn't able to change itself to user:vmail, no? Should setting the setuid bit circumvent this? When I try that I get: Dec 26 15:08:20 maildrop[93442]: You are not a trusted user. where I guess You = smmsp? If this is the case, then it must be a problem for any program run from /etc/mail/aliases, is this just too hard to do on a default FreeBSD? Still out of my depth here but learning a bit more. :) I'm curious about the lack of response since I was thinking there was a good chance this would be a fairly obvious one for our more experienced players. Am I wrong in thinking that this is just a permissions/security issue? Just to recap: I'm trying to run maildrop from /etc/mail/aliases with the following entry: second-domain-tld:|/usr/local/bin/maildrop -d [EMAIL PROTECTED] where second-domain-tld is from an entry in virtusertable. Initially this gave me: Dec 25 17:05:19 maildrop[75657]: Cannot set my user or group id. so as per the above included text, I tried making maildrop setuid: Dec 26 15:08:20 maildrop[93442]: You are not a trusted user. Any and all hints, suggestions, advice and abuse welcome as all my research efforts are getting me nowhere at the moment. Wayne ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Using maildrop from sendmail aliases file
I am attempting to configure sendmail to pass mail addressed to a particular domain to maildrop. maildrop is already installed and used with getmail to collect mail from a number of pop accounts. It has been installed as user:vmail group:vmail. This existing setup works fine. I've added the following to the sendmail configuration: in /etc/mail/virtusertable ... @second.domain.tldsecond-domain-tld and in /etc/mail/aliases ... second-domain-tld:| /usr/local/bin/maildrop -d [EMAIL PROTECTED] It looks as though it's ready to work except for this in /var/log/maillog: ... Dec 25 17:05:19 maildrop[75657]: Cannot set my user or group id. Presumably this is because maildrop wants to set itself to run as user:vmail and the existing setup I have works as-is because getmail (which calls maildrop) is configured to run as user:vmail in /etc/crontab. Either I need to find a way to allow maildrop to change itself to user:vmail when called from sendmail (which I don't know how to achieve) or I need to change maildrop to run as (I'm guessing) user:root which if memory serves was something that was suggested to be avoided. What would be the best approach? Thanks, Wayne ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using maildrop from sendmail aliases file
W. Sierke wrote: I am attempting to configure sendmail to pass mail addressed to a particular domain to maildrop. ... I've added the following to the sendmail configuration: in /etc/mail/virtusertable ... @second.domain.tldsecond-domain-tld and in /etc/mail/aliases ... second-domain-tld:| /usr/local/bin/maildrop -d [EMAIL PROTECTED] It looks as though it's ready to work except for this in /var/log/maillog: ... Dec 25 17:05:19 maildrop[75657]: Cannot set my user or group id. Presumably this is because maildrop wants to set itself to run as user:vmail and the existing setup I have works as-is because getmail (which calls maildrop) is configured to run as user:vmail in /etc/crontab. More guessing (as I'm still not clear on the specifics of what is failing)... Is sendmail running as user:smmsp when it's calling maildrop? That would explain why maildrop isn't able to change itself to user:vmail, no? Should setting the setuid bit circumvent this? When I try that I get: Dec 26 15:08:20 maildrop[93442]: You are not a trusted user. where I guess You = smmsp? If this is the case, then it must be a problem for any program run from /etc/mail/aliases, is this just too hard to do on a default FreeBSD? Still out of my depth here but learning a bit more. :) Wayne ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using maildrop from sendmail aliases file
W. Sierke wrote: I am attempting to configure sendmail to pass mail addressed to a particular domain to maildrop. ... I've added the following to the sendmail configuration: in /etc/mail/virtusertable ... @second.domain.tldsecond-domain-tld and in /etc/mail/aliases ... second-domain-tld:| /usr/local/bin/maildrop -d [EMAIL PROTECTED] It looks as though it's ready to work except for this in /var/log/maillog: ... Dec 25 17:05:19 maildrop[75657]: Cannot set my user or group id. Presumably this is because maildrop wants to set itself to run as user:vmail and the existing setup I have works as-is because getmail (which calls maildrop) is configured to run as user:vmail in /etc/crontab. More guessing (as I'm still not clear on the specifics of what is failing)... Is sendmail running as user:smmsp when it's calling maildrop? That would explain why maildrop isn't able to change itself to user:vmail, no? Should setting the setuid bit circumvent this? When I try that I get: Dec 26 15:08:20 maildrop[93442]: You are not a trusted user. where I guess You = smmsp? If this is the case, then it must be a problem for any program run from /etc/mail/aliases, is this just too hard to do on a default FreeBSD? Still out of my depth here but learning a bit more. :) Wayne ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]