RE: [vchkpw] Re: Ucspi-ssl? --> test

Andrea Riela Thu, 15 Jan 2004 18:22:13 -0800

Peter Palmreuther wrote:
> Execute
> 
> chown vpopmail.vchkpw /home/vpopmail/etc
> 
> and test again. If this succeeds you /can/ further search for
> the cause of 'setuid' vchkpw is run as, or you can live with
> the fact you need 'write permissions for vpopmail on ~vpopmail/etc'.


Now the etc dir is vpopmail:vchkpw.
But, after the pop3-ssl download, I see that in my /home/vpopmail/etc:

observe# ls -la
total 10
drwxr-xr-x  2 vpopmail  vchkpw   512 Jan 16 02:12 .
drwxr-xr-x  8 root      wheel    512 Jan 12 01:10 ..
-rw-r--r--  1 root      wheel     25 Jan 12 12:13 inc_deps
-rw-r--r--  1 root      wheel     34 Jan 12 12:13 lib_deps
-rw-r--r--  1 vpopmail  vchkpw     0 Jan 16 01:40 open-smtp
-rw-r--r--  1 vpopmail  vchkpw     0 Jan 16 02:12 open-smtp.lock
-rw-r--r--  1 vpopmail  vchkpw     0 Jan 16 02:12 open-smtp.tmp.4179
-rw-r--r--  1 root      wheel    454 Jan 12 01:07 tcp.smtp
-rw-r--r--  1 root      vchkpw  2352 Jan 16 01:56 tcp.smtp.cdb
-rw-r--r--  1 vpopmail  vchkpw  1107 Jan 12 01:09 vlimits.default

This is a piece of my kdump.out:

  4179 vchkpw   CALL  chown(0x16000,0x59,0x59)
  4179 vchkpw   NAMI  "/home/vpopmail/domains/nesys.it/test/lastauth"
  4179 vchkpw   RET   chown 0
  4179 vchkpw   CALL  gettimeofday(0xcfbfd784,0)
  4179 vchkpw   RET   gettimeofday 0
  4179 vchkpw   CALL  open(0x833c,0x602,0x1b6)
  4179 vchkpw   NAMI  "/home/vpopmail/etc/open-smtp.lock"
  4179 vchkpw   RET   open 3
  4179 vchkpw   CALL  fcntl(0x3,0x8,0xcfbfd734)   
  4179 vchkpw   RET   fcntl 0
  4179 vchkpw   CALL  open(0x835e,0x2,0x1b6)
  4179 vchkpw   NAMI  "/home/vpopmail/etc/open-smtp"
  4179 vchkpw   RET   open 4    
  4179 vchkpw   CALL  getpid
  4179 vchkpw   RET   getpid 4179/0x1053
  4179 vchkpw   CALL  open(0xcfbfd9d8,0x602,0x1b6)
  4179 vchkpw   NAMI  "/home/vpopmail/etc/open-smtp.tmp.4179"
  4179 vchkpw   RET   open 5
  4179 vchkpw   CALL  fcntl(0x3,0x8,0xcfbfd764)
  4179 vchkpw   RET   fcntl 0
  4179 vchkpw   CALL  close(0x3)
  4179 vchkpw   RET   close 0
  4179 vchkpw   CALL  setgid(0x59)
  4179 vchkpw   RET   setgid 0
  4179 vchkpw   CALL  setuid(0x59)
  4179 vchkpw   RET   setuid 0
  4179 vchkpw   CALL  chdir(0x12c22)
  4179 vchkpw   NAMI  "/home/vpopmail/domains/nesys.it/test"
  4179 vchkpw   RET   chdir 0
  4179 vchkpw   CALL  close(0xffffffff)
  4179 vchkpw   RET   close -1 errno 9 Bad file descriptor
  4179 vchkpw   CALL  execve(0xcfbfdbca,0xcfbfdb74,0x16000)
  4179 vchkpw   NAMI  "/var/qmail/bin/qmail-pop3d"
  4179 qmail-pop3d EMUL  "native"
  4179 qmail-pop3d RET   execve 0
  4179 qmail-pop3d CALL  open(0x10e5,0,0)

Well, my /home/vpopmail/domains/nesys.it/test is:
drwx------   3 vpopmail  vchkpw   512 Jan 14 11:36 test

Question: the /home dir needs the nosuid in "fstab" file, or not?
My fstab:
/dev/wd0a / ffs rw 1 1
/dev/wd0h /home ffs rw,nodev,nosuid 1 2
/dev/wd0n /logs ffs rw,nodev,nosuid 1 2
/dev/wd0m /src ffs rw,nodev,nosuid 1 2
/dev/wd0d /tmp ffs rw,nodev,nosuid 1 2
/dev/wd0g /usr ffs rw,nodev 1 2
/dev/wd0e /var ffs rw,nodev 1 2
#/dev/wd0e /var ffs rw,nodev,nosuid 1 2
/dev/wd0l /web ffs rw,nodev 1 2
#/dev/wd0l /web ffs rw,nodev,nosuid 1 2

Thanks for all
Regards
Andrea

RE: [vchkpw] Re: Ucspi-ssl? --> test

Reply via email to