From owner-freebsd-questions@freebsd.org Sun Jun 26 13:10:48 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0075CB731DF for ; Sun, 26 Jun 2016 13:10:48 +0000 (UTC) (envelope-from bah@bananmonarki.se) Received: from feeder.usenet4all.se (1-1-1-38a.far.sth.bostream.se [82.182.32.53]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 66F272F01 for ; Sun, 26 Jun 2016 13:10:45 +0000 (UTC) (envelope-from bah@bananmonarki.se) Received: from testbox.news4all.se (testbox.usenet4all.se [10.0.0.3]) by feeder.usenet4all.se (8.13.1/8.13.1) with ESMTP id u5QDAHo8023990; Sun, 26 Jun 2016 15:10:18 +0200 (CEST) (envelope-from bah@bananmonarki.se) Subject: Re: Sendmail and mimedefang, help. To: Wayne Sierke , freebsd-questions@freebsd.org References: <1466922806.1888.12.camel@au.dyndns.ws> From: Bernt Hansson Message-ID: <4c83122c-cc19-e938-4cde-43c1b48a36d9@bananmonarki.se> Date: Sun, 26 Jun 2016 15:10:20 +0200 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:45.0) Gecko/20100101 Thunderbird/45.1.1 MIME-Version: 1.0 In-Reply-To: <1466922806.1888.12.camel@au.dyndns.ws> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Jun 2016 13:10:48 -0000 On 2016-06-26 08:33, Wayne Sierke wrote: > On Mon, 2016-06-20 at 13:32 +0200, Bernt Hansson wrote: >> Hello list! >> >> I'm trying to setup mimedefang and sendmail on a replacement machine. >> >> This is how I start mimedefang >> >> mimedefang -c -k -p /var/spool/MIMEDefang/defang.pid -m >> /var/spool/MIMEDefang/multiplexor.sock -U mailnull >> >> The multiplexor >> >> mimedefang-multiplexor -U mailnull -s >> /var/spool/MIMEDefang/multiplexor.sock -l >> >> Getting this in /var/log/maillog >> >> mimedefang-multiplexor[13560]: started; minSlaves=1, maxSlaves=2, >> maxRequests=500, maxIdleTime=300, busyTimeout=120, clientTimeout=10 >> mimedefang-multiplexor[13560]: Starting slave 0 (pid 13561) (1 >> running): >> Bringing slaves up to minSlaves (1) >> mimedefang[13564]: MIMEDefang alive. slavesReservedForLoopback=-1 >> AllowNewConnectionsToQueue=0 doRelayCheck=0 doHeloCheck=0 >> doSenderCheck=0 doRecipientCheck=0 >> mimedefang[13564]: Multiplexor alive - entering main loop >> >> I've tried differnt users like daemon, smmsp, operator, nobody and >> even >> sane. >> But no luck. >> >> Getting an e-mail, sendmail respond with this >> >> sm-mta[11617]: u5JM06Qf011617: Milter (mimedefang): local socket >> name >> /var/spool/MIMEDefang/mimedefang.sock unsafe >> >> >> Permissions on /var/spool/MIMEDefang/ >> >> drwx------ 2 mailnull mailnull 512 20 Jun 13:28 MIMEDefang >> >> So what can I do? >> > Hi Bernt, > > I recall running into this problem some years ago but I think the > mimedefang port was improved quite a bit since then in providing better > defaults and run-time configuration options. > > The only immediate difference I can find on my current mail system is: > > drwx--x--- 28 mailnull mailnull 1024 Jun 26 15:50 /var/spool/MIMEDefang/ > > It's possible that is a remnant of a "chmod g-r[w]" in order to address > the "mimedefang.sock unsafe" issue, although I'm only guessing at that > and it may not be related or relevant at all. > > If you have installed the mimedefang port you could try starting it > using "system" methods e.g. "service mimedefang [one]start" or similar > and see if there's any difference in behaviour? Hello Wayne, and thank you for your input. Using service to start defang worked! But there was some permission issues that needed some attention. This I changed from 0700 to 0710 drwx------ 2 mailnull mailnull 512 20 Jun 13:28 MIMEDefang Same as you have, so no more "unsafe" messages. Bernt