From owner-freebsd-questions@FreeBSD.ORG Fri Dec 26 20:30:19 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A869F16A4CE for ; Fri, 26 Dec 2003 20:30:19 -0800 (PST) Received: from smtp3.adl2.internode.on.net (smtp3.adl2.internode.on.net [203.16.214.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2E73043D2F for ; Fri, 26 Dec 2003 20:30:15 -0800 (PST) (envelope-from ws@frogspawn.cjb.net) Received: from predatorii (ppp136-230.lns1.adl2.internode.on.net [150.101.136.230])hBR4U9p5053827 for ; Sat, 27 Dec 2003 15:00:13 +1030 (CST) Message-ID: <002e01c3cc32$bc0e7100$8464a8c0@ovirt.dyndns.ws> From: "W. Sierke" To: References: <004601c3cb6f$57de4a20$8464a8c0@ovirt.dyndns.ws> Date: Sat, 27 Dec 2003 15:04:32 +1030 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Subject: Re: Using maildrop from sendmail aliases file X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 27 Dec 2003 04:30:19 -0000 "W. Sierke" wrote: > More guessing (as I'm still not clear on the specifics of what is > failing)... > > Is sendmail running as user:smmsp when it's calling maildrop? That would > explain why maildrop isn't able to change itself to user:vmail, no? Should > setting the setuid bit circumvent this? When I try that I get: > > Dec 26 15:08:20 maildrop[93442]: You are not a trusted user. > > where I guess "You" = smmsp? > > If this is the case, then it must be a problem for any program run from > /etc/mail/aliases, is this just too hard to do on a default FreeBSD? Still > out of my depth here but learning a bit more. :) I'm curious about the lack of response since I was thinking there was a good chance this would be a fairly obvious one for our more experienced players. Am I wrong in thinking that this is just a permissions/security issue? Just to recap: I'm trying to run maildrop from /etc/mail/aliases with the following entry: second-domain-tld: "|/usr/local/bin/maildrop -d ws@first.domain.tld" where second-domain-tld is from an entry in virtusertable. Initially this gave me: Dec 25 17:05:19 maildrop[75657]: Cannot set my user or group id. so as per the above included text, I tried making maildrop setuid: Dec 26 15:08:20 maildrop[93442]: You are not a trusted user. Any and all hints, suggestions, advice and abuse welcome as all my research efforts are getting me nowhere at the moment. Wayne