From owner-freebsd-ports@FreeBSD.ORG  Fri Apr 20 19:04:27 2007
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
X-Original-To: ports@freebsd.org
Delivered-To: freebsd-ports@FreeBSD.ORG
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id A37F016A409
	for <ports@freebsd.org>; Fri, 20 Apr 2007 19:04:27 +0000 (UTC)
	(envelope-from pauls@utdallas.edu)
Received: from smtp2.utdallas.edu (smtp2.utdallas.edu [129.110.10.33])
	by mx1.freebsd.org (Postfix) with ESMTP id 84CC213C489
	for <ports@freebsd.org>; Fri, 20 Apr 2007 19:04:27 +0000 (UTC)
	(envelope-from pauls@utdallas.edu)
Received: from utd59514.utdallas.edu (utd59514.utdallas.edu [129.110.3.28])
	by smtp2.utdallas.edu (Postfix) with ESMTP id 3A45D5C16F;
	Fri, 20 Apr 2007 13:44:57 -0500 (CDT)
Date: Fri, 20 Apr 2007 13:44:57 -0500
From: Paul Schmehl <pauls@utdallas.edu>
To: Jeffrey Goldberg <jeffrey@goldmark.org>,
	David Southwell <david@vizion2000.net>
Message-ID: <94592079D5FE1208BC6F7D03@utd59514.utdallas.edu>
In-Reply-To: <CA436D2A-08D1-4CC9-B300-7FF4E7F929F0@goldmark.org>
References: <200704200842.48793.david@vizion2000.net>
	<CA436D2A-08D1-4CC9-B300-7FF4E7F929F0@goldmark.org>
X-Mailer: Mulberry/4.0.6 (Linux/x86)
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=sha1;
	protocol="application/pkcs7-signature";
	boundary="==========5ED8810CCD7A05DAC8F8=========="
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: ports@freebsd.org, List_Mailman Org <mailman-users@python.org>
Subject: Re: Mailman GID problem
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Apr 2007 19:04:27 -0000

--==========5ED8810CCD7A05DAC8F8==========
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

--On Friday, April 20, 2007 11:38:03 -0500 Jeffrey Goldberg=20
<jeffrey@goldmark.org> wrote:

> On Apr 20, 2007, at 10:42 AM, David Southwell wrote:
>
>> Extract from /var/maillog
>> Apr 20 08:24:58 dns1 Mailman mail-wrapper: Group mismatch error.
>> Mailman
>> expected the mail wrapper script to be executed as group "nobody",
>> but the
>> system's mail server executed the mail script as group "mailman".  Try
>> tweaking the mail server to run the script as group "nobody", or re-
>> run
>> configure,  providing the command line option `--with-mail-
>> gid=3Dmailman'.
>
> I've given a complementary response on the mailman-users list (to which
> I'm also cc'ing this)
>
> Nothing I say below takes away from what I said in that previous post.
> The answers to the questions I've asked would have resolved this problem
> long ago.
>
> There appears to be a bug in the pkg-install file that comes with the
> current mailman port.  When one installs (through FreeBSD ports) mailman
> selecting postfix as the MTA, the MAIL_GID correctly gets set to "nobody"
>
> But in the pkg-install script all of the mailman files get set with
>
>      echo "---> Creating Mailman directory (/usr/local/mailman)"
>      (umask 002 && /bin/mkdir -p "/usr/local/mailman") || exit 1
>      /usr/sbin/chown -R "mailman:mailman" "/usr/local/mailman" || exit 1
>      /bin/chmod g+s "/usr/local/mailman" || exit 1
>
> Which is correct for everything except for /usr/local/mailman/data which
> should actually be set with
>
>     chown -R nobody:mailman /usr/local/mailman/data
>
> I don't know enough about ports to actually find the source pkg-install
> fine (the one I looked at and quoted from is after make has edited it
> with sed).  So I'm not certain whether the problem is in the Makefile or
> in the source for the pkg-install.
>
> I experienced the same problem David had just a few weeks ago, but I
> attributed the problem (which I fixed by manually doing the chown) to me
> having moved my mailman set up from one machine to another.  So I thought
> that I had the wrong permissions for /usr/local/mailman/data as a
> consequence of the move and not because the mailman FreeBSD port was
> broken.
>
> When I saw some of David's problems I started to have some suspicions,
> but I wasn't able to get enough information from him to really look at
> the ownerships the port set up.

*If* what you say is true, then this should fix it:

--- pkg-install.orig    Fri Apr 20 13:42:17 2007
+++ pkg-install Fri Apr 20 13:42:47 2007
@@ -43,6 +43,7 @@
     (umask 002 && /bin/mkdir -p "%%MAILMANDIR%%") || exit 1
     /usr/sbin/chown -R "%%USER%%:%%GROUP%%" "%%MAILMANDIR%%" || exit 1
     /bin/chmod g+s "%%MAILMANDIR%%" || exit 1
+    /usr/sbin/chown -R "nobody" "%%MAILMANDIR%%/data" || exit 1
   fi
   ;;

I haven't tested it, so use it at your own risk.

Paul Schmehl (pauls@utdallas.edu)
Senior Information Security Analyst
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/

--==========5ED8810CCD7A05DAC8F8==========--