Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 04 May 2003 01:50:41 +0900
From:      Hajimu UMEMOTO <ume@mahoroba.org>
To:        "Scot W. Hetzel" <hetzels@westbend.net>
Cc:        Hajimu UMEMOTO <ume@mahoroba.org>
Subject:   Re: Cyrus-SASL + sendmail 8.12.9 + "group writable file"
Message-ID:  <ygebrykdlem.wl%ume@mahoroba.org>
In-Reply-To: <016201c3118f$89ae1a70$13fd2fd8@Admin02>
References:  <20030428184857.V33294@rigel.orionsys.com> <005a01c31043$2b360680$13fd2fd8@Admin02> <yged6j0dshr.wl%ume@mahoroba.org> <016201c3118f$89ae1a70$13fd2fd8@Admin02>
next in thread | previous in thread | raw e-mail | index | archive | help 
Hi,

>>>>> On Sat, 3 May 2003 11:17:14 -0500
>>>>> "Scot W. Hetzel" <hetzels@westbend.net> said:

hetzels> So far I could only duplicate this problem when using PINE (mail/pine4) to
hetzels> send the e-mail.  I was unable to get the problem to occur with the mail or
hetzels> sendmail commands.

How does PINE send email?

hetzels>  I also tried telneting to ports 25 & 587 to send a test
hetzels> message and the problem didn't occur either (I didn't use the AUTH mech
hetzels> command, as I wasn't sure how to enter the user name & password for the
hetzels> PLAIN or LOGIN mechs).

I believe that when you do telneting to ports 25 & 587, the sendmail
which respond are not using submit.cf but using sendmail.cf.

> Though I'm using SASL2 and not tested SASL1, I cannot see such
> problem.  I think that MSP doesn't see sasldb2? unless you do enable
> SMTP AUTH in submit.mc, and you don't need to have such configuration
> by MSP.
>
hetzels> No changes were made to the [freebsd.,]submit.mc files as installed from the
hetzels> FreeBSD sources.

Okay.

hetzels> The feature/msp.m4 file by default defines confRUN_AS_USER to the smmsp
hetzels> user, we needed to add the group 'mail' so that we wouldn't get a permission
hetzels> error on the sasldb file, since this file is set cyrus:mail and perms 640.
hetzels> This is the only reason for specifing group mail.

I see.  But, as the comment line above the confRUN_AS_USER says, it
affects only when sendmail is invoked from root.  So, I still cannot
understand what changing confRUN_AS_USER means.

Sincerely,

--
Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan
ume@mahoroba.org  ume@bisd.hitachi.co.jp  ume@{,jp.}FreeBSD.org
http://www.imasy.org/~ume/

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ygebrykdlem.wl%ume>