Konfiguration:
sendmail-8.8.8 and procmail 3.11 pre 4 or 7
linux 2.0.32
We use procmail for domaindelivery (-m).
to drop the mail in a mailbox to fetch it with pop3 or so.
The sender becommes ' can't create output' when hie mails on
such a domain.
1) What s-bits need procmail ?
r-sr-sr-x root mail
r-sr-sr-x root root
The first.
(I have tried to give no rights, and or it in sendmail via U=0:12
where 12 ist the mail group)
What rights need the mailboxs ?
rw-rw---- user mail
Usually just 600, owned by the user. Does the file already exist? If not,
what are the directory permissions?
But in all the cases the procmail 3.11 pre 7 can't open the mailbox.
The pre 4 modified from suse does it with no s-bit
2) With the sendmail 8.8.8 there was no From header and the qpopper
complaint.
I add -f $g in the Mailerdefinition
but now the procmail 3.11 pre 4 without s-bits fail.
I had big problems with this in certain cases -- the m4 definition
with sendmail no longer generates working (IMHO) local mailer
definitions -- I kept getting escaped from headers. Then I changed
it and had everything coming from root. Here's what I ended up using
to get everything working fine:
Mlocal, P=/usr/local/bin/procmail, F=lsDFMAw5:/|@qSPhn9, S=10/30,
R=20/40,
T=DNS/RFC822/X-Unix,
A=procmail -f $f -o -Y -a $h -d $u
3) What rights must the sendmail have ?
daemon:mail (I would prefer)
daemon:deaemon
(But is it a Problem sich s suid/sgid procmail ?)
On my system,
-r-sr-sr-x 1 root kmem 286082 Sep 22 11:46 /usr/sbin/sendmail-8.8.7
With an linux-2.0.30 there are no problems.
But it is possible with linux-2.0.32 to do suid, inherit the attributes
and so, and I don't think the kernel is the problem.
So you're saying that the exact same configuration doesn't work under
2.0.32, but does under 2.0.30?
Chris