procmail
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: ProcMail and MHonArc interaction

2001-06-01 18:22:35
from [Don Hammond] [Permanent Link] 
On  1 Jun, pegmgr(_at_)peg(_dot_)com wrote:
|    >Suggestion: Create a verbose procmail log file and see what the error is.
|    >
| 
|   |  From dba-request(_at_)peg(_dot_)com Fri Jun  1 15:40:57 2001
|   |   Subject: Re: Just a test 
|   |    Folder: archive/latest/136                                1272
|   |  procmail: [6112] Fri Jun  1 15:48:37 2001
|   |
|   |  [log entries snipped]
|   |
|   |  procmail: Unlocking "archive/latest/..lock"
|   |  From dba-request(_at_)peg(_dot_)com Fri Jun  1 15:48:24 2001
|   |   Subject: Re: Doubts on ver. 8.2B Binary dump / load 
|   |    Folder: archive/latest/137                                1293
|   |  
|   |  Insecure dependency in mkdir while running setgid at 
|   |   /usr/local/lib/mhonarc/mhlock.pl line 98.
| 
| [...]
| 
| The above is the log message from after the ':' on the second recipe 
| was remove. Anyone know what an "Insecure dependency in mkdir" is?
| 

I don't know mhonarc and run procmail v3.13.1 rather than v3.15.1 you're
working with, so this is little more than a guess. But the "Insecure
dependency ..." error message sounds somewhat like perl's taint
checking, which is enabled (even without the -T switch) if real and
effective user or group ids don't match.  The error message seems to
indicate something is running setgid. I don't know if this is
peripheral to this stuff not working after the various software
upgrades, but if the mhlock.pl script is running under taint
checking, and a call to mkdir is tainted (e.g. using insecure
$PATH), perl will throw an exception. I believe stderr generated
by other programs during mail "delivery" is written to the procmail
logfile.  So it *might* explain the log entry and the failure of this
to run through procmail. I don't remember (and don't have time to look
it up), but taint checking might not have existed in perl 4 which would
also help explain all this in the context of that upgrade. Is mhonarc or
procmail running setgid?

-- 
                         /"\
Don Hammond              \ /     ASCII Ribbon Campaign
Raleigh, NC US            X        Against HTML Mail,
                         / \      and News Too

_______________________________________________
procmail mailing list
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: ProcMail and MHonArc interaction, Collin Park
Next by Date:  Re: Bounce to originator, Stephen Patterson
Previous by Thread:  Re: ProcMail and MHonArc interaction, pegmgr
Next by Thread:  Re: ProcMail and MHonArc interaction, Earl Hood
Indexes:  [Date] [Thread] [Top] [All Lists]