Dear all,
I have checked the mailing list for hours (in 17,576 mails) and gave
up.
I have a backup mail server that mounts the user home via NFS from
the primary mail server. My home directory permission is 700. My
backup mail server do read the .procmailrc from the NFS-mounted home.
My primary mail server is reading and processing .procmailrc nicely,
but my backup mail server isn't. The permission of my .procmailrc is
644. My procmail is installed as 6755. I have tested it with several
cases. It seems that at least my home directory have to be owned by my
primary group, and group executable bit have to be set (710). I don't
know why.
I have checked the HISTORY:
1995/05/17: v3.11pre3
........
- /usr/spool/mail perm 1777, procmail setgid mail, procmail
could not read .procmailrc files in 700 $HOME dirs, fixed
I also see from examples/advanced, in "Security considerations":
If in EXPLICIT DELIVERY mode (typically when called from within sendmail)
procmail will ALWAYS change UID and gid to the RECIPIENT's defaults as soon as
it starts reading the recipient's $HOME/.procmailrc file.
If NOT in explicit delivery mode (typically when called from within the
recipient's $HOME/.forward file) procmail will ALWAYS change UID and gid to
the real uid and gid of the INVOKER (effectively losing any suid or sgid
privileges).
I have tested both modes, and they both fail reading my .procmailrc
under my 700 NFS-mounted home. Procmail did not change to my UID before
they read my .procmailrc.
Does anyone know what should I do now?
--
Best regards,
imacat ^_*' <imacat(_at_)mail(_dot_)imacat(_dot_)idv(_dot_)tw>
PGP Key: http://www.imacat.idv.tw/me/pgpkey.txt
<<Woman's Voice>> News: http://www.wov.idv.tw/
Tavern IMACAT's: http://www.imacat.idv.tw/
TLUG List Manager: http://www.linux.org.tw/mailman/listinfo/tlug
pgpO2PChKMkxk.pgp
Description: PGP signature
_______________________________________________
procmail mailing list
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail