procmail
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Can an rc file be bypassed?

2004-03-18 02:30:19
from [Roland Hill] [Permanent Link] 
Hi Dallman,

* Dallman Ross <dman(_at_)nomotek(_dot_)com> [18-03-04 04:39]:


Yes.  Or save it to a neutral location with dir perms that enable
the user to save it there.  Of course, then you'll have to look at
that specific file or dir instead of your $DEFAULT to find it.


Seems that permissions are an issue. This snippet is from the top of the
log generated from /etc/procmailrc:

procmail: [11949] Thu Mar 18 21:51:54 2004
procmail: Assigning "MAILDIR=/home/rachel/Maildir/"
procmail: Assigning "INCLUDERC=/etc/procmail/predelivery.rc"
procmail: No match on "^X-Spam-Level: \*\*\*\*\*\*\*\*\*\*\*\*\*\*\*"
procmail: No match on "^X-Spam-Status: Yes"
procmail: Match on "^Subject:.*Virus?"
procmail: Error while writing to
"/home/roland/Maildir/spam5plus/tmp/1079599914.11949_0.rrl03"
procmail: Couldn't create or rename temp file
"/home/roland/Maildir/spam5plus/tmp/1079599914.11949_0.rrl03"

In this instance I was matching on Virus? as indicated as a test measure,
yet it seems it could not write directly to the users Maildir (I usually
use safecat to handle delivery, but it also had the same problem).

i.e mail sent to user rachel, trying to deliver to user roland direct from
the etc/procmailrc file.

My untrained eye thinks that the second line may mean that 
privileges[[[3~[3~[3~[3~[3~[3~[3~[3~[3~[3~[
 are
already dropped before we start.......so to speak. At this point a
DROPPRIVS=yes has not been reached in the etc/procmailrc file.

Some more background in case it is relevant. Mail is popped from my ISP
via getmail. getmail is run per user, and I use the command delivery
function to pipe directly to procmail from getmail.

Could it be that this causes the whole 'process' to run as the user and
therefore no prevleges as such exist?

Am I back to delivering to a neutral place do you (and the list) think?

Thanks for the pointers to date. Hope I have been clear enough.

-- 
Regards,

Roland Hill                                  Registered Linux User #330226
http://pl.net/~rnrhill/rhweb.htm                   @ http://counter.li.org


_______________________________________________
procmail mailing list
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  ALERT: Another ZIP trick is out... (Sanitizer), John D. Hardin
Next by Date:  Re: Can an rc file be bypassed?, Roland Hill
Previous by Thread:  Re: Can an rc file be bypassed?, Dallman Ross
Next by Thread:  Re: Can an rc file be bypassed?, Roland Hill
Indexes:  [Date] [Thread] [Top] [All Lists]