On Thu, 19 Dec 1996, Nigel Metheringham wrote:
> ph10@??? said:
> } Because you are running a configuration that causes it to look for a
> } .forward file in the user's home directory. It does this as the user.
> } With the permissions set the way you have them, it cannot determine
> } whether a .forward file exists or not. Consequently, it cannot
> } deliver the mail.
By default I didnt user an specifc exim_user. According to the
configuration it only uses the users uid when you use check_local_user.
Which I did now.
> dotforward:
> no_verify,
> driver = forwardfile;
> forbid_include = true,
> check_local_user = true,
> owners = root,
> modemask = 022,
> file = ${home}/.forward
check_local_user:
When this option is set, the local user is always one of the permitted
owners of the file, and the local user's uid is used when reading the
forward file if the seteuid optino is set or if the global security
setting is not 'setuid'.
Since I didnt set a security option I would think that the uid of the user
should have been used. But the access was done by root apparently.
After I added and chowned all the files (except the configure file):
trusted_users = exim
exim_user = exim
security = setuid+seteuid
The output now was the following:
ws6:/usr/exim #sendmail -d3 -M 0vaO3j-00061w-00
Debug level set to 3
set_process_info: 11908 1.59 delivering specified messages
delivering message 0vaO3j-00061w-00
set_process_info: 11908 1.59 delivering 0vaO3j-00061w-00
LOG: MAIN
Unfrozen by auto-thaw
system_aliases director: file = /etc/aliases search type = 48
system_aliases director failed for moebert:
dotforward director: file = /home/ap_f/moebert/.forward
dotforward director euid=1048 egid=100
dotforward director: no file found
dotforward director restored euid=22222 egid=22222
localuser director succeeded for moebert
transport: local_delivery
>>> Local deliveries >>>
delivering moebert@??? as moebert using
local_delivery:
uid=1048 gid=100 home=/home/ap_f/moebert
Local delivery process 18309 uid=1048 gid=100
set_process_info: 18309 1.59 delivering 0vaO3j-00061w-00 to moebert using
local_delivery
appendfile yields 0 with errno=0 more_errno=0
LOG: MAIN
=> moebert <moebert@???> D=localuser
T=local_delivery
set_process_info: 11908 1.59 tidying up after delivering 0vaO3j-00061w-00
Processing retry items
end of retry processing
LOG: MAIN
Completed
end delivery of 0vaO3j-00061w-00
That means check_local_user only works if you set exim_user and use
seteuid in the security setting ?
Greetings
Niels =8)
- PHYSnet Rechnerverbund PGP V2.6 Public key via finger or key server
Niels Provos
Universitaet Hamburg WWW: http://www.physnet.uni-hamburg.de/provos/
Jungiusstrasse 9 E-Mail: provos@???
Germany 20355 Hamburg Tel.: +49 40 4123-2504 Fax: -6571
