[Exim] suid exim

Pàgina inicial
Delete this message
Reply to this message
Autor: Randy Bush
Data:  
A: exim users
Assumpte: [Exim] suid exim
when exim runs a .procmailrc

    procmail_pipe:
      driver = pipe
      path = "PROCMAILDIR:/usr/local/bin:/usr/bin"
      command = "/bin/procmail -d ${local_part}"
      headers_remove = "reply-to"
      return_path_add
      check_string = "From "
      escape_string = ">From "
      user = "${local_part}"
      group = mail


it seems to be doing so as the user exim, not as the owner of the local_part
in such a way that some progs notice. i.e. i am logging

    Apr 24 04:05:50 rip op: user exim FAILED to execute 'dns.az.mv /var/dns/primary/az.8 /var/dns/primary/az.9'
    Apr 24 04:05:50 rip op: user exim FAILED to execute 'dns.az.mv /var/dns/primary/az.7 /var/dns/primary/az.8'


where op(1) is a system run-this-command-as-root-but-only-for-certain-users
program.

randy



ps: excitement!

  ph10@???:
    SMTP error from remote mailer after RCPT TO:<ph10@???>:
    host taurus.cus.cam.ac.uk [131.111.8.48]:
    550 rejected:
    administrative prohibition