Re: [Exim] filter and save to a group writable only file

トップ ページ
このメッセージを削除
このメッセージに返信
著者: Chris Thompson
日付:  
To: Exim users mailing list
CC: Steve Traylen
題目: Re: [Exim] filter and save to a group writable only file
Steve Traylen <traylen@???> writes:
>
> Following a recent change from sendmail to exim I am having problems
> duplicating some existing bad practicse we had here.
>
> From a filter I have
>
> seen save group/mailfile 0664
>
> which runs as the local user deposit:editors
>
> and is trying to write to
>
> -rw-rw-r--    1 traylen  editors    172678 Dec 17 18:20 mailfile

>
> A failure occurs because deposit does not own the file but deposit is
> able to touch and write to this file.
>
> Can I configure, perhaps also in the .forward, for this lack of
> ownership of the destination file to be ignored


Your problem can probably be solved by adding initgroups=true to the
director that processes .forward files. If you don't do this, the
process writing the file has only the user's login group active:
the supplementary group list is empty.

The default for initgroups is false because it can be expensive on
some systems. Hint for Solaris 8 + NIS (or NISplus) administrators:
take a look at the NETID_AUTHORITATIVE setting in /etc/default/nss,
available since patches of around May 2001.

Chris Thompson
Email: cet1@???