Re: [Exim] different permissions while setting up transport …

Pàgina inicial
Delete this message
Reply to this message
Autor: Conrad Wood
Data:  
A: exim-users
Assumpte: Re: [Exim] different permissions while setting up transport and writing spool
I included exim -d9 output with no user= set atall.


Exim version 3.33 debug level 9 uid=0 gid=0
Berkeley DB: Sleepycat Software: Berkeley DB 2.7.7: (08/20/99)
warehouse.future.localdomain in local_domains? no (end of list)
adding primary host name warehouse.future.localdomain to local_domains
Unable to create IPv6 socket to find interface addresses:
error 97 Address family not supported by protocol
Trying for an IPv4 socket
Actual local interface address is 127.0.0.1 (lo)
Actual local interface address is 192.168.220.2 (eth0)
Actual local interface address is 192.168.221.1 (eth1)
Caller is an admin user
Caller is a trusted user
user name "root" extracted from gecos field "root"
originator: uid=0 gid=0 login=root name=root
sender address = root@???
set_process_info: 30864 accepting a local non-SMTP message from <root@???>
Sender: root@???
Recipients:
cnw
search_tidyup called
>>Original headers (size=4):


test
root@??? in *@future-systems.com? yes (*@future-systems.com)
search_open: lsearch "/etc/email-addresses"
search_find: file="/etc/email-addresses"
key="root" partial=-1
LRU list:
7/etc/email-addresses
End
internal_search_find: file="/etc/email-addresses"
type=lsearch key="root"
file lookup required for root
in /etc/email-addresses
lookup failed
rewritten sender = root@???
rewrite_one_header: type=F:
From: root <root@???>
root@??? in *@future-systems.com? yes (*@future-systems.com)
search_open: lsearch "/etc/email-addresses"
cached open
search_find: file="/etc/email-addresses"
key="root" partial=-1
LRU list:
7/etc/email-addresses
End
internal_search_find: file="/etc/email-addresses"
type=lsearch key="root"
cached data used for lookup of root
in /etc/email-addresses
lookup failed
>>Final headers:

P Received: from root by warehouse.future.localdomain with local (Exim 3.33 #1 (Debian))
    id 17SJh9-00081o-00
    for <cnw@???>; Wed, 10 Jul 2002 16:47:59 +0100
I Message-Id: <E17SJh9-00081o-00@???>
F From: root <root@???>
T To: cnw@???
  Date: Wed, 10 Jul 2002 16:47:59 +0100


test
search_tidyup called
Data file written for message 17SJh9-00081o-00
Writing spool header file
Size of headers = 334
LOG: 0 MAIN
<= root@??? U=root P=local S=340
search_tidyup called
exec /usr/sbin/exim -d9 -C /etc/exim/exim-outgoing.conf -Mc 17SJh9-00081o-00
Exim version 3.33 debug level 9 uid=8 gid=8
Berkeley DB: Sleepycat Software: Berkeley DB 2.7.7: (08/20/99)
warehouse.future.localdomain in local_domains? no (end of list)
adding primary host name warehouse.future.localdomain to local_domains
Unable to create IPv6 socket to find interface addresses:
error 97 Address family not supported by protocol
Trying for an IPv4 socket
Actual local interface address is 127.0.0.1 (lo)
Actual local interface address is 192.168.220.2 (eth0)
Actual local interface address is 192.168.221.1 (eth1)
Caller is an admin user
Caller is a trusted user
set_process_info: 30867 delivering specified messages
delivering message 17SJh9-00081o-00
set_process_info: 30867 delivering 17SJh9-00081o-00
Opened spool file 17SJh9-00081o-00-H
user=root uid=0 gid=0 sender=root@???
sender_local=1 resent=no ident=root
Non-recipients:
Empty Tree
---- End of tree ----
recipients_count=1
body_linecount=1 message_linecount=7
Delivery address list:
cnw@???
locked /var/spool/exim-outgoing/db/retry.lockfile
opened DB file /var/spool/exim-outgoing/db/retry: flags=0
>>>>>>>>>>>>>>>>>>>>>>>>

Considering: cnw@???
future-systems.com in percent_hack_domains? no (end of list)
unique = cnw@???
dbfn_read: key=D:cnw@???
cnw@???: queued for directing
>>>>>>>>>>>>>>>>>>>>>>>>

directing cnw@???
calling imonholiday director
require_files = /home/cnw/onholiday.txt
test existence of /home/cnw/onholiday.txt
required present, EACCES => unknown
Success
queued for holiday_transport transport: local_part=cnw domain=future-systems.com
errors_to=NULL
domain_data=NULL local_part_data=NULL
imonholiday director succeeded for cnw
>>>>>>>>>>>>>>>>>>>>>>>>

After directing:
  Local deliveries:
    cnw@???
  Remote deliveries:
  Failed addresses:
  Addresses to be routed:
  Deferred addresses:
search_tidyup called

>>>>>> Local deliveries >>>>>>

locked /var/spool/exim-outgoing/db/retry.lockfile
opened DB file /var/spool/exim-outgoing/db/retry: flags=0
dbfn_read: key=T:cnw@???
delivering cnw@??? as cnw using holiday_transport:
uid=1001 gid=1001 home=/home/cnw current=/home/cnw
auxiliary group list: <none>
set_process_info: 30869 delivering 17SJh9-00081o-00 to cnw using holiday_transport
holiday_transport transport entered
taking data from transport
Exim version 3.33 debug level 9 uid=1001 gid=1001
Berkeley DB: Sleepycat Software: Berkeley DB 2.7.7: (08/20/99)
Removed setuid privilege: uid=1001 gid=1001 euid=1001 egid=1001
warehouse.future.localdomain in local_domains? no (end of list)
adding primary host name warehouse.future.localdomain to local_domains
Unable to create IPv6 socket to find interface addresses:
error 97 Address family not supported by protocol
Trying for an IPv4 socket
Actual local interface address is 127.0.0.1 (lo)
Actual local interface address is 192.168.220.2 (eth0)
Actual local interface address is 192.168.221.1 (eth1)
LOG: 0 MAIN PANIC DIE
Failed to create spool file /var/spool/exim-outgoing/input//17SJh9-00081v-00-D: Permission denied
holiday_transport transport succeeded
search_tidyup called
holiday_transport transport returned DEFER for cnw@???
added retry item for T:cnw@???: errno=0 0 flags=0
post-process cnw@??? (1)
LOG: 0 MAIN
== cnw@??? T=holiday_transport defer (0): Failed to send message from holiday_transport transport (1)
set_process_info: 30867 tidying up after delivering 17SJh9-00081o-00
Processing retry items
Succeeded addresses:
Failed addresses:
Deferred addresses:
cnw@???
locked /var/spool/exim-outgoing/db/retry.lockfile
opened DB file /var/spool/exim-outgoing/db/retry: flags=42
cnw@??? in *? yes (*)
retry for T:cnw@??? = *
dbfn_read: key=T:cnw@???
Writing retry data for T:cnw@???
first failed=1026315799 last try=1026316079 next try=1026316979 expired=0
error 0 0: Failed to send message from holiday_transport transport (1)
dbfn_write: key=T:cnw@???
end of retry processing
time on queue = 0s
warning counts: required 0 done 0
delivery deferred: update_spool=1 header_changed=0
Writing spool header file
Size of headers = 334
end delivery of 17SJh9-00081o-00
search_tidyup called
search_tidyup called





On Mon, Jul 08, 2002 at 04:33:26PM +0100, Philip Hazel wrote:
> On Mon, 8 Jul 2002, Conrad Wood wrote:
>
> > imonholiday:
> > driver = localuser
> > transport = holiday_transport
> > require_files = /home/${local_part}/onholiday.txt
> >
> > and the transport:
> >
> > holiday_transport:
> >         driver = autoreply
> >         text = "Automated message:\
> >         Your message has ** NOT ** been delivered to ${local_part}@${domain}, re
> > ason is given below:\
> >         "
> >         file = "/home/${local_part}/onholiday.txt"
> >         to = $sender_address
> >         user = mail
> >  #       user = ${local_part}
> >         group = mail

> >
> >
> > The problem:
> >
> > Most home directories are samba exported and masked to 077.
> > The file ends up being readable only by the user (which is good like
> > this!). But Exim can't read it and defers.
> > If I set user=${local_part} (as seen above, commented out)
> > It can't read/write the spool dir.
>
> If you don't set user at all, it should use the local user, because
> that's what the localuser director does. I don't understand what the
> problem is here, because I don't understand your comment "can't
> read/write the spool dir". The transport shouldn't be accessing any
> spool files.
>
> > So really, I'd like to know if there is an option to do most
> > stuff as the local user (including reading the file) but do the
> > actual mail-delivery as mail.mail.
>
> Which delivery? It should send the message as the local user if you
> don't specify "user". Isn't that what you want? There isn't really any
> "delivery" involved here.
>
> I think there's some information missing here. Have you tried running a
> test with -d9 set to get some debugging information?
>
> --
> Philip Hazel            University of Cambridge Computing Service,
> ph10@???      Cambridge, England. Phone: +44 1223 334714.

>