tag 291158 + woody merge 291158 275615 thanks
Jarle Aase schrieb:
Package: courier-maildrop Version: 0.37.3-2.5 Severity: important
The setuid bit on the /usr/bin/maildrop command is cleared after an upgrade. As a result, mail delivery is broken.
/var/log/mail/mail.err reports: ... 511 maildrop: Unable to change to home directory.
This is related to bug-report #275615
This problem is servere on servers that are configured for automatic, unattended upgrades. One has to either disable automatic upgrades for this package (with the security risk that rise), or have mail-delivery broken until someone becomes aware of the problem and can fix it.
The install script could maby check the suid-bit on the existing file, and set it on the upgraded file too (it _is_ required, and if it already is set, it is reasonable to assume that some admin will set it as soon as the mail-users starts to curse him ;)
How did you set the suid bit on the binary? I think you just chmodded it, and that will always be overwritten by dpkg. Use dpkg-statoverride.
http://www.debian.org/doc/debian-policy/ch-files.html#s10.9.1
And yes, I have to admit that I was incomplete in bug 275615. Sorry, my fault.
Willi
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
