error when using procmail to forward message
Hello, I setup procmail. I have a system wide config: LOGFILE=/var/log/procmail.log VERBOSE=on :0B: * (://[A-Za-z0-9.-]+\.ru) /dev/null :0: * ^Subject: (Rolex) /dev/null :0 * ^Subject: (anoncvs) ! m...@server1.com some...@server2.com I checked the log and it is putting spam in /dev/null, but there are errors in procmail.log when ever it tries to forward the emails: sendmail: warning: the Postfix sendmail command has set-uid root file permissions sendmail: warning: or the command is run from a set-uid root process sendmail: warning: the Postfix sendmail command must be installed without set-uid root file permissions Is there a way to fix this? Best Regards, Al
Re: error when using procmail to forward message
On 2012-08-07 Al Zick wrote: > I setup procmail. I have a system wide config: > > LOGFILE=/var/log/procmail.log > VERBOSE=on > > :0B: > * (://[A-Za-z0-9.-]+\.ru) > /dev/null > > :0: > * ^Subject: (Rolex) > /dev/null > > :0 > * ^Subject: (anoncvs) > ! m...@server1.com some...@server2.com > > I checked the log and it is putting spam in /dev/null, but there are > errors in procmail.log when ever it tries to forward the emails: > > sendmail: warning: the Postfix sendmail command has set-uid root file > permissions > sendmail: warning: or the command is run from a set-uid root process > sendmail: warning: the Postfix sendmail command must be installed > without set-uid root file permissions These are warnings, not errors. > Is there a way to fix this? chmod u-s /usr/sbin/sendmail Regards Ansgar Wiechers -- "Abstractions save us time working, but they don't save us time learning." --Joel Spolsky
Re: error when using procmail to forward message
On Aug 7, 2012, at 1:18 PM, Ansgar Wiechers wrote: On 2012-08-07 Al Zick wrote: I setup procmail. I have a system wide config: LOGFILE=/var/log/procmail.log VERBOSE=on :0B: * (://[A-Za-z0-9.-]+\.ru) /dev/null :0: * ^Subject: (Rolex) /dev/null :0 * ^Subject: (anoncvs) ! m...@server1.com some...@server2.com I checked the log and it is putting spam in /dev/null, but there are errors in procmail.log when ever it tries to forward the emails: sendmail: warning: the Postfix sendmail command has set-uid root file permissions sendmail: warning: or the command is run from a set-uid root process sendmail: warning: the Postfix sendmail command must be installed without set-uid root file permissions These are warnings, not errors. You are correct! Is there a way to fix this? chmod u-s /usr/sbin/sendmail # ll /usr/sbin/sendmail lrwxr-xr-x 1 root wheel 21 May 12 20:33 /usr/sbin/sendmail -> /usr/ sbin/mailwrapper # ll /usr/sbin/mailwrapper -rwxr-sr-t 1 root wheel 7839 May 12 20:33 /usr/sbin/mailwrapper Do I want to change permissions on /usr/sbin/mailwrapper? Best Regards, Al
Re: error when using procmail to forward message
Al Zick: > >> I checked the log and it is putting spam in /dev/null, but there are > >> errors in procmail.log when ever it tries to forward the emails: > >> > >> sendmail: warning: the Postfix sendmail command has set-uid root file > >> permissions > >> sendmail: warning: or the command is run from a set-uid root process > >> sendmail: warning: the Postfix sendmail command must be installed > >> without set-uid root file permissions Your procmail program is set-uid root, and it invokes the Postfix sendmail command with set-uid root privileges. This is a security hole, especially when a non-root user can tell procmail what "sendmail" program it will run. Wietse
