Sendmail - RunAsUser=sendmail:mail/What files to i have to change
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Well i went nuts today trying to figure this out. I didnt want to keep bothering you with this. But for the life of me i cannot figure it out.
This is in my maillog;
Jan 14 18:00:13 mail sendmail[2595]: g0EN0DX02593: SYSERR(sendmail): openmailer: insufficient privileges to chan
ge gid
oooopps.
qpopper with debug shows
Jan 14 18:06:51 mail popper[2630]: popper: Server: first fork(); child=2631; exiting
Jan 14 18:06:51 mail popper[2631]: popper: Server: child of first fork(); pid=2631
Jan 14 18:06:51 mail popper[2631]: popper: Server: second fork(); child=2632; exiting
Jan 14 18:06:51 mail popper[2632]: popper: Server: child of second fork(); pid=2632
Jan 14 18:06:51 mail popper[2632]: calling chdir()
Jan 14 18:06:51 mail popper[2632]: closing file descs 1024 to 0
Jan 14 18:06:51 mail popper[2632]: opened stream socket; sockfd = 4
Jan 14 18:06:51 mail popper[2632]: set stream socket options; sockfd = 4
Jan 14 18:06:54 mail popper[2633]: popper: Server: first fork(); child=2634; exiting
Jan 14 18:06:54 mail popper[2634]: popper: Server: child of first fork(); pid=2634
Jan 14 18:06:54 mail popper[2634]: popper: Server: second fork(); child=2635; exiting
Jan 14 18:06:54 mail popper[2635]: popper: Server: child of second fork(); pid=2635
Jan 14 18:06:54 mail popper[2635]: calling chdir()
Jan 14 18:06:54 mail popper[2635]: closing file descs 1024 to 0
Jan 14 18:06:54 mail popper[2635]: opened stream socket; sockfd = 4
Jan 14 18:06:54 mail popper[2635]: set stream socket options; sockfd = 4
Jan 14 18:06:57 mail popper[2636]: popper: Server: first fork(); child=2637; exiting
Jan 14 18:06:57 mail popper[2637]: popper: Server: child of first fork(); pid=2637
Jan 14 18:06:57 mail popper[2637]: popper: Server: second fork(); child=2638; exiting
Jan 14 18:06:57 mail popper[2638]: popper: Server: child of second fork(); pid=2638
Jan 14 18:06:57 mail popper[2638]: calling chdir()
Jan 14 18:06:57 mail popper[2638]: closing file descs 1024 to 0
Jan 14 18:06:57 mail popper[2638]: opened stream socket; sockfd = 4
Jan 14 18:06:57 mail popper[2638]: set stream socket options; sockfd = 4
More info in my log after ./popper restart
Jan 14 18:17:53 mail ./popper[3831]: Unable to obtain socket and address of client: Socket operation on non-sock
et (88)
Jan 14 18:17:56 mail ./popper[3832]: Unable to obtain socket and address of client: Socket operation on non-sock
et (88)
FYI: I changed the owners to mail.mail instead of sendmail.sendmail
Could you try adding the next line to sendmail.mc?
(w/o quotes):
"MODIFY_MAILER_FLAGS(`LOCAL', `-S')"
now regenerate it with m4 (or mailconf).
What does ls -ld on your localmailer say? (usually procmail)
Well i rebuilt via m4 and it replaced my entire sendmail.cf. Nothing worked. SO i saved the original b4 i m4'd it. Copied it back chown everything back to root and now:
Starting sendmail: makemap: error opening type hash map /etc/mail/virtusertable: Permission denied
makemap: error opening type hash map /etc/mail/access: Permission denied
makemap: error opening type hash map /etc/mail/domaintable: Permission denied
makemap: error opening type hash map /etc/mail/mailertable: Permission denied
Everything is back to normal and im getting these damn errors. There is no explanation ANYWHERE.
welp.............just got done reinstalling everything from scratch. That damn m4. Maybe i just dont know what im doing. ANyhow im scared to go through this again. THe runasuser works but qpopper is just stubborn. Is it worth all this hassle?
Thanks
Im still researching. I found some config files but not sure if these commands may help.
--enable-popuid=pop Set the owner of the pop.auth file. [pop]"
--enable-old-uidl Use old UID encoding "
--enable-server-mode-group-include=group
Server mode set for users in this group "
ac_help="$ac_help
--enable-server-mode-group-exclude=group
Server mode off for users in this group "
Thanks unSpawn. I think im getting closer. Sendmail is purring like a kitten now. qpopper is almost. The only errors im getting now when checking my mail is:
./popper[2603]: (v4.0.3) Unable to get canonical name of client 10.0.0.2: Unknown host (1)
If you have any ideas, Ill take em. I figured that I would post it here and then go search all night.
Thanks
Its not a qpopper error. Its an error on the sendmail side.
Jan 15 18:22:06 mail sendmail[2731]: g0FNM6v02729: SYSERR(mail): openmailer: insufficient privileges to change
Sorry dude,
here is the whole thing.
Jan 15 19:02:47 mail sendmail[2978]: g0FNFAG02658: SYSERR(mail): openmailer: insufficient privileges to change gid
Jan 15 19:02:47 mail sendmail[2972]: g0FNFAG02658: to=<forumkid@yahoo.com>, delay=00:47:27, xdelay=00:00:00, mailer=l
ocal, pri=300569, dsn=4.0.0, stat=Deferred
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.