List Info

Thread: Re: Re: What should be the EFFECTIVE_USER and it's privileges ?
Re: Re: What should be the EFFECTIVE_USER and it's privileges ?
country flaguser name
United States		 2007-05-28 10:55:17 
Great! I'll add a note to this effect.

On Mon, 2007-05-28 at 16:58 +0530, Lasantha Marian wrote:
> Dear Aaron,
> 
> Well, I did not try the first option as it requires me
to change a lot
> of file system privileges (related to Exim,
MailScanner, SpamAssassin
> and DBMail). Having DBMail user (eg: dbmail or nobody)
as a member in
> Exim's group (exim) did not work, even after tweaking
some compilation
> settings in Exim.
> 
> As per the second lead, I used Exim's user/group
(exim/exim) for
> DBMail and it worked as a charm.  
> 
> Appreciate if you could included this bit of
information in Exim
> related DBMail documentation, regarding user/group
usage, if this
> useful to future DBMail/Exim users.
> 
> Thanks and best regards,
> 
> Lasantha.
> 
> -------- Original Message --------
>                           Subject: 
> [Dbmail] Re: What should be the
> EFFECTIVE_USER and it's
> privileges ?
>                              Date: 
> Sat, 26/May/2007 10:19:18 PM +0550
>                              From: 
> "Aaron Stone"
> <aaronserendipity.cx>
>                                To: 
> "DBMail mailinglist"
> <dbmaildbmail.org>
> 
> > Have you tried running exim as that user without
DBMail in the picture?
> > 
> > Do you have a separate exim user account? Try
running DBMail with that
> > effective_user and see if things start to work.
> > 
> > Aaron
> > 
> > On Fri, May 25, 2007, Lasantha Marian
<x72m35gmail.com> said:
> > 
> >   
> > > Dear Aaron/Paul,
> > > 
> > > Any findings from your end on this issue ? Is
it required to have a bug
> > > report filed on this ?
> > > 
> > > Thanks in advance.
> > > 
> > > Lasantha.
> > > 
> > > *-------- Original Message --------*
> > > *Subject: * 	[Dbmail] Re: What should be the
EFFECTIVE_USER and it's
> > > privileges ?
> > > *Date: * 	Fri, 25/May/2007 9:46:38 AM +0550
> > > *From: * 	Lasantha Marian <x72m35gmail.com>
> > > *To: * 	DBMail mailinglist <dbmaildbmail.org>
> > > 
> > > 
> > >     
> > > > Dear Aaron/Paul,
> > > > 
> > > > These are further findings in my recent
testing. This behavior can be
> > > > reproduced under the following
conditions.
> > > > 
> > > > 1. Message must be addressed to an alias
with at least one external
> > > > forwards.
> > > > 2. Message must contain at least one
attachment (attachment less
> > > > messages are immune).
> > > > 3. "EFFECTIVE_USER" must be
anything other than "root", possibly with
> > > > default "nobody".
> > > > 
> > > > In my DBMail setup I use the following
for Sendmail executable option
> > > > for forwards, replies, notifies,
vacations.
> > > > 
> > > > /usr/local/Exim/bin/exim -C
/usr/local/Exim/etc/exim-queue.conf
> > > > 
> > > > I have a feeling that at the following
stage there must be something
> > > > not going right.
> > > > 
> > > > May 24 00:33:57 europa
dbmail/lmtpd[31588]: Info:[delivery]
> > > > pipe.c,send_mail(+144): opening pipe to
[/usr/local/Exim/bin/exim -C
> > > > /usr/local/Exim/etc/exim-queue.conf -f
lasanthafli-cmb.net
> > > > lasantha.mgmail.com]
> > > > 
> > > > I have attached my dbmail.conf.
> > > > 
> > > > Best regards,
> > > > 
> > > > Lasantha.
> > > > 
> > > > Lasantha Marian wrote:
> > > > 
> > > >       
> > > > > Dear Aaron,
> > > > > 
> > > > > No I have not trimmed any
dbmail-lmtpd log lines. I have checked all
> > > > > logs in which I see "pipe
closed" is available only in successflly
> > > > > delivered instances (mail.log.1).
> > > > > 
> > > > > Lasantha.
> > > > > 
> > > > > Aaron Stone wrote:
> > > > >         
> > > > > > Did you trim anything off the
end of mail.log.0? I'd like to see a
> > > > > > dbmail debug message that says
'pipe closed'. If there isn't one, then
> > > > > > for some reason dbmail must
have crashed while writing to the pipe. That
> > > > > > doesn't really make sense to
me; if the pipe was valid (and we do check
> > > > > > for that) there should have
been a recognizable error.
> > > > > > 
> > > > > > Aaron
> > > > > > 
> > > > > > On Thu, 2007-05-24 at 16:33
+0530, Lasantha Marian wrote:
> > > > > >   
> > > > > >           
> > > > > > > Dear Paul,
> > > > > > > 
> > > > > > > After several testings, I
have noticed that e-mail addresses with
> > > > > > > DBMail forwards cause
this problem. Following forwarding address
> > > > > > > contains both local and
external e-mail addresses.
> > > > > > > 
> > > > > > > xyzgroupfreight-links.com
> > > > > > > |
> > > > > > > |--lasantha.mfreight-links.com---->11
> > > > > > > |   |
> > > > > > > |  
|------------------------------>lasantha.mgmail.com
> > > > > > > |
> > > > > > > |--pamudithafreight-links.com----->pamudithamaa.cargoplanindia.com
> > > > > > > |
> > > > > > > |--manjulafreight-links.com------->22
> > > > > > > |
> > > > > > > |--manga.rfreight-links.com------->33
> > > > > > >     |
> > > > > > >    
|------------------------------>manga.rgmail.com
> > > > > > > 
> > > > > > > But, this worked very
fine in DBMail 2.0.10 setup. Further messages
> > > > > > > addressed to individual
addresses/aliases (internal or external) works
> > > > > > > fine.
> > > > > > > 
> > > > > > > As you requested I have
attached a the dbmail-lmtpd level 5 logs in
> > > > > > > which cases the mail
deliveries succeeded and failed.
> > > > > > > 
> > > > > > > Attched file mail.log.0
is the attempt where "EFFECTIVE_USER = nobody"
> > > > > > > and delivery failed.
Under the same setting a message addressed to an
> > > > > > > alias (without any DBMail
forwards) gets delivered (in mail.log.2).
> > > > > > > The mail.log.1 is where
"EFFECTIVE_USER = root" and delivery succeeds.
> > > > > > > 
> > > > > > > Thanks in advance.
> > > > > > > 
> > > > > > > Lasantha.
> > > > > > > 
> > > > > > > Paul J Stevens wrote:
> > > > > > >     
> > > > > > >             
> > > > > > > > Please provide some
logs from dbmail-lmtpd so we can get an idea why dbmail is
> > > > > > > > hanging up. Exim
logs don't tell us much.
> > > > > > > > 
> > > > > > > > Lasantha Marian
wrote:
> > > > > > > >   
> > > > > > > >       
> > > > > > > >               
> > > > > > > > > Dear
Paul/Aaron,
> > > > > > > > > 
> > > > > > > > > Some additional
information that I missed last time and thought would be
> > > > > > > > > useful is, I
ran previous setups on a Ubuntu 6.10-server and now running
> > > > > > > > > on Ubuntu
7.04-server.
> > > > > > > > > 
> > > > > > > > > Any help on
this is highly appreciated, please.
> > > > > > > > > 
> > > > > > > > > Best regards.
> > > > > > > > > 
> > > > > > > > > Lasantha.
> > > > > > > > > 
> > > > > > > > > *--------
Original Message --------*
> > > > > > > > > *Subject: *
	What should be the EFFECTIVE_USER and it's privileges ?
> > > > > > > > > *Date: * 	Wed,
23/May/2007 8:39:12 PM +0550
> > > > > > > > > *From: *
	Lasantha Marian <x72m35gmail.com>
> > > > > > > > > *To: * 	DBMail
mailinglist <dbmaildbmail.org>
> > > > > > > > > 
> > > > > > > > > 
> > > > > > > > >     
> > > > > > > > >         
> > > > > > > > >                

> > > > > > > > > > Dear
Paul/Aron,
> > > > > > > > > > 
> > > > > > > > > > I am
testing DBMail 2.2.5-rc3. My environment is DBMail
> > > > > > > > > >
2.2.5-rc3/PostgreSQL 8.2.4/Exim 4.67/MailScanner 4.59.4.
> > > > > > > > > > 
> > > > > > > > > > I have
faced the following situation with both DBMail 2.2.4 and
> > > > > > > > > > 2.2.5-rc2
too.
> > > > > > > > > > 
> > > > > > > > > > When Exim
tries to deliver a message to dbmail-lmtpd it refuses to
> > > > > > > > > > accept the
message giving these errors when "EFFECTIVE_USER =
nobody",
> > > > > > > > > > which is
the recommended in DBMail documentation.
> > > > > > > > > > 
> > > > > > > > > > May 23
09:39:55 europa exim[29651]: 1Hqr2T-0007gU-TX ==
> > > > > > > > > >
lasanthacpi-cmb.net R=dbmailuser T=dbmail_lmtp_delivery defer
(-53):
> > > > > > > > > > retry time
not reached for any host
> > > > > > > > > > 
> > > > > > > > > > May 23
10:13:15 europa exim[29924]: 1HqraQ-0007mZ-SP ==
> > > > > > > > > >
lasanthacpi-cmb.net R=dbmailuser T=dbmail_lmtp_delivery defer
(-18):
> > > > > > > > > > Remote
host 127.0.0.1 [127.0.0.1] closed connection in response to
end
> > > > > > > > > > of data
> > > > > > > > > > 
> > > > > > > > > > But
messages get delivered immediately without any errors if the
same is
> > > > > > > > > > set to
"EFFECTIVE_USER = root", which I do not think is
aligning with
> > > > > > > > > > any good
security practices.
> > > > > > > > > > 
> > > > > > > > > > Could
somebody shed light on this ? As to why this is happening.
Am I
> > > > > > > > > > doing
something wrong in DBMail setup ?
> > > > > > > > > > 
> > > > > > > > > > Thanks and
best regards,
> > > > > > > > > > 
> > > > > > > > > > Lasantha.
> > > > > > > > > > 
> > > > > > > > > >   
> > > > > > > > > >       
> > > > > > > > > >          
> > > > > > > > > >           
       
> > 
> > _______________________________________________
> > DBmail mailing list
> > DBmaildbmail.org
> > htt
ps://mailman.fastxs.nl/mailman/listinfo/dbmail
> > 
> >   
> _______________________________________________
> DBmail mailing list
> DBmaildbmail.org
> htt
ps://mailman.fastxs.nl/mailman/listinfo/dbmail

_______________________________________________
DBmail mailing list
DBmaildbmail.org
htt
ps://mailman.fastxs.nl/mailman/listinfo/dbmail
[1]

about | contact  Other archives ( Real Estate discussion Medical topics )