[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Exim and right permissions for execution of a perl script



On Thu, 2002-08-22 at 22:23, Brian Candler wrote:
> On Thu, Aug 22, 2002 at 05:13:26PM +0300, Patrick J Okui wrote:
> > now on my secondary name server I am getting this..
> > any ideas?
> > 
> > ns2:/usr/exim # tail /var/log/exim/paniclog 
> > 2002-08-22 14:13:49 17hpuP-0000BI-00 unable to set gid=44 or uid=44
> > (euid=123): local delivery to |/dns/scripts/slave_ns.pl
> > <|/dns/scripts/slave_ns.pl> transport=address_pipe
> 
> Who are users 123 and 44 in your password file? Are they 'exim' and 'named'
> respectively?
<snip>
yes.

> What version of exim are you running? I have just tested with exim-4.05 and
> it works fine for me.

exim-4.10

> 
> Also, have you done anything out-of-the-ordinary on the security side, such
> as making 'exim' suid exim instead of suid root, or using the
> "deliver_drop_privilege" option? Delivery processes need to have root rights
> in order to be able to switch to the chosen delivery user. See sections 47.1
> and 47.2 of the manual.

yep that was it... I foolishly modified /etc/permissions.local (I'm on
SuSE Linux) all fixed now, thanks.
 
> 
> Regards,
> 
> Brian.
-- 
Patrick J Okui
Systems Administrator
One2Net (U) Ltd


-----
This is the afnog mailing list, managed by Majordomo 1.94.5

To send a message to this list, e-mail afnog at afnog.org
To send a request to majordomo, e-mail majordomo at afnog.org and put
your request in the body of the message (i.e use "help" for help)

This list is maintained by owner-afnog at afnog.org