Sendmail vraci permissions denied pro jine users nez root.
dmichal na altien.com
dmichal na altien.com
Úterý Leden 23 14:26:45 CET 2007
Zdravim,
zapasim se sendmail na CentOS. Kdyz se prihlasim jako root, pak:
echo pokus | mail -s "test mail" dmichal na altien.com
- ok email dorazi
Pak si dam su dmichal (nebo jakehokoliv jineho usera) a ten samy prikaz
na odeslani emailu a dostanu reply:
/usr/sbin/sendmail: Permission denied
Zpatky na roota a:
[root na agw_new mail]# ls -l /usr/sbin/sendmail
lrwxrwxrwx 1 root root 21 Dec 5 14:01 /usr/sbin/sendmail ->
/etc/alternatives/mta
takze:
[root na agw_new mail]# ls -l /etc/alternatives/mta
lrwxrwxrwx 1 root root 27 Dec 5 14:01 /etc/alternatives/mta ->
/usr/sbin/sendmail.sendmail
ok moc nechapu duvod tech linku ale ok:
[root na agw_new mail]# ls -l /usr/sbin/sendmail.sendmail
-rwxr-sr-x 1 root smmsp 733912 Jun 14 2006 /usr/sbin/sendmail.sendmail
Zda se ze prava jsou v poradku a jine misto kam se podivat nevim. Mozna
je to nekde v nastaveni sendmailu, ale nevykoukal jsme kde by to mohlo
byt.
Mate nekdo nejaky napad kam se podivat?
Jo jeste vypis o verzich:
[root na agw_new mail]# /usr/lib/sendmail -d0.1 -bt < /dev/null
Version 8.13.1
Compiled with: DNSMAP HESIOD HES_GETMAILHOST LDAPMAP LOG MAP_REGEX
MATCHGECOS MILTER MIME7TO8 MIME8TO7 NAMED_BIND NETINET
NETINET6
NETUNIX NEWDB NIS PIPELINING SASLv2 SCANF STARTTLS
TCPWRAPPERS
USERDB USE_LDAP_INIT
============ SYSTEM IDENTITY (after readcf) ============
(short domain name) $w = agw_new
(canonical domain name) $j = agw_new.hq.altien.com
(subdomain name) $m = hq.altien.com
(node name) $k = agw_new.hq.altien.com
========================================================
ADDRESS TEST MODE (ruleset 3 NOT automatically invoked)
Enter <ruleset> <address>
[root na agw_new mail]# uname -a
Linux agw_new.hq.altien.com 2.6.9-42.0.3.EL #1 Fri Oct 6 05:59:54 CDT
2006 i686 i686 i386 GNU/Linux
Diky,
David
Další informace o konferenci Linux