Qmail again


#1

rt-users…

Let me post the errors i’m getting here…

with suid

-rwxr-sr-x 1 root rt 15216 Apr 11 18:01 rt-mailgate
->>
Apr 19 15:53:27 tickets qmail: 987713607.371668 delivery 313: deferral:
Can’t_do_setuid/

without suid

-rwxr-xr-x 1 root rt 15216 Apr 11 18:01 rt-mailgate
->>
Apr 19 15:54:44 tickets qmail: 987713684.392440 delivery 314: success:
No_permission_to_create_tickets_in_the_queue_’’.Create_failed:0/0/No_pe
rmission_to_create_tickets_in_the_queue
’’._did_0+0+1/

.qmail-rt
->>
| preline /usr/local/apache/tickets/bin/rt-mailgate --queue general
–action correspond

.qmail-rt-comment
->>
| preline /usr/local/apache/tickets/bin/rt-mailgate --queue general
–action comment

Everything looks pretty good… Hopefully someone can shed some light on
this…

Thanks
Clint


#2

with suid
Apr 19 15:53:27 tickets qmail: 987713607.371668 delivery 313: deferral:
Can’t_do_setuid/

OK, maybe qmail refuses setuid scripts, since they should not
be/are not necessary in the DJB scheme of things.

without suid
Apr 19 15:54:44 tickets qmail: 987713684.392440 delivery 314: success:
No_permission_to_create_tickets_in_the_queue_’’.Create_failed:0/0/No_pe
rmission_to_create_tickets_in_the_queue
’’._did_0+0+1/

Sure, you don’t, you’re the alias user.

.qmail-rt
->>
| preline /usr/local/apache/tickets/bin/rt-mailgate --queue general
–action correspond

.qmail-rt-comment
->>
| preline /usr/local/apache/tickets/bin/rt-mailgate --queue general
–action comment

I’d recommend putting the .qmail files in the home directory of
the rt user, whatever its name is, creating one if necessary,
and getting qmail to deliver to that user. That way the file
executions will be done with the rt uid.

Simple example: with a user named rt having permissions to
create tickets (can test by hand if problems), mv the above
files to ~rt/.qmail and ~rt/.qmail-comment respectively. That’s
it.

HTH.

#include <std_disclaim.h> Lorens Kockum