From gerald.lurker@sysmatrix.net Sun Sep 20 22:47:50 2009 Received: from sfi-mx-3.v28.ch3.sourceforge.com ([172.29.28.123] helo=mx.sourceforge.net) by 3yr0jf1.ch3.sourceforge.com with esmtp (Exim 4.69) (envelope-from ) id 1MpVCA-0001hG-Is for lurker-users@lists.sourceforge.net; Sun, 20 Sep 2009 22:47:50 +0000 X-ACL-Warn: Received: from mail-yw0-f126.google.com ([209.85.211.126]) by 3b2kzd1.ch3.sourceforge.com with esmtp (Exim 4.69) id 1MpVC3-0003Iw-3t for lurker-users@lists.sourceforge.net; Sun, 20 Sep 2009 22:47:50 +0000 Received: by ywh32 with SMTP id 32so299460ywh.10 for ; Sun, 20 Sep 2009 15:47:34 -0700 (PDT) Received: by 10.90.246.1 with SMTP id t1mr2861725agh.96.1253486854046; Sun, 20 Sep 2009 15:47:34 -0700 (PDT) Received: from buffy.phorce1.net (adsl-99-152-174-36.dsl.bumttx.sbcglobal.net [99.152.174.36]) by mx.google.com with ESMTPS id 10sm7285635agb.10.2009.09.20.15.47.32 (version=SSLv3 cipher=RC4-MD5); Sun, 20 Sep 2009 15:47:33 -0700 (PDT) Date: Sun, 20 Sep 2009 17:47:11 -0500 From: Gerald Livingston To: lurker-users@lists.sourceforge.net Message-ID: <20090920174711.52f4e8eb@buffy.phorce1.net> In-Reply-To: <162de7480909191249v20605529vdf911a545a32e651@mail.gmail.com> References: <20090918121221.32fb0bf2@buffy.phorce1.net> <4AB3D47B.40405@email.it> <20090918200132.754e488a@buffy.phorce1.net> <162de7480909191249v20605529vdf911a545a32e651@mail.gmail.com> X-Mailer: Claws Mail 3.5.0 (GTK+ 2.12.12; i486-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spam-Score: 0.0 (/) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. _SUMMARY_ X-Headers-End: 1MpVC3-0003Iw-3t Subject: Re: [Lurker-users] Permissions errors X-BeenThere: lurker-users@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: Lurker Project Support List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 20 Sep 2009 22:47:50 -0000 On Sat, 19 Sep 2009 21:49:02 +0200 "Wesley W. Terpstra" wrote: > On Sat, Sep 19, 2009 at 3:01 AM, Gerald Livingston > > > > #!/bin/bash > > echo $LOGNAME >> /home/testlogname > > > > I made it 777 > > > > I made /home/testlogname 666 > > > > I changed my aliases file to > > > > bska-archive: "| /home/bska-archive/elogname" > > > > I sent a message. It caused the script to write > > > > bska-archive > > > > into the log file./home/bska-archive/elogname > > I then created another alias > > > > supertest: "| /home/bska-archive/elogname" > > > > supertest does not exist as a real user on the system. > > > > It still wrote "supertest" into /home/testlogname so it is calling > > the script as the user to whom the message is sent. > > > > If the user supertest does not exist, clearly the printing of > supertest means something is wrong. You can't possibly have executed > something as a non-existant user. I can only conclude that whatever > program you're using to deliver mail is NOT changing user. > > A better test would be to make your sell script: > "touch /tmp/test-file". Then run it and see who > created/owns /tmp/test-file. nobody:nogroup postfix runs chroot by default on a Debian install . It passes the part of the email address before the "@" as $LOGNAME to external scripts. Making it not chroot would break a lot of other stuff. LDA's like procmail require a local user so they can get around the chroot. I'm using ecartis as a mailing list manager and it "just works" with nothing but aliases. list1: "|/usr/lib/ecartis/ecartis -s list1" It has to be able to write things like the member database files and temporary files for redelivering emails. I still don't quite understand why it works but lurker does not. I'll keep picking at it as time permits. Gerald