[NTLUG:Discuss] SendMail issue
Paul Drew
solarcurve at msn.com
Tue Jun 10 13:10:46 CDT 2003
Ok guys,
I think we may be in the clear here now. I would like to thank each of you
for your time, and experience. I think we are fixed, but time will tell of
course. :)
I checked permissions on / with the ls -ld and it was indeed world writable,
and I checked most of our other servers to find that some were this way, and
some were not. I am going to get them buttoned down shortly.
Once I did that I ran the newaliases command again, and I got no errors this
time. I got the following feedback which looks good to me:
/etc/aliases: 30 aliases, longest 22 bytes, 475 bytes total
There are no errors messages or anything else so that makes me think things
should be good. There is tons of verbosity in the SYSLOG about whats its
doing, but no error messages. I am going to be checking into those soon
enough when I get more time. I think I read earlier that I don't need to
cycle sendmail if all I did was new aliases. Let me know if I am wrong
please. Anyways, thanks again for all your help. Have a great day, and take
care.
Paul Drew
>From: asenec at senechalle.net
>Reply-To: NTLUG Discussion List <discuss at ntlug.org>
>To: discuss at ntlug.org
>Subject: Re: [NTLUG:Discuss] SendMail issue
>Date: Tue, 10 Jun 2003 12:00:45 -0500 (CDT)
>
> > Wow, your getting me somewhere now. I in fact DON'T have an
>/etc/aliases.db.
> > I ran the newaliases as you suggested, and I got the following errors:
> >
> > WARNING: World writable directory /
> > WARNING: World writable directory /
> > hash map "Alias0": unsafe map file /etc/aliases.db: World writable
>directory
> > dbm map "Alias0": unsafe map file /etc/aliases: No such file or
>directory
> > WARNING: cannot open alias database /etc/aliases
> > Cannot create database for alias file /etc/aliases
>
>At the least, do this:
>
> >/etc/aliases;newaliases
>
>I'd recommend, however, a minimal /etc/aliases file, such as:
>
>red:/var/lib/mail# cat /etc/aliases
># @(#)aliases 8.2 (Berkeley) 3/5/94
>#
># Aliases in this file will NOT be expanded in the header from
># Mail, but WILL be visible over networks or from /bin/mail.
>#
># >>>>>>>>>> The program "newaliases" must be run after
># >> NOTE >> this file is updated for any changes to
># >>>>>>>>>> show through to sendmail.
>#
>
># Basic system aliases -- these MUST be present.
>MAILER-DAEMON: postmaster
>postmaster: root
>
># General redirections for pseudo accounts.
>bin: root
>daemon: root
>games: root
>ingres: root
>nobody: root
>toor: root
>uucp: root
>
># Well-known aliases.
>manager: root
>dumper: root
>operator: root
>
> >
> > I am drawing a complete blank on how to check permissions for /. I ran a
> > mount command and got:
> > /dev/root on / type xfs (rw,raw=/dev/rroot)
> > (This is exactly the same on some of my other servers)
>
>ls -ld /
>
>Should be 755 root.root .
>
>
>Annette
>
> >
> > Thanks again for the help in pointing me in the right direction. I am
>very
> > unexperienced with sendmail and I have to start somewhere. I see that I
>am
> > still getting those errors even after removing the stuff from the define
> > line. So where should I go from here?
> >
> > Paul Drew
> >
> > >From: asenec at senechalle.net
> > >Reply-To: NTLUG Discussion List <discuss at ntlug.org>
> > >To: discuss at ntlug.org
> > >Subject: Re: [NTLUG:Discuss] SendMail issue
> > >Date: Tue, 10 Jun 2003 10:13:43 -0500 (CDT)
> > >
> > >What are the permissions on /etc/aliases.db?
> > >What happens when you execute:
> > >
> > > newaliases
> > >
> > >Do you encounter any error messages? If so, what are they?
> > >If not, do you now have an new /etc/aliases.db file?
> > >
> > >Annette
> > >
> > > > From solarcurve at msn.com Tue Jun 10 09:39:19 2003
> > > > X-Originating-IP: [208.193.202.115]
> > > > X-Originating-Email: [solarcurve at msn.com]
> > > > From: "Paul Drew" <solarcurve at msn.com>
> > > > To: discuss at ntlug.org
> > > > Subject: Re: [NTLUG:Discuss] SendMail issue
> > > > Date: Tue, 10 Jun 2003 09:37:04 -0500
> > > > Mime-Version: 1.0
> > > > X-OriginalArrivalTime: 10 Jun 2003 14:37:05.0200 (UTC)
> > > > FILETIME=[C3538300:01C32F5D]
> > > > X-BeenThere: discuss at ntlug.org
> > > > X-Mailman-Version: 2.1
> > > > List-Id: NTLUG Discussion List <discuss.ntlug.org>
> > > > List-Help: <mailto:discuss-request at ntlug.org?subject=help>
> > > > List-Post: <mailto:discuss at ntlug.org>
> > > > List-Subscribe: <https://ntlug.org/mailman/listinfo/discuss>,
> > > > <mailto:discuss-request at ntlug.org?subject=subscribe>
> > > > List-Archive: </pipermail>
> > > > List-Unsubscribe: <https://ntlug.org/mailman/listinfo/discuss>,
> > > > <mailto:discuss-request at ntlug.org?subject=unsubscribe>
> > > >
> > > > >From: Kenneth Loafman <ken at lt.com>
> > > > >Reply-To: NTLUG Discussion List <discuss at ntlug.org>
> > > > >To: NTLUG Discussion List <discuss at ntlug.org>
> > > > >Subject: Re: [NTLUG:Discuss] SendMail issue
> > > > >Date: Tue, 10 Jun 2003 09:18:36 -0500
> > > > >
> > > > >Paul Drew wrote:
> > > > >>sendmail[3032988]: h5AD04tW3239227: SYSERR(root): hash map
>"Alias0":
> > > > >>unsafe map file /etc/aliases.db: World writable directory
> > > > >
> > > > >Why is your /etc directory world writable? Bad security risk.
> > > >
> > > > It isn't I had already checked this weeks ago, and I don't
>understand
> > >why
> > > > its saying that. My permissions on /etc are:
> > > > drwxr-xr-x 21 root sys 12K Jun 9 08:16 etc
> > > >
> > > > >
> > > > >>sendmail[3032988]: h5AD04tW3239227: SYSERR(root): dbm map
>"Alias0":
> > >unsafe
> > > > >>map file /etc/aliases: No such file or directory
> > > > >
> > > > >This one seems obvious. How did you get an aliases.db without an
> > >aliases
> > > > >file?
> > > >
> > > > I have an /etc/aliases file and It seems intact with all of the
>entries
> > >in
> > > > it that I think should be.
> > > >
> > > > >
> > > > >...Ken
> > > >
> > > > Thanks for your help Ken, I do appreciate it, I guess I can scratch
> > >those
> > > > off the list of things I have looked at now. Your answers are what I
>was
> > > > finding in google, and while they sound good, they don't seem to be
>the
> > > > problem. Do you think it means something is hosed inside the aliases
> > >file? I
> > > > tried messing around with some things I saw suggested, and they did
>no
> > >good.
> > > > I inherited this server about 10 months ago, so I am not real clear
>on
> > >its
> > > > history. It has been in service since 1995. The following line I
>saw,
> > >and
> > > > tried to fix based on some suggestions I read.
> > > >
> > > > # Following alias is required by RFC 822
> > > > # You should change 'root' in the first line below to the
> > > > administrator
> > > > # of this machine, and un-comment the following line.
> > > > #postmaster:root
> > > >
> > > > I tried the following things
> > > > postmaster:(me at myemail)
> > > > root:(me at myemail)
> > > >
> > > > Neither of these attempts resolved my issue at all. I have gotta be
> > >missing
> > > > some large simple thing, but for the life of me I cannot figure it
>out.
> > >As I
> > > > said above, I do appreciate any help and comments you guys are nice
> > >enough
> > > > to give me. Have a great day, and take care.
> > > >
> > > > Paul Drew
> > > >
> > > > _________________________________________________________________
> > > > Help STOP SPAM with the new MSN 8 and get 2 months FREE*
> > > > http://join.msn.com/?page=features/junkmail
> > > >
> > > >
> > > > _______________________________________________
> > > > https://ntlug.org/mailman/listinfo/discuss
> > > >
> > >
> > >_______________________________________________
> > >https://ntlug.org/mailman/listinfo/discuss
> >
> > _________________________________________________________________
> > STOP MORE SPAM with the new MSN 8 and get 2 months FREE*
> > http://join.msn.com/?page=features/junkmail
> >
> >
> > _______________________________________________
> > https://ntlug.org/mailman/listinfo/discuss
> >
>
>_______________________________________________
>https://ntlug.org/mailman/listinfo/discuss
_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*.
http://join.msn.com/?page=features/virus
More information about the Discuss
mailing list