Sendmail still will not read config files

Ron Herardian rherardi at gssnet.com
Thu Jan 29 11:09:22 UTC 2004 

I believe roger2 has the right idea. In recent versions of sendmail, certain files are owned by user "smmsp" not root or another user. For some changes the user is assumed to be restarting sendmail to invoke m4/make/makemap to generate sendmail.cf (from sendmail.mc) and the db files, rather than creating (or in some cases editing) these file manually (have a look in the /etc/mail/Makefile).

Here's what one of my (pretty clean, and working) installs looks like:

/etc

[root at serenity etc]# ls -al | grep mail
drwxr-xr-x    2 root     root         4096 Jan 19 19:33 mail
-rw-r--r--    1 root     root         9283 Sep  3  2002 mailcap
-rw-r--r--    1 root     root          112 Jun 23  2002 mail.rc
[root at serenity etc]#

/etc/mail

[root at serenity mail]# ls -al
total 300
drwxr-xr-x    2 root     root         4096 Jan 19 19:33 .
drwxr-xr-x   58 root     root         8192 Jan 28 13:53 ..
-rw-r--r--    1 root     root          331 Mar 26  2003 access
-rw-r-----    1 smmsp    root        12288 May  6  2003 access.db
-rw-r--r--    1 root     root            0 Mar 26  2003 domaintable
-rw-r-----    1 smmsp    root        12288 May  6  2003 domaintable.db
-rw-r--r--    1 root     root         5588 Mar 26  2003 helpfile
-rw-r--r--    1 root     root           64 Mar 26  2003 local-host-names
-rw-r--r--    1 root     root            0 Mar 26  2003 mailertable
-rw-r-----    1 smmsp    root        12288 May  6  2003 mailertable.db
-rw-r--r--    1 root     root          843 Mar 26  2003 Makefile
-rw-r--r--    1 root     root           46 Jan 16 05:42 relay-domains
-rw-r--r--    1 root     root        57839 Jan 19 19:33 sendmail.cf
-rw-r--r--    1 root     root         5928 Jan 16 05:40 sendmail.mc
-rw-------    1 root     root          628 Jan 26 04:02 statistics
-rw-r--r--    1 root     root        39046 May  6  2003 submit.cf
-rw-r--r--    1 root     root          953 Mar 26  2003 submit.mc
-rw-r--r--    1 root     root          127 Mar 26  2003 trusted-users
-rw-r--r--    1 root     root            0 Mar 26  2003 virtusertable
-rw-r-----    1 smmsp    root        12288 May  6  2003 virtusertable.db
[root at serenity mail]#

[root at serenity etc]# cat passwd

smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin

[root at serenity etc]# cat group

smmsp:x:51:

[root at serenity etc]# cat shadow

smmsp:!!:12178:0:99999:7:::



roger2 wrote:
> 
> On Wed, 28 Jan 2004 16:17:43 -0800, Tom Mitchell <mitch48 at sbcglobal.net>
> wrote:
> 
> > On Tue, Jan 20, 2004 at 09:36:25AM +0200, Robert Key wrote:
> >>
> >> Sendmail still refuses to load because it will not read
> >> local-host-users  and trusted-users  in /etc/mail
> >> with the message "Could not read trusted-users with Worldwide readable
> >> directory"
> >> I have tried all the following permissions but none work.
> >>
> >> /etc/mail    0755 (default)  0400, 0700, 0600 and owner root.root
> >> files 0744 (default), 0400, 0700 owner root.root
> >>  Nothing works. The error message remains the same.
> >
> > Three quick things to check.
> >
> >       ls -ld /etc/mail
> >       ls -l  /etc/mail/{local-host-user,trusted-users}
> >       egrep "DEF_USER_ID|TRUSTED_USER" /etc/mail/sendmail.mc # check against
> > passwd
> >
> > Also you might see things better by running make and restart by hand.
> >
> >       make -C /etc/mail
> >       service sendmail restart
> >
> > I expect that TRUSTED_USER in /etc/mail/sendmail.mc is being confused
> > with /etc/mail/trusted-users.  Some changes have been made in sendmail
> > so files that were smmsp:root or root:root are now different.  In a
> > chroot
> > universe the inside and outside UID/GID and names being used must match.
> >
> > I think that "local-host-users" is a non standard file name.  What and
> > why does it exist and how is it used.
> >
> Could the problem be that the directory IS world readabel(and writeable).
> I read somwhere sendmail will not trust directories like that if they are
> surposed to contain trusted information.
> I could be way off the mark here so forgive me if that is the case.
> Regards Roger
> 
> --
> Using M2, Opera's revolutionary e-mail client: http://www.opera.com/m2/
> 
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list

-- 

Global System Services Corporation (GSS)
650 Castro Street, Suite 120, Number 268, Mountain View, CA 94041, USA
+1 (650) 965-8669 phone, +1 (650) 965-8679 fax, +1 (650) 283-5241 mobile
rherardi at gssnet.com, http://www.gssnet.com

"The best way to predict your future is to create it." - Stephen Covey

More information about the fedora-list mailing list