HPE Community
Operating System - HP-UX
1834130 Members
3295 Online
110064 Solutions
New Discussion

Re: sendmail issue.

 
SOLVED
Go to solution
Mark Harshman_1
Regular Advisor

‎02-10-2004 03:04 AM

‎02-10-2004 03:04 AM

sendmail issue.

I'm having a strange entry on my mail log, that i havent been able to figure out. I just installed sendmail 8.11.1, but was having the same messages before. This is on a HPUX L class server running HPUX11i. I'll attach a copy of the msg. I am getting quite a few of these..but am still able to use mail function. thanks in advance.
Never underestimate the power of stupid people in large groups
0 Kudos
Reply
11 REPLIES 11
Sridhar Bhaskarla
Honored Contributor

‎02-10-2004 03:08 AM

‎02-10-2004 03:08 AM

Solution

Re: sendmail issue.

Hi,

Make sure you don't have world write permissions for /root directory.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
Reply
Jeff Schussele
Honored Contributor

‎02-10-2004 03:14 AM

‎02-10-2004 03:14 AM

Re: sendmail issue.

Hi,

I agree with Sri, / at most should be 755 root:root
Sendmail has many "security" features & checking file/dir permissions/ownership is one of them.

Rgds,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
0 Kudos
Reply
Mark Greene_1
Honored Contributor

‎02-10-2004 03:18 AM

‎02-10-2004 03:18 AM

Re: sendmail issue.

Your / directory should have 755 permissions. Also, check to see of sendmail is running as root, that the file /etc/mail/sendmail.st exists, and is owned by bin:bin. Then run mailstats and see what errors you get.

mark
the future will be a lot like now, only later
Reply
Jeff Schussele
Honored Contributor

‎02-10-2004 03:19 AM

‎02-10-2004 03:19 AM

Re: sendmail issue.

Sorry - misread that somewhat...

root's home dir /root should be 700 root:sys
root's .forward file should be 600 root:sys

Having it world writable leaves it wide open for a mailicious user to drop executable - by root! - code in there to be run simply when root receives mail. Nice little way to drop a trojan on the system....

Rgds,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Reply
Mark Harshman_1
Regular Advisor

‎02-10-2004 03:22 AM

‎02-10-2004 03:22 AM

Re: sendmail issue.

thanks. i did have to /root permissions set wrong. I do not have a .forward file in my /root, what is it used for?
Never underestimate the power of stupid people in large groups
0 Kudos
Reply
Mark Harshman_1
Regular Advisor

‎02-10-2004 03:27 AM

‎02-10-2004 03:27 AM

Re: sendmail issue.

i dont have a sendmail.st file. i see it in the sendmail.cf file. It has a 0 in front of it. IS that keeping it from logging?
thanks
Never underestimate the power of stupid people in large groups
0 Kudos
Reply
Sridhar Bhaskarla
Honored Contributor

‎02-10-2004 03:35 AM

‎02-10-2004 03:35 AM

Re: sendmail issue.

Hi,

You don't need to have .forward file to get these messages.

.forward file is used to auto forward your messages to a different address or script. Look at "man sendmail" for more information.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
Reply
Jeff Schussele
Honored Contributor

‎02-10-2004 03:38 AM

‎02-10-2004 03:38 AM

Re: sendmail issue.

Hi (again) Mark,

The .forward file is used to - as it's name implies - forward mail rec'd to another person or system. BUT, it can also be used to redirect mail to a file or even execute code - basically anything that can be done with an alias file.
That's why it's so importanr for root to protect it's .forward file as anything executed out of it is run as root.

Rgds.
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Reply
Steven E. Protter
Exalted Contributor

‎02-10-2004 05:07 AM

‎02-10-2004 05:07 AM

Re: sendmail issue.

Your /root/.forward file is world writable which means anyone can forward roots mail to anywhere they want.

You should check permissions on all mail configuration files in /etc/mail

The last line indicates a piece of mail could not be forwarded.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
Seth Parker
Trusted Contributor

‎02-10-2004 04:32 PM

‎02-10-2004 04:32 PM

Re: sendmail issue.

In addition to fixing your permissions as others have suggested, you might consider deleting root's .forward file and editing the /etc/mail/aliases file instead. You could still forward root's mail to whomever you forward it to with .forward, but it'd be in a more standard place.

The aliases file has examples of what to do, but if you wanted to forward root's mail to joe and bob, you can add the following entry to the aliases file:

root: joe, bob

Run the command newaliases afterwards and it will take effect immediately.
Reply
Kasper Haitsma
Trusted Contributor

‎02-12-2004 01:20 AM

‎02-12-2004 01:20 AM

Re: sendmail issue.

Hello Mark,

WRT sendmail.st this is the place where statistics are logged. See man mailstats for an explaination

HTH
Kasper
It depends
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.