| Jeff Abrahamson on 27 Jun 2007 19:21:04 -0000 |
|
On Wed, Jun 27, 2007 at 10:48:20AM -0400, Doug Crompton wrote: > [20 lines, 87 words, 752 characters] Top characters: _esoinla > > > My old sendmail always allowed a non root user (I am the only user > on the system) to do a 'mailq' - now I get a permission denied. I > compared permissions on both systems and they were the same as far > as I can tell. > > doug@slate:~> mailq > can not chdir(/var/spool/mqueue/): Permission denied > Program mode requires special privileges, e.g., root or TrustedUser. > Warning: Cannot use HostStatusDirectory = .hoststat: No such file or > directory There's been some permission separation in many mail systems over the last many years. I wonder if this is the case for you here. Is it acceptable to you just to use sudo for this? Alternatively, you could write a custom setuid program that just does the appropriate setuid and execs mailq. That's a very short C program and doesn't open a very large security hole, especially if it first checks that it is running as you. -- Jeff Jeff Abrahamson <http://jeff.purple.com/> +1 215/837-2287 After 6/2007: +33 06 21.83.26.20 (From U.S.: 011-33-6-2183-2620) GPG fingerprint: 1A1A BA95 D082 A558 A276 63C6 16BF 8C4C 0D1D AE4B Attachment:
signature.asc ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|