1 |
I guess I'm confused. |
2 |
|
3 |
Since my vpopmail user isn't allowed to write a new file in /etc, using the |
4 |
default configure option of '--enable-tcpserver-file=/etc/tcp.smtp' breaks |
5 |
qmail-smtpd's tcpserver tcprule rule. This is not because the tcprule is |
6 |
pointing to the wrong file but rather that vpopmail can't even update this |
7 |
file. |
8 |
|
9 |
When you use vpopmail's ebuild does it now create the vpopmail user with |
10 |
permissions to write (and create new files) in /etc? |
11 |
|
12 |
What other program than tcpserver/tcprules uses /etc/tcp.smtp? |
13 |
|
14 |
I still don't see why vpopmail's ebuild can't use |
15 |
/var/vpopmail/etc/tcp.smtp. Or, I suppose, it could link to /etc/tcp.smtp |
16 |
but build it's own tcp.smtp.cdb file in /var/vpopmail/etc/ (since it doesn't |
17 |
actually edit tcp.smtp but rather updates tcp.smtp.cdb). |
18 |
|
19 |
With the current default emerge of vpopmail, does POP-before-SMTP auth even |
20 |
work? |
21 |
|
22 |
>From the looks of it, it doesn't. |
23 |
|
24 |
You yourself say you don't want arbitrary users to be able to write to |
25 |
config files in /etc, but then why does the now-default ebuild of vpopmail |
26 |
require this? |
27 |
|
28 |
You also say that it'd require a recompile of vpopmail to turn off |
29 |
POP-before-SMTP but this isn't true. You simply have to remove the |
30 |
tcprule -x arg from your qmail-smtpd startup script. You could also modify |
31 |
the tcp.smtp file to allow all IPs. |
32 |
|
33 |
--- |
34 |
Corey Crawford |
35 |
ccrawford@×××××××.net |
36 |
|
37 |
|
38 |
----- Original Message ----- |
39 |
From: "Robin H. Johnson" <robbat2@g.o> |
40 |
To: "Martin Lesser" <gentoo@××××××××××.de>; "Gentoo Developers" |
41 |
<gentoo-dev@g.o> |
42 |
Sent: Saturday, November 01, 2003 5:15 AM |
43 |
Subject: Re: [gentoo-dev] vpopmail's emerge directory structure |
44 |
|
45 |
On Sat, Nov 01, 2003 at 09:52:41AM +0100, Martin Lesser wrote: |
46 |
> > The file doesn't belong to vpopmail exclusively. It really belongs to |
47 |
> > qmail, and vpopmail wants to add and remove items from it for it's |
48 |
> > misguiding implementation of relaying. |
49 |
> What do you mean with misguiding? vpopmail - like others - only tries to |
50 |
> record the REMOTEIP for SMTP after POP purposes. |
51 |
I personally believe that /etc/tcp.smtp should not be writable by |
52 |
anybody other than the root user himself, setting it up. |
53 |
|
54 |
> > Qmail looks at /etc/tcp.smtp via tcpserver, which only allows a single |
55 |
> > file to be specified, so there is also a tcp.smtp is in |
56 |
> > /var/vpopmail/etc, then qmail NEVER looks at it, as it really needs |
57 |
> > /etc/tcp.smtp. |
58 |
> Just for clarifying: tcpserver (and not qmail) looks into a cdb-file |
59 |
> which you define as option for tcpserver with -x /path/to/file.cdb. |
60 |
That is exactly what I said: 'Qmail looks at /etc/tcp.smtp via |
61 |
tcpserver'. |
62 |
|
63 |
> So if one uses vpopmail the run-file for qmail-smtpd could be changed in |
64 |
> a way that tcpserver looks in another cdb-file for which vpopmail has |
65 |
> write access. The vanilla vpopmail suggests this IIRC. |
66 |
The problem is that tcpserver only takes the last '-x' parameter it is |
67 |
passed, so you cannot give it multiple cdbfiles. |
68 |
|
69 |
I'd like to enforce a clean seperation between the tcp.smtp that is set |
70 |
by the administrator and the tcp.smtp that vpopmail wants to create. |
71 |
|
72 |
No application should ever re-write configuration files as it goes, |
73 |
there is too much potential for disaster, and ideally should have no |
74 |
permissions to write to the files even. |
75 |
|
76 |
[snip standard information about how qmail-smtpd uses tcpserver]. |
77 |
|
78 |
Worst case scenario: |
79 |
somebody finds a way to exploit vpopmail and add arbitrary information |
80 |
to your cdb-file. now they use your mail server to send spam etc. I can |
81 |
simply turn off the extra relaying added in by vpopmail, and leave my |
82 |
original (and seperate) tcp.smtp file intact. |
83 |
|
84 |
> > A much better overall solution is to use the relay-ctrl package (see my |
85 |
> > notes in the latest qmail conf-smtpd and courier-imap stuff about it). |
86 |
> Ack. |
87 |
Why 'Ack'? The relay-ctrl package is simply the RELAYCLIENT stuff |
88 |
abstracted and made a lot more useful. It also doesn't violate my |
89 |
configuration files. I don't see any convincing reasons why it is less |
90 |
suitable than vpopmail's less than idea implementation of relay after |
91 |
auth. |
92 |
|
93 |
Another nastiness with vpopmail, is that is I wanted to remove the relay |
94 |
after auth only, I'd have to recompile it, versus just flipping a |
95 |
configuration setting. |
96 |
|
97 |
-- |
98 |
Robin Hugh Johnson |
99 |
E-Mail : robbat2@××××××××××××××.net |
100 |
Home Page : http://www.orbis-terrarum.net/?l=people.robbat2 |
101 |
ICQ# : 30269588 or 41961639 |
102 |
GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85 |
103 |
|
104 |
|
105 |
|
106 |
|
107 |
|
108 |
-- |
109 |
gentoo-dev@g.o mailing list |