Postfix Majordomo problem
in [Postfix]
|
Prev: SOLVED: rbl check being skipped - Postfix logs no error onNXDOMAIN, does on SERVFAIL
Next: smtp auth over ssl for smartrelay configuration
From: Ruben Safir on 22 Jan 2010 13:10 Hello I have this puzzle that I can't figure out. I had my mailing list working on openSuSE 11.2 with postfix and majordomo. I've been using majordomo on sendmailf or years with no trouble. I moved to postfix with no trouble and now, suddenly I'm getting nothing through to my lists. I know this might be a majordomo problem but I'm not getting any useful debugging information. And I see that the list is using majordomo as well, so maybe someone can help me. I did test a change in the majordomo alias to a testing program I wrote in perl and tha alias seems to work. And I upped the debugging in postifx to -vv in the master.cf file. But I am completely puzzled. Everything says status=deferred(temporary failure). I have no idea what is happening. I've done a shake out with post fix and it seems to be relaying through the aliases fine. So, I think I might have somehow messed up my majordomo set up, but I can't find anything for the life of me. Aliases look like this majordomo: "|/usr/lib/majordomo/wrapper majordomo" #majordomo: "|/tmp/tmp_mail" owner-majordomo: root, majordomo-owner: root, # sample entry for a majordomo mailing-list called "test" # read /usr/doc/packages/majordomo/README.linux for more information # replace "test" with a new name and put the administrator into # the "owner-test" alias instead of "root". # #test: "|/usr/lib/majordomo/wrapper resend -l test test-outgoing" hangout: "|/usr/lib/majordomo/wrapper resend -l hangout hangout-outgoing" #test-outgoing: :include:/var/lib/majordomo/lists/test hangout-outgoing: :include:/var/lib/majordomo/lists/hangout #test-request: "|/usr/lib/majordomo/wrapper majordomo -l test" hangout-request: "|/usr/lib/majordomo/wrapper majordomo -l hangout" #test-approval: owner-test, hangout-approval: owner-hangout, #owner-test-outgoing: owner-test, owner-hangout-outgoing: owner-hangout, #owner-test-request: owner-test, owner-hangout-request: owner-hangout, #owner-test: root, owner-hangout: ruben, The /etc/majordomo file show this # $log -- Where do I write my log? # $log = "/var/lib/majordomo/Log"; But there is no log and nothing under /var/lib/majordomo/tmp of use either I have the following file permisions www2:/usr/lib/majordomo # ls -al total 360 drwxr-xr-x 3 mdom mdom 472 Dec 19 17:02 . drwxr-xr-x 272 root root 109640 Jan 12 00:38 .. drwxr-xr-x 2 root root 264 Dec 19 17:02 Tools -rwxr-xr-x 1 root root 5267 Oct 19 11:24 archive2.pl -rwxr-xr-x 1 root root 2796 Oct 19 11:24 bounce-remind -rwxr-xr-x 1 root root 10693 Oct 19 11:24 config-test -rwxr-xr-x 1 root root 51130 Oct 19 11:24 config_parse.pl -rwxr-xr-x 1 root root 14215 Oct 19 11:24 digest -rwxr-xr-x 1 root root 62513 Oct 19 11:24 majordomo -rwxr-xr-x 1 root root 24613 Oct 19 11:24 majordomo.pl -rwxr-xr-x 1 root root 137 Oct 19 11:24 majordomo_version.pl -rwxr-xr-x 1 root root 3793 Oct 19 11:24 request-answer -rwxr-xr-x 1 root root 29949 Oct 19 11:24 resend -rw-r--r-- 1 root root 10561 Oct 19 11:24 sample.cf -rwxr-xr-x 1 root root 8060 Oct 19 11:24 shlock.pl -rwsr-xr-x 1 root daemon 5896 Oct 19 11:24 wrapper config-test runs as a normal user ruben(a)www2:/usr/lib/majordomo> ./wrapper config-test ------------------------------------------------------------ ---------------- Config-test for Majordomo ---------------- ------------------------------------------------------------ --------------------- Obvious things: --------------------- ------------------ environment variables ------------------ HOME=/usr/lib/majordomo LOGNAME=ruben MAJORDOMO_CF=/etc/majordomo.cf PATH=/bin:/usr/bin SHELL=/bin/sh USER=ruben --------------------- euid/egid checks --------------------- effective user = mdom (uid 28) effective group = mdom audio video games users gdm (gid 28 17 33 40 100 117 ) ---------------------- uid/gid checks ---------------------- real user = mdom (uid 28) real group = mdom audio video games users gdm (gid 28 17 33 40 100 117 ) ------------------------------------------------------------ Non obvious things that cause headaches: ------------------------------------------------------------ This is permisions for the list locations ruben(a)www2:/var/lib> ls -al |grep maj drwxr-xr-x 6 mdom mdom 232 2010-01-22 00:59 majordomo ruben(a)www2:/var/lib/majordomo> ls -al total 22 drwxr-xr-x 6 mdom mdom 232 2010-01-22 00:59 . drwxr-xr-x 60 root root 1560 2010-01-12 00:38 .. drwxr-xr-x 2 mdom mdom 48 2009-10-19 11:24 archive drwxr-xr-x 2 mdom mdom 48 2009-10-19 11:24 digest drwxr-xr-x 2 mdom mdom 704 2010-01-21 21:40 lists -rw-rw-r-- 1 mdom mdom 0 2010-01-22 00:59 Log -rw------- 1 mdom mdom 10504 2010-01-01 14:03 majordomo.cf -rwx------ 1 mdom mdom 8060 2005-05-19 03:52 shlock.pl drwxr-xr-x 2 mdom mdom 48 2010-01-21 21:51 tmp ruben(a)www2:/var/lib/majordomo/lists> ls -al total 269 drwxr-xr-x 2 mdom mdom 704 2010-01-21 21:40 . drwxr-xr-x 6 mdom mdom 232 2010-01-22 00:59 .. -rwx------ 1 mdom mdom 57 2005-07-16 12:05 break.pl -rw-r--r-- 1 mdom mdom 106 2009-07-29 22:23 freedom_it -rw-r--r-- 1 mdom mdom 17392 2007-10-10 03:10 freedom_it.admin -rw-r--r-- 1 mdom mdom 16690 2007-10-10 03:09 freedom_it.config -rw-r--r-- 1 mdom mdom 2943 2009-11-17 18:56 hangout -rw-r--r-- 1 mdom mdom 17389 2007-12-08 12:25 hangout.admin -rw-r--r-- 1 mdom mdom 9025 2005-05-19 03:52 hangout.archive.200504 -rw-r--r-- 1 mdom mdom 16584 2009-12-22 06:42 hangout.config -rw-r--r-- 1 mdom mdom 16570 2005-05-19 03:52 hangout-digest.config -rw-r--r-- 1 mdom mdom 5 2005-05-19 03:52 hangout-digest.config.LOCK -rw-r--r-- 1 mdom mdom 5534 2008-04-19 14:36 hangout.intro -rw-r--r-- 1 mdom mdom 2303 2005-08-28 11:59 mikanrecro -rw-r--r-- 1 mdom mdom 17392 2005-07-17 06:21 mikanrecro.admin -rw-r--r-- 1 mdom mdom 16644 2005-07-25 19:37 mikanrecro.config -rw-r--r-- 1 mdom mdom 59 2008-02-15 09:09 natureny -rw-r--r-- 1 mdom mdom 17389 2008-02-15 09:07 natureny.admin -rw-r--r-- 1 mdom mdom 16551 2008-02-15 09:09 natureny.config -rw-r--r-- 1 mdom mdom 40 2007-12-17 13:26 pharmacy -rw-r--r-- 1 mdom mdom 17392 2007-12-17 13:26 pharmacy.admin -rw-r--r-- 1 mdom mdom 16703 2007-12-17 13:34 pharmacy.config I can use some advise on how to fix this ... Ruben
From: Victor Duchovni on 22 Jan 2010 13:18 On Fri, Jan 22, 2010 at 01:10:51PM -0500, Ruben Safir wrote: > Aliases look like this > > majordomo: "|/usr/lib/majordomo/wrapper majordomo" This script will run as "nobody" unless a non-root user owns the "aliases.db" file from which this alias is read. All tutorials on integrating list manager delivery scripts with Postfix via local aliases(5) describe how to add a secondary aliases file owned by the right user. Another alternative is a dedicated transport, with the user specified in the pipe(8) argument list. -- Viktor. Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the "Reply-To" header. To unsubscribe from the postfix-users list, visit http://www.postfix.org/lists.html or click the link below: <mailto:majordomo(a)postfix.org?body=unsubscribe%20postfix-users> If my response solves your problem, the best way to thank me is to not send an "it worked, thanks" follow-up. If you must respond, please put "It worked, thanks" in the "Subject" so I can delete these quickly.
From: Wietse Venema on 22 Jan 2010 13:27 Victor Duchovni: > On Fri, Jan 22, 2010 at 01:10:51PM -0500, Ruben Safir wrote: > > > Aliases look like this > > > > majordomo: "|/usr/lib/majordomo/wrapper majordomo" That's how I run majordomo on my machine. If I recall correctly, the wrapper program needs to be installed set-uid, and it needs to be configured at compile time with the right uid/gid information. Wietse
From: Ruben Safir on 22 Jan 2010 17:14 On Fri, Jan 22, 2010 at 01:27:06PM -0500, Wietse Venema wrote: > Victor Duchovni: > > On Fri, Jan 22, 2010 at 01:10:51PM -0500, Ruben Safir wrote: > > > > > Aliases look like this > > > > > > majordomo: "|/usr/lib/majordomo/wrapper majordomo" > > That's how I run majordomo on my machine. > > If I recall correctly, the wrapper program needs to be installed > set-uid, and it needs to be configured at compile time with the > right uid/gid information. > > Wietse Thanks I made it SIUD and the wrapper config-test seems to believe everything is working. But it is still failing. Ruben -- http://www.mrbrklyn.com - Interesting Stuff http://www.nylxs.com - Leadership Development in Free Software So many immigrant groups have swept through our town that Brooklyn, like Atlantis, reaches mythological proportions in the mind of the world - RI Safir 1998 http://fairuse.nylxs.com DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002 "Yeah - I write Free Software...so SUE ME" "The tremendous problem we face is that we are becoming sharecroppers to our own cultural heritage -- we need the ability to participate in our own society." "> I'm an engineer. I choose the best tool for the job, politics be damned.< You must be a stupid engineer then, because politcs and technology have been attached at the hip since the 1st dynasty in Ancient Egypt. I guess you missed that one." � Copyright for the Digital Millennium
From: Ruben Safir on 22 Jan 2010 17:19
On Fri, Jan 22, 2010 at 01:18:10PM -0500, Victor Duchovni wrote: > On Fri, Jan 22, 2010 at 01:10:51PM -0500, Ruben Safir wrote: > > > Aliases look like this > > > > majordomo: "|/usr/lib/majordomo/wrapper majordomo" > > This script will run as "nobody" unless a non-root user owns the > "aliases.db" file from which this alias is read. > > All tutorials on integrating list manager delivery scripts with > Postfix via local aliases(5) describe how to add a secondary > aliases file owned by the right user. > > Another alternative is a dedicated transport, with the user > specified in the pipe(8) argument list. > I think that is the current case. I think the wrapper file is suid to mdom.mdom Ruben > -- > Viktor. > > Disclaimer: off-list followups get on-list replies or get ignored. > Please do not ignore the "Reply-To" header. > > To unsubscribe from the postfix-users list, visit > http://www.postfix.org/lists.html or click the link below: > <mailto:majordomo(a)postfix.org?body=unsubscribe%20postfix-users> > > If my response solves your problem, the best way to thank me is to not > send an "it worked, thanks" follow-up. If you must respond, please put > "It worked, thanks" in the "Subject" so I can delete these quickly. -- http://www.mrbrklyn.com - Interesting Stuff http://www.nylxs.com - Leadership Development in Free Software So many immigrant groups have swept through our town that Brooklyn, like Atlantis, reaches mythological proportions in the mind of the world - RI Safir 1998 http://fairuse.nylxs.com DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002 "Yeah - I write Free Software...so SUE ME" "The tremendous problem we face is that we are becoming sharecroppers to our own cultural heritage -- we need the ability to participate in our own society." "> I'm an engineer. I choose the best tool for the job, politics be damned.< You must be a stupid engineer then, because politcs and technology have been attached at the hip since the 1st dynasty in Ancient Egypt. I guess you missed that one." � Copyright for the Digital Millennium |