[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

qmail and chmod 550 /bin/bash



Hi,
I want to restrict qmail's qmail-command facility to a particular GID by
chmod root.GID /bin/bash. That is, in general I dont want /bin/bash to 
be world executable. When I do this the GID users cant run
qmail-command "|" commands despite the fact that I added them to the
/etc/group file GID list. In /var/log/maillog I get

deferral: Unable_to_run_/bin/sh:_access_denied._(#4.3.0)/

That is, althoough qmail-local is running uid=504(UID) gid=504(GID)
groups=504(GID), that is, it should be able to execv /bin/sh, the execv
fails.

Any ideas?
Regards,

 - yba


   EE 77 7F 30 4A 64 2E C5  83 5F E7 49 A6 82 29 BA    ~. .~   TclTek Ltd.
 =}-------------------------------------------------ooO--U--Ooo-----------{=
  - benavrhm@tcltek.co.il - tel: +972.52.670.353, http://www.tcltek.co.il -


=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il