GNU bug report logs - #41763
services: opensmtpd: Fix the setgid problem for the smtpctl utility.

Previous Next

Package: guix-patches;

Reported by: maxim.cournoyer <at> gmail.com

Date: Mon, 8 Jun 2020 17:47:01 UTC

Severity: normal

Done: Maxim Cournoyer <maxim.cournoyer <at> gmail.com>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: maxim.cournoyer <at> gmail.com
To: 41763 <at> debbugs.gnu.org
Cc: Christopher Baines <mail <at> cbaines.net>
Subject: [bug#41763] services: opensmtpd: Fix the setgid problem for the smtpctl utility.
Date: Mon, 08 Jun 2020 13:46:37 -0400

[Message part 1 (text/plain, inline)]
Hello!

The following patches provide a mean to specify a user and group for a
setuid program, and uses that to fix a setgid permission issue in the
context of the opensmtpd service.

Christopher, you should be able to leverage this new facility to
configure the uid/gid of the sendmail program to that of the smtpq user,
like this:

--8<---------------cut here---------------start------------->8---
(operating-system)
  [...]
  (setuid-programs (cons (list (file-append sendmail "/usr/sbin/sendmail") "smtpq")
                           %setuid-programs))
--8<---------------cut here---------------end--------------->8---

The smtpq user is created as part of the OpenSMTPD service definition.

Thank you,


[0001-services-Allow-configuring-the-ownership-of-setuid-p.patch (text/x-patch, attachment)]
[0002-services-opensmtpd-Remove-unused-binding.patch (text/x-patch, attachment)]
[0003-services-opensmtpd-Fix-the-setgid-problem-for-the-sm.patch (text/x-patch, attachment)]
[Message part 5 (text/plain, inline)]
Maxim

[signature.asc (application/pgp-signature, inline)]
This bug report was last modified 4 years and 7 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.