Ahh... coincidentally I just had to deal with this "problem" when I
upgraded sendmail recently so the answer is fresh in my mind.
Notice in the bounce report the line :
smrsh: wrapper not available for sendmail programs
This is a message from the sendmail restricted shell ( smrsh ).
What smrsh does is restrict what programs can be used as recipients
to email messages. It provides greater security since it limits
what can be run, unlike an unrestricted shell such as /bin/sh.
To enable a program to be the recipient of an email message
you need to do the following :
1) create the directory /usr/adm/sm.bin with appropriate permissions
( restrict it to be writable only by root )
2) for each program you need to be able to have as a recipient to
an email program create a symbolic link in /usr/adm/sm.bin
which points to it.
So instead of being able to pipe mail to any program at all via
aliases or even .forward files, only programs with links in
/usr/adm/sm.bin can be used. This prevents users from creating
potentially malicious .forward files.
Read the manual page for smrsh for more information.
Another advantage is that you no longer need to use an absolute
path to the program in the mail alias, thus making the alias
entries shorter in length, requiring less typing to enter
( less typing is a good thing in my opinion ).
So for example you may need to use majordomo's wrapper program
as a mail recipient, /usr/adm/sm.bin would then look like :
/usr/adm/sm.bin
lrwxrwxrwx 1 root root 25 Sep 10 08:35 wrapper -> /usr/local/majordomo/wrapper
And the aliases entries would look like :
pc-rooms: "|wrapper resend -l pc-rooms"
Good luck and have fun.
- Mike Hogsett
>
> Hi,
>
> I am a member of student asistant in computer labs in Middle East
> Technical University, Turkey.
>
> When I used RedHat 6.2 on my system; I have installed majordomo's
> rpm. However; I got to upgrade my system to Redhat 7.0; so all my settings
> have changed; and I had to reinstall majordomo. I could not find the rpm
> for 7.0. I downloaded tar.gz; installed it.
>
> However, I am experiencing a problem:
>
> The original message was received at Sun, 10 Dec 2000 23:28:52 +0200
> from majordomo@localhost
>
> ----- The following addresses had permanent fatal errors -----
> "|/usr/lib/majordomo-1.94.5/wrapper resend -l pc-rooms pc-rooms-list"
> (reason: service unavailable)
> (expanded from: <pc-rooms@oper.metu.edu.tr>)
>
> ----- Transcript of session follows -----
> Message delivered to mailing list <pc-rooms@oper.metu.edu.tr>
> smrsh: wrapper not available for sendmail programs
> 554 5.0.0 "|/usr/lib/majordomo-1.94.5/wrapper resend -l pc-rooms
> pc-rooms-list"... Service unavailable
>
> ***************
> In the file /etc/aliases, I have:
>
> pc-rooms: "|/usr/lib/majordomo-1.94.5/wrapper resend -l pc-rooms
> pc-rooms-list"
> pc-rooms-list: :include:/var/lib/majordomo-1.94.5/lists/pc-rooms
> owner-pc-rooms: devrim@oper.metu.edu.tr
> pc-rooms-owner: devrim@oper.metu.edu.tr
> pc-rooms-approval: devrim@oper.metu.edu.tr
> pc-rooms-request: "|/usr/lib/majordomo-1.94.5/wrapper majordomo -l
> pc-rooms"
> Majordomo-Owner: devrim@oper.metu.edu.tr
> Majordomo: "|/usr/lib/majordomo-1.94.5/wrapper majordomo"
>
> ************
>
> I feel that I made everything all right; but where is the problem?
>
>
> Thanks for your helps.
>
> Devrim GUNDUZ
> METU
>
>
>
References:
|
|
