More RH6.2 wierdness.

May 17 21:19:59 gatekeeper ipop3d[5222]: Mailbox vulnerable - directory /var/spool/mail must have 1777 protection

Resetting the perms to 1777 works, but after a random time, this error is back. With no clue in the logs as to what has changed :-/
LVL 12
j2Asked:
Who is Participating?
 
jlevieConnect With a Mentor Commented:
The "sticky bit" 1000 would be the "Restriction on directory" setting above. Having all options except "Setuid flag" and "Setgid flag" selected should yield a mode of 1777.
0
 
jlevieCommented:
When the warning shows up again, what are the perms on /var/spool/mail?
0
 
j2Author Commented:
[root@gatekeeper /root]# ls -la /var/spool/                
total 44
drwxr-xr-x   11 root     root         4096 May 10 12:39 .
drwxr-xr-x   18 root     root         4096 Mar 31 15:34 ..
drwxr-xr-x    2 root     root         4096 May  1 04:42 anacron
drwx------    3 daemon   daemon       4096 Mar 31 15:29 at
drwx------    2 root     root         4096 May 17 22:01 cron
drwxrwxr-x    2 root     daemon       4096 Mar 31 15:40 lpd
drwxrwxr-x    2 root     mail         4096 May 23 18:03 mail
drwxr-xr-x    2 root     root         4096 May 23 18:03 mqueue
drwxr-xr-x    2 root     root         4096 Feb  7 21:20 rwho
drwxr--r--   18 squid    squid        4096 May 21 04:02 squid
drwxr-xr-x    5 root     root         4096 May 10 12:39 vmail
[root@gatekeeper /root]# ls -la /var/spool/mail/
total 76
drwxrwxr-x    2 root     mail         4096 May 23 18:03 .
drwxr-xr-x   11 root     root         4096 May 10 12:39 ..
-rw-------    1 aslin    popusers     2051 May 23 16:32 aslin
-rwxrwxrwt    1 chand    popusers      559 May 23 14:41 chand
-rwxrwxrwt    1 hajan    popusers      559 May 19 12:10 hajan
-rw-rw----    1 lebun    mail          559 May 23 16:46 lebun
-rwxrwxrwt    1 makje    mail          559 May 23 13:30 makje
-rwxrwxrwt    1 mikje    popusers      559 May 23 15:28 mikje
-rw-------    1 mikoh    popusers      559 May 23 10:55 mikoh
-rw-------    1 motho    popusers     3805 May 23 18:03 motho
-rwxrwxrwt    1 padah    popusers     1820 May 19 09:29 padah
-rw-------    1 root     root         3522 May 23 04:00 root
-rw-------    1 stgus    popusers      559 May 22 08:54 stgus
-rwxrwxrwt    1 vatim    popusers      559 May 18 14:29 vatim
-rwxrwxrwt    1 wmjajoa  wmjajoa     16853 May 17 22:00 wmjajoa
[root@gatekeeper /root]#


Found something, the perms goes to heck when a new spoolfile is created, AND it looks related to using the "stock" linuxconf on a RH system, will compare the Two linuxconfs configs and see if i can see something
0
Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

 
j2Author Commented:
Found it. Its because i am using the "stock" Linuxconf and not the RH version. Whats the mask 1777 when expressing it as:
[X] May read                  xx        
                            x       x[X] May write                 xx        
                            x       x[X] May execute               xx        
                            xGroup  x[X] May read                  xx        
                            x       x[X] May write                 xx        
                            x       x[X] May execute               xx        
                            xOthers x[X] May read                  xx        
                            x       x[ ] May write                 xx        
                            x       x[X] May execute               xx        
                            x       xqqqqqqqqSpecial flagsqqqqqqqqqxx        
                            x       x[ ] Setuid flag               xx        
                            x       x[ ] Setgid flag               xx        
                            x       x[X] Restriction on directory  xx        
0
 
j2Author Commented:
And right you are :)

Ive been over every manpage on chmod et. al. to find a bitmaping over the permissions but came up blank.
0
 
j2Author Commented:
Comment accepted as answer
0
 
jlevieCommented:
The man page you need is "man 2 chmod" and the bit of interest is S_ISVTX (01000 sticky bit).
0
 
j2Author Commented:
Thank you. Thank you. Thank you. Thank you. Thank you. Thank you. Thank you. Thank you. Thank you. Thank you. Thank you.

THAT is something i did not know :)
0
 
jlevieCommented:
You're welcome... Glad to add to the general knowledge base...
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.