Hello all,I have been trying to build a canonical address mapping through ldap, in order to replace login names by better-looking addresses, as stated in the ADDRESS_REWRITING_README, and I stumbled upon a weird behaviour : with the canonical_maps on, every time a mail is sent to my server, Postfix refuses to treat it and the logs state the following :
Oct 20 13:57:13 server postfix/master[pid]: warning: /usr/lib/postfix/cleanup: bad command startup -- throttling Oct 20 13:58:13 server postfix/master[pid]: warning: process /usr/lib/postfix/cleanup pid 18924 killed by signal 11
I understood that it came from the fact that my cleanup process was chrooted - which means, I suppose, that the files I was using to store the ldap config for postfix were out of its permission area. When I un-chroot the process, everything works fine.
Now, my question would be : obviously chroot isn't necessary for cleanup to work, but is it not a bit dangerous to let it run outside of the cage ? Could you tell me what are the risks of such a configuration ?
Thanks, -- Mickaël DEQUIDT IFREMER - Service IMN/IDM/RIC Centre Ifremer Bretagne - ZI de la pointe du diable CS 10070 - 29280 Plouzané Tel : +33 (0)2 98 22 46 04 - Fax : +33 (0)2 98 22 46 47
smime.p7s
Description: Signature cryptographique S/MIME
