On Thu, 2003-12-18 at 16:00, Stephen Bosch wrote:
I should probably point out that this machine is running RH9, but reformime is not suid root, and the perl is 5.8.2 installed from sources with suid support compiled in.
It passes all the tests.
Well it's not running setuid. That fact that all the files are owned by qscand except for quaratine-attachments* - which are owned by root implies it isn't.
Try running "qmail-scanner-queue.pl -g" as your own non-root account - I think you'll get "access denied" there too.
Check the perms on suidperl - it should be 4711 or thereabouts. (basically o+s).
As far as passing the tests go - that's actually pretty hard to do right. As you run the install as root, most things "just work", and changing down to other usernames to test things gets difficult due to ./configure having to support *all* Unixes - not just Redhat :-(
Here's an interesting thing:
[EMAIL PROTECTED] spool]$ ls -lia
total 64
336673 drwxr-xr-x 16 root root 4096 Dec 17 18:29 .
2 drwxr-xr-x 22 root root 4096 Nov 29 10:08 ..
112226 drwxr-xr-x 2 root root 4096 Nov 29 09:11 anacron
176354 drwx------ 3 daemon daemon 4096 Nov 29 08:49 at
480963 drwxrwx--- 2 smmsp smmsp 4096 Nov 29 10:15 clientmqueue
80162 drwx------ 2 root root 4096 Nov 29 09:00 cron
464932 drwx------ 3 lp sys 4096 Nov 29 08:51 cups
400880 drwxr-xr-x 4 sweep sweep 4096 Dec 7 15:35 intercheck
352705 drwxr-xr-x 2 root root 4096 Jan 24 2003 lpd
368737 drwxrwxr-x 2 root mail 4096 Dec 11 11:14 mail
112280 drwxrwsr-x 3 root mailman 4096 Nov 29 09:00 mailman
400883 drwxrwx--- 2 qscand qscand 4096 Dec 17 20:17 qmailscan
448897 drwxr-xr-x 2 rpm rpm 4096 Feb 27 2003 repackage
336676 drwxrwxrwt 2 root root 4096 Mar 13 2003 samba
48098 drwxr-xr-x 2 root root 4096 Feb 24 2003 up2date
368739 drwxrwxrwt 2 root root 4096 Feb 3 2003 vbox
[EMAIL PROTECTED] spool]$ whoami
qscand
[EMAIL PROTECTED] spool]$ rm -rf qmailscan/
rm: cannot remove directory `qmailscan/': Permission denied
[EMAIL PROTECTED] spool]$ rmdir qmailscan/
rmdir: `qmailscan/': Permission denied
The first command removes the contents, but not the directory. rmdir obviously fails the same way.
So -- I can't remove a directory I own?
-Stephen-
------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click _______________________________________________ Qmail-scanner-general mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
