From owner-freebsd-ports-bugs@FreeBSD.ORG  Tue Jul 29 01:15:47 2014
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
Delivered-To: freebsd-ports-bugs@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id CC498E3F
 for <freebsd-ports-bugs@FreeBSD.org>; Tue, 29 Jul 2014 01:15:47 +0000 (UTC)
Received: from kenobi.freebsd.org (kenobi.freebsd.org
 [IPv6:2001:1900:2254:206a::16:76])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 9A0392E8F
 for <freebsd-ports-bugs@FreeBSD.org>; Tue, 29 Jul 2014 01:15:47 +0000 (UTC)
Received: from bugs.freebsd.org ([127.0.1.118])
 by kenobi.freebsd.org (8.14.8/8.14.8) with ESMTP id s6T1FlEA005403
 for <freebsd-ports-bugs@FreeBSD.org>; Tue, 29 Jul 2014 01:15:47 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
From: bugzilla-noreply@freebsd.org
To: freebsd-ports-bugs@FreeBSD.org
Subject: [Bug 192229] New: [patch] mail/milter-regex:Postfix cannot connect
 to Milter service
Date: Tue, 29 Jul 2014 01:15:47 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: new
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports Tree
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Some People
X-Bugzilla-Who: bug@mbfw.net
X-Bugzilla-Status: Needs Triage
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: freebsd-ports-bugs@FreeBSD.org
X-Bugzilla-Target-Milestone: ---
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform
 op_sys bug_status bug_severity priority component assigned_to reporter
 attachments.created
Message-ID: <bug-192229-13@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs/>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Jul 2014 01:15:47 -0000

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=192229

            Bug ID: 192229
           Summary: [patch] mail/milter-regex:Postfix cannot connect to
                    Milter service
           Product: Ports Tree
           Version: Latest
          Hardware: Any
                OS: Any
            Status: Needs Triage
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: freebsd-ports-bugs@FreeBSD.org
          Reporter: bug@mbfw.net

Created attachment 145110
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=145110&action=edit
Make /var/run/milter-regex/sock readable by postfix

On 10.0-STABLE with postfix 2.11.1_2,1, postfix logs "postfix/smtpd[24120]:
warning: connect to Milter service unix:/var/run/milter-regex/sock: Permission
denied"

Postfix runs as the user postfix, in the groups postfix and mail. So its smtpd
process is unable to read the sock file for milter-regex:

        % sudo ls -l /var/run/milter-regex/
        total 8
        -rw-rw----  1 mailnull  daemon  5 Jul 26 12:40 milter-regex.pid
        srw-------  1 mailnull  daemon  0 Jul 26 12:40 sock

The directory permissions (700) also prevent postfix from accessing the sock
file.

See attached patch for suggested fix (with thanks to neirbowj).

The patch has been tested and addresses the sock permission denied issue with
postfix. Since sendmail runs as mailnull, this patch only modifies group
ownership and permissions to add access for postfix, and should not prevent
sendmail from accessing sock. It is also consistent with guidance from postfix
that a milter not run as the postfix user.

-- 
You are receiving this mail because:
You are the assignee for the bug.