Hide Forgot
Description of problem: I can't send my e-mail, after i'm do "yum update". In /var/log/maillog i see this: Jan 27 09:40:11 timelock postfix/postdrop[23986]: fatal: getrlimit: Operation not permitted Jan 27 09:40:12 timelock postfix/sendmail[23985]: warning: command "/usr/sbin/postdrop -r" exited with status 1 Jan 27 09:40:12 timelock postfix/sendmail[23985]: fatal: root(500): unable to execute /usr/sbin/postdrop -r: Success Jan 27 09:41:12 timelock postfix/sendmail[24124]: warning: the Postfix sendmail command has set-uid root file permissions Jan 27 09:41:12 timelock postfix/sendmail[24124]: warning: or the command is run from a set-uid root process Jan 27 09:41:12 timelock postfix/sendmail[24124]: warning: the Postfix sendmail command must be installed without set-uid root file permissio ns Before this date, i'm send and recieve mail without any problem. [andy@timelock ~]$ getsebool getsebool: SELinux is disabled [andy@timelock ~]$ cat /etc/sysconfig/selinux # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - SELinux is fully disabled. SELINUX=disabled # SELINUXTYPE= type of policy in use. Possible values are: # targeted - Only targeted network daemons are protected. # strict - Full SELinux protection. SELINUXTYPE=targeted [andy@timelock ~]$ Version-Release number of selected component (if applicable): [andy@timelock ~]$ rpm -qa | grep postfix postfix-2.8.0-1.fc15.i686 [andy@timelock ~]$ How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: postdrop can't run Expected results: mail is sent :) Additional info: [andy@timelock ~]$ cat /etc/issue Fedora release 15 (Rawhide) Kernel \r on an \m (\l) [andy@timelock ~]$ [andy@timelock ~]$ uname -a Linux timelock.rtcomm.ru 2.6.37-2.fc15.i686 #1 SMP Fri Jan 7 15:46:20 UTC 2011 i686 i686 i386 GNU/Linux [andy@timelock ~]$
Do you have another MTA installed and possibly selected in alternatives? What does this command print? alternatives --config mta
No, in my system installed only postfix [root@timelock ~]# alternatives --config mta There is 1 program that provides 'mta'. Selection Command ----------------------------------------------- *+ 1 /usr/sbin/sendmail.postfix Enter to keep the current selection[+], or type selection number: 1 [root@timelock ~]#
Hm, any output from "rpm -qV postfix" or "postfix check" ?
[andy@timelock ~]$ rpm -qV postfix 5S.T..... c /etc/postfix/main.cf [andy@timelock ~]$ postfix check postfix: error: to submit mail, use the Postfix sendmail command postfix: fatal: the postfix command is reserved for the superuser [andy@timelock ~]$ su - Password: [root@timelock ~]# postfix check [root@timelock ~]# can be a problem with "removing suid from packages" policy? because in log file: postfix/sendmail[24124]: warning: the Postfix sendmail command must be installed without set-uid root file permissio ns
How does the main.cf config differ from the default?
[andy@timelock postfix]$ diff -ruN main.cf.rpmnew main.cf --- main.cf.rpmnew 2011-01-26 16:21:48.000000000 +0300 +++ main.cf 2011-01-28 08:40:22.990924268 +0300 @@ -72,7 +72,7 @@ # from gethostname(). $myhostname is used as a default value for many # other configuration parameters. # -#myhostname = host.domain.tld +myhostname = timelock.rtcomm.ru #myhostname = virtual.domain.tld # The mydomain parameter specifies the local internet domain name. @@ -80,7 +80,7 @@ # $mydomain is used as a default value for many other configuration # parameters. # -#mydomain = domain.tld +mydomain = rtcomm.ru # SENDING MAIL # @@ -96,7 +96,7 @@ # to recipient addresses that have no @domain part. # #myorigin = $myhostname -#myorigin = $mydomain +myorigin = $mydomain # RECEIVING MAIL @@ -112,8 +112,8 @@ # #inet_interfaces = all #inet_interfaces = $myhostname -#inet_interfaces = $myhostname, localhost -inet_interfaces = localhost +inet_interfaces = $myhostname, localhost +#inet_interfaces = localhost # Enable IPv4, and IPv6 if supported inet_protocols = all @@ -205,7 +205,7 @@ # In the left-hand side, specify a bare username, an @domain.tld # wild-card, or specify a user address. # -#local_recipient_maps = unix:passwd.byname $alias_maps +local_recipient_maps = unix:passwd.byname $alias_maps #local_recipient_maps = proxy:unix:passwd.byname $alias_maps #local_recipient_maps = @@ -248,7 +248,7 @@ # #mynetworks_style = class #mynetworks_style = subnet -#mynetworks_style = host +mynetworks_style = host # Alternatively, you can specify the mynetworks list by hand, in # which case Postfix ignores the mynetworks_style setting. @@ -315,6 +315,7 @@ #relayhost = [mailserver.isp.tld] #relayhost = uucphost #relayhost = [an.ip.add.ress] +#relayhost = XXXXX.rtcomm.ru # REJECTING UNKNOWN RELAY USERS # @@ -423,7 +424,7 @@ # system type. # #mail_spool_directory = /var/mail -#mail_spool_directory = /var/spool/mail +mail_spool_directory = /var/spool/mail # The mailbox_command parameter specifies the optional external # command to use instead of mailbox delivery. The command is run as @@ -444,7 +445,7 @@ # IF YOU USE THIS TO DELIVER MAIL SYSTEM-WIDE, YOU MUST SET UP AN # ALIAS THAT FORWARDS MAIL FOR ROOT TO A REAL USER. # -#mailbox_command = /some/where/procmail +mailbox_command = /usr/bin/procmail #mailbox_command = /some/where/procmail -a "$EXTENSION" # The mailbox_transport specifies the optional transport in master.cf [andy@timelock postfix]$
Looks like problem is disappeared, when i'm switched to the new kernel. [andy@timelock ~]$ uname -a Linux timelock.rtcomm.ru 2.6.38-0.rc2.git9.1.fc15.i686 #1 SMP Tue Feb 1 03:11:57 UTC 2011 i686 i686 i386 GNU/Linux [andy@timelock ~]$ i can receive and send mail as always. Thank you Miroslav!
Ok, closing as NOTABUG. Please reopen if this appears again.