diff options
| author | Eric Faurot <eric@cvs.openbsd.org> | 2013-11-13 08:57:25 +0000 |
|---|---|---|
| committer | Eric Faurot <eric@cvs.openbsd.org> | 2013-11-13 08:57:25 +0000 |
| commit | b7ed0d321483a543276e71fcbdd9f133c20ae3dc (patch) | |
| tree | 9bfc6bb59f3047c23a88d545da1f7ba5ae1ff8e0 /usr.sbin | |
| parent | c140808d72350873a5cff69f70aebf359a21f3c2 (diff) | |
disable .forward lookup if sticky bit is set on homedir
Diffstat (limited to 'usr.sbin')
| -rw-r--r-- | usr.sbin/smtpd/forward.5 | 18 | ||||
| -rw-r--r-- | usr.sbin/smtpd/smtpd.c | 18 |
2 files changed, 31 insertions, 5 deletions
diff --git a/usr.sbin/smtpd/forward.5 b/usr.sbin/smtpd/forward.5 index 5fa669abd92..b65056e2ed3 100644 --- a/usr.sbin/smtpd/forward.5 +++ b/usr.sbin/smtpd/forward.5 @@ -1,4 +1,4 @@ -.\" $OpenBSD: forward.5,v 1.7 2013/01/26 09:37:23 gilles Exp $ +.\" $OpenBSD: forward.5,v 1.8 2013/11/13 08:57:24 eric Exp $ .\" .\" Copyright (c) 2012 Gilles Chehade <gilles@poolp.org> .\" @@ -14,7 +14,7 @@ .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. .\" -.Dd $Mdocdate: January 26 2013 $ +.Dd $Mdocdate: November 13 2013 $ .Dt FORWARD 5 .Os .Sh NAME @@ -48,6 +48,20 @@ file are very strict and expansion is rejected if the file is group or world-writable; if the home directory is group writeable; or if the file is not owned by the user. +.Pp +Users should avoid editing directly the +.Nm .forward +file to prevent delivery failures from occurring if a message +arrives while the file is not fully written. +The best option is to use a temporary file and use the +.Xr mv 1 +command to atomically overwrite the former +.Nm .forward . +Alternatively, setting the +.Xr sticky 8 +bit on the home directory will cause the +.Nm .forward +lookup to return a temporary failure, causing mails to be deferred. .Sh FILES .Bl -tag -width "~/.forwardXXX" -compact .It Pa ~/.forward diff --git a/usr.sbin/smtpd/smtpd.c b/usr.sbin/smtpd/smtpd.c index 97586931bd6..ca600e3d95a 100644 --- a/usr.sbin/smtpd/smtpd.c +++ b/usr.sbin/smtpd/smtpd.c @@ -1,4 +1,4 @@ -/* $OpenBSD: smtpd.c,v 1.204 2013/11/06 10:01:29 eric Exp $ */ +/* $OpenBSD: smtpd.c,v 1.205 2013/11/13 08:57:24 eric Exp $ */ /* * Copyright (c) 2008 Gilles Chehade <gilles@poolp.org> @@ -1262,13 +1262,25 @@ offline_done(void) static int parent_forward_open(char *username, char *directory, uid_t uid, gid_t gid) { - char pathname[SMTPD_MAXPATHLEN]; - int fd; + char pathname[SMTPD_MAXPATHLEN]; + int fd; + struct stat sb; if (! bsnprintf(pathname, sizeof (pathname), "%s/.forward", directory)) fatal("smtpd: parent_forward_open: snprintf"); + if (stat(directory, &sb) < 0) { + log_warn("warn: smtpd: parent_forward_open: %s", directory); + return -1; + } + if (sb.st_mode & S_ISVTX) { + log_warnx("warn: smtpd: parent_forward_open: %s is sticky", + directory); + errno = EAGAIN; + return -1; + } + do { fd = open(pathname, O_RDONLY); } while (fd == -1 && errno == EINTR); |