Letting Cyrus’ Sieve send e-mail on CentOS 5

November 1, 2007

Letting Cyrus’ Sieve send e-mail on CentOS 5

Problem: sieve rules like redirect (A.K.A. forward) don’t work on CentOS 5. You see things in the logs like:

Oct 29 17:15:52 gateway lmtpunix[26948]: sieve runtime error for
someone@example.com id <blahlblahasdlahd@as987da97da987ads7>:
Vacation: Sendmail process terminated normally, exit status 75

Nov  1 00:47:10 gateway lmtpunix[30206]: FATAL: couldn't exec() sendmail

Explanation: SELinux is preventing Cyrus from running sendmail.

Solution:

Install the selinux-policy-devel package.

Jam this in local_cyrus.te:

policy_module(local_cyrus, 1.0.3)


require {
        type cyrus_t;
};


corecmd_exec_sbin(cyrus_t)
mta_send_mail(cyrus_t)

make -f /usr/share/selinux/devel/Makefile local_cyrus.pp
semodule --install local_cyrus.pp

Now Cyrus should be able to run sendmail.

WARNING: this may allow Cyrus to do more than it should be able to. I’m hardly an SELinux expert.

« Groupware!

Restoring mailboxes to Cyrus and CRLF »

Comments are closed.

S	M	T	W	T	F	S
« Oct				Dec »
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30

darkness

Letting Cyrus’ Sieve send e-mail on CentOS 5

Entries

Meta

Letting Cyrus’ Sieve send e-mail on CentOS 5

Tags

Entries

Meta