Re: Problem with /etc/security script?

[Paul Goyette <paul%whooppee.com@localhost>]

On Sun, 7 Oct 2018, Robert Elz wrote:

>    Date:        Sun, 7 Oct 2018 05:23:00 +0800 (+08)
>    From:        Paul Goyette <paul%whooppee.com@localhost>
>    Message-ID:  <Pine.NEB.4.64.1810070517360.26272%speedy.whooppee.com@localhost>
>
>  | Lately I've been noticing messages of the following form:
>  |
>  | Checking mailbox ownership.
>  | user paul.lock mailbox is owned by paul
>  | user paul.lock mailbox is ----------, group wheel
>
> You might want to work out what is using .lock file style locking in /var/mail
>
> The current convention is to to use O_EXLOCK normally, not that old
> style locking.

I'm just using a normal simple postfix as far as I know.

>  | It seems like /etc/security tried to skip over the .lock files, but the
>  | test only checks for the filename having a leading '.' rather than
>  | matching ${user}.lock
>
> I think it is intending to skip over dot files, rather than lock files.   '.'
> is a valid char in user names, even if not often used, so simply
> omitting files containing dots would not be a good idea.   If we wanted
> to allow for old style user.lock files it would want to be skipping file
> names that end in ".lock" not ones that happen to contain a '.'
> (and then probably not skip, but validate that the xxx in xxx.lock is
> owned by xxx)

Hmmm.



+------------------+--------------------------+----------------------------+
| Paul Goyette     | PGP Key fingerprint:     | E-mail addresses:          |
| (Retired)        | FA29 0E3B 35AF E8AE 6651 | paul at whooppee dot com   |
| Kernel Developer | 0786 F758 55DE 53BA 7731 | pgoyette at netbsd dot org |
+------------------+--------------------------+----------------------------+