Bug#1073862: sendmail-base: Files in modified files in /etc/mail/tls get removed on uninstall
Package: sendmail-base
Version: 8.17.1.9-2
Severity: important
Dear Maintainer,
If I modify /etc/mail/tls/starttls.m4, when I reinstall (as in remove
and then install) sendmail again, the package removes this file. This
file though gets edited (n.b. it has "# <= EDIT" comments in there).
I think somewhere in the package you need to include this file as a
config file (in debian/conffiles ?) so it doesn't delete it and on
reinstall, it should ask what to do, as in replace it with the
package's version, keep your version, show diff...etc.
-- Package-specific info:
Output of /usr/share/bug/sendmail-base/script:
ls -alR /etc/mail:
/etc/mail:
total 1196
drwxr-sr-x 8 smmta smmsp 4096 Jun 13 23:33 .
drwxr-xr-x 164 root root 12288 Jun 6 10:20 ..
-rwxr-xr-- 1 root smmsp 12706 Jun 6 05:34 Makefile
-rw-r--r-- 1 root smmsp 88213 Jun 13 23:33 access
-rw-r--r-- 1 root smmsp 59440 Oct 7 2016 access-
-rw-r----- 1 smmta smmsp 155648 Jun 13 23:33 access.db
-rw-r--r-- 1 root smmsp 88107 Jun 12 05:37 access.old
-rw-r--r-- 1 smmta smmsp 281 Feb 11 2013 address.resolve
-rw-r--r-- 1 smmta smmsp 20829 Jun 6 04:51 aliases
-rw-r----- 1 smmta smmsp 40960 Jun 6 05:26 aliases.db
-rw-r--r-- 1 root smmsp 20829 Jun 6 04:51 aliases.old
drwxr-sr-- 2 smmta smmsp 4096 Mar 4 2016 certs
-rw-r--r-- 1 smmta smmsp 16675 Mar 12 2014 charm.networkguild.org.mc
-rw-r--r-- 1 root smmsp 3866 Jun 6 05:34 databases
-rw-r----- 1 smmta smmsp 56 Mar 22 2015 default-auth-info
-rw-r--r-- 1 root smmsp 43 Dec 2 2020 dkim_key_table
-rw-r--r-- 1 root smmsp 5 Dec 2 2020 dkim_signing_table
-rw-r--r-- 1 root smmsp 306 Jun 6 04:51 genericstable
-rw-r----- 1 root smmsp 12288 Jun 6 05:26 genericstable.db
-rw-r--r-- 1 root smmsp 267 Jun 6 04:51 genericstable.old
-rw-r--r-- 1 smmta smmsp 6016 Jan 11 2023 helpfile
-rw-r--r-- 1 smmta smmsp 1389 Jun 6 04:51 local-host-names
-rw-r--r-- 1 root smmsp 1389 Jun 6 04:51 local-host-names.old
drwxr-sr-x 2 smmta smmsp 4096 Jun 6 05:35 m4
-rw-r--r-- 1 smmta smmsp 58 Jun 6 04:51 mailertable
-rw-r----- 1 root smmsp 12288 Jun 6 05:26 mailertable.db
-rw-r--r-- 1 root smmsp 58 Jun 6 04:51 mailertable.old
drwxr-xr-x 2 smmta smmsp 4096 Jun 6 05:26 peers
drwxr-xr-x 2 smmta smmsp 4096 Jun 6 05:26 sasl
-rw-r--r-- 1 root smmsp 83361 May 20 2018 sendail.cf.bottom
-rw-r--r-- 1 root smmsp 86453 Jun 6 05:35 sendmail.cf
-rw-r--r-- 1 root smmsp 84429 Jan 29 2016 sendmail.cf.backup-BD
-rw-r--r-- 1 root root 12237 Jun 6 05:26 sendmail.conf
-rw-r--r-- 1 root smmsp 11249 Jun 6 05:26 sendmail.mc
-rw-r--r-- 1 root smmsp 11061 Mar 4 2016 sendmail.mc-
-rw-r--r-- 1 root smmsp 10704 Jan 29 2016 sendmail.mc.backup-BD
-rw-r--r-- 1 smmta smmsp 148 Jan 13 2018 service.switch
-rw-r--r-- 1 smmta smmsp 179 Jan 13 2018 service.switch-nodns
drwxr-sr-x 2 smmta smmsp 4096 Jun 6 05:26 smrsh
lrwxrwxrwx 1 root root 15 Aug 29 2016 spamassassin -> ../spamassassin
-rw-r--r-- 1 root smmsp 45330 Jun 6 05:26 submit.cf
-rw-r--r-- 1 root root 45319 Feb 14 03:14 submit.cf.old
-rw-r--r-- 1 root smmsp 2453 Jun 6 05:26 submit.mc
drwxr-xr-x 2 smmta smmsp 4096 Jun 6 05:26 tls
-rw-r--r-- 1 smmta smmsp 6 Jan 10 2015 trusted-users
-rw-r--r-- 1 smmta smmsp 43683 Jun 6 04:51 virtusertable
-rw-r----- 1 root smmsp 90112 Jun 6 05:26 virtusertable.db
-rw-r--r-- 1 root smmsp 43683 Jun 6 04:51 virtusertable.old
/etc/mail/certs:
total 0
d????????? ? ? ? ? ? .
d????????? ? ? ? ? ? ..
l????????? ? ? ? ? ? 38d751eb.0
l????????? ? ? ? ? ? 6e803117.0
-????????? ? ? ? ? ? dh_2048.pem
-????????? ? ? ? ? ? dh_4096.pem
l????????? ? ? ? ? ? f131b364.0
-????????? ? ? ? ? ? geotrust-ca.crt
-????????? ? ? ? ? ? networkguild.org.crt
-????????? ? ? ? ? ? networkguild.org.csr
-????????? ? ? ? ? ? networkguild.org.key
-????????? ? ? ? ? ? strange.networkguild.org.crt
-????????? ? ? ? ? ? strange.networkguild.org.csr
-????????? ? ? ? ? ? strange.networkguild.org.key
-????????? ? ? ? ? ? sub.class1.server.ca.pem
/etc/mail/m4:
total 16
drwxr-sr-x 2 smmta smmsp 4096 Jun 6 05:35 .
drwxr-sr-x 8 smmta smmsp 4096 Jun 13 23:33 ..
-rw-r--r-- 1 root root 790 Dec 3 2016 clamav-milter.m4
-rw-r----- 1 root smmsp 0 Mar 12 2014 dialup.m4
-rw-r--r-- 1 root root 103 Jul 7 2020 opendkim.m4
-rw-r----- 1 root smmsp 0 Mar 12 2014 provider.m4
/etc/mail/peers:
total 12
drwxr-xr-x 2 smmta smmsp 4096 Jun 6 05:26 .
drwxr-sr-x 8 smmta smmsp 4096 Jun 13 23:33 ..
-rw-r--r-- 1 root root 328 Feb 11 2013 provider
/etc/mail/sasl:
total 16
drwxr-xr-x 2 smmta smmsp 4096 Jun 6 05:26 .
drwxr-sr-x 8 smmta smmsp 4096 Jun 13 23:33 ..
-rw-r----- 1 smmta smmsp 885 Jun 6 05:26 Sendmail.conf.2
-rwxr--r-- 1 root root 3691 Jun 6 05:26 sasl.m4
/etc/mail/smrsh:
total 8
drwxr-sr-x 2 smmta smmsp 4096 Jun 6 05:26 .
drwxr-sr-x 8 smmta smmsp 4096 Jun 13 23:33 ..
lrwxrwxrwx 1 root smmsp 32 Jun 6 05:26 mail.local -> /usr/libexec/sendmail/mail.local
lrwxrwxrwx 1 root smmsp 17 Jun 6 05:26 procmail -> /usr/bin/procmail
/etc/mail/tls:
total 48
drwxr-xr-x 2 smmta smmsp 4096 Jun 6 05:26 .
drwxr-sr-x 8 smmta smmsp 4096 Jun 13 23:33 ..
-rw-r--r-- 1 root root 7 Jun 6 05:26 no_prompt
-rw------- 1 root root 1188 Jun 6 05:26 sendmail-client.cfg
-rw-r--r-- 1 root smmsp 1220 Jun 6 05:26 sendmail-client.crt
-rw------- 1 root root 1005 Jun 6 05:26 sendmail-client.csr
-rw-r----- 1 root smmsp 1704 Jun 6 05:26 sendmail-common.key
-rw-r----- 1 root smmsp 1642 Jun 6 05:26 sendmail-common.prm
-rw------- 1 root root 1188 Jun 6 05:26 sendmail-server.cfg
-rw-r--r-- 1 root smmsp 1220 Jun 6 05:26 sendmail-server.crt
-rw------- 1 root root 1005 Jun 6 05:26 sendmail-server.csr
-rwxr--r-- 1 root root 3377 Jun 6 05:27 starttls.m4
sendmail.conf:
DAEMON_NETMODE="Static";
DAEMON_NETIF="eth0";
DAEMON_MODE="Daemon";
DAEMON_PARMS="";
DAEMON_HOSTSTATS="No";
DAEMON_MAILSTATS="No";
QUEUE_MODE="${DAEMON_MODE}";
QUEUE_INTERVAL="10m";
QUEUE_PARMS="";
MSP_MODE="Cron";
MSP_INTERVAL="20m";
MSP_PARMS="";
MSP_MAILSTATS="${DAEMON_MAILSTATS}";
MISC_PARMS="";
CRON_MAILTO="root";
CRON_PARMS="";
LOG_CMDS="No";
HANDS_OFF="No";
AGE_DATA="";
DAEMON_RUNASUSER="No";
DAEMON_STATS="${DAEMON_MAILSTATS}";
MSP_STATS="${MSP_MAILSTATS}";
sendmail.mc:
divert(-1)dnl
divert(0)dnl
include(`/usr/share/sendmail/cf/m4/cf.m4')dnl
VERSIONID(`$Id: sendmail.mc, v 8.14.4-4 2013-02-11 11:12:33 cowboy Exp $')
OSTYPE(`debian')
define(`_USE_ETC_MAIL_')dnl
DOMAIN(`debian-mta')dnl
undefine(`confHOST_STATUS_DIRECTORY')dnl #DAEMON_HOSTSTATS=
FEATURE(`no_default_msa')dnl
DAEMON_OPTIONS(`Name=MTA, Port=smtp, Family=inet6')dnl
DAEMON_OPTIONS(`Name=MSP, Port=smtps, Family=inet6')dnl
DAEMON_OPTIONS(`Name=MSP, Port=submission, M=Ea, Family=inet6')dnl
CLIENT_OPTIONS(`Family=inet, Addr=66.228.61.115')dnl
CLIENT_OPTIONS(`Family=inet6, Addr=2600:3c02:e000:dd::1')dnl
define(`confLOG_LEVEL', `12')dnl
define(`confRECEIVED_HEADER',`$?{auth_type}from auth (localhost [127.0.0.1]) $|_REC_HDR_$.
_REC_AUTH_$?{auth_ssf} bits=${auth_ssf}$.)
_REC_BY_
_REC_TLS_
_REC_END_')
include(`/etc/mail/tls/starttls.m4')dnl
include(`/etc/mail/sasl/sasl.m4')dnl
define(`confAUTH_OPTIONS', `A,p,y')dnl
define(`confDH_PARAMETERS',`/etc/mail/certs/dh_4096.pem')
define(`confPRIVACY_FLAGS',dnl
`needmailhelo,needexpnhelo,needvrfyhelo,restrictqrun,restrictexpand,nobodyreturn,authwarnings,noreceipts')dnl
define(`confCONNECTION_RATE_THROTTLE', `2')dnl
define(`confCONNECTION_RATE_WINDOW_SIZE',`60s')dnl
define(`confBAD_RCPT_THROTTLE',`2')dnl
define(`confMAX_DAEMON_CHILDREN', `50')dnl
define(`confTO_IDENT', `0')dnl
define(`confTO_COMMAND', `2m')dnl
define(`confTO_ICONNECT', `15s')dnl
define(`confTO_CONNECT', `3m')dnl
define(`confTO_HELO', `2m')dnl
define(`confTO_MAIL', `1m')dnl
define(`confTO_RCPT', `1m')dnl
define(`confTO_DATAINIT', `1m')dnl
define(`confTO_DATABLOCK', `10m')dnl
define(`confTO_DATAFINAL', `10m')dnl
define(`confTO_RSET', `1m')dnl
define(`confTO_QUIT', `1m')dnl
define(`confTO_MISC', `1m')dnl
define(`confTO_COMMAND', `1m')dnl
define(`confTO_STARTTLS', `2m')dnl
define(`confTO_QUEUERETURN', `7d')dnl
FEATURE(`delay_checks', `friend', `n')dnl
FEATURE(`block_bad_helo')
FEATURE(`badmx')
FEATURE(`use_cw_file')dnl
define(`confCW_FILE', `-o /etc/mail/local-host-names')
FEATURE(mailertable, `hash -o /etc/mail/mailertable')
FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access', `relaytofulladdress')
FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
FEATURE(blocklist_recipients)
FEATURE(`greet_pause', `13000')dnl used to be 5 seconds, upped to 12 seconds in June 2015 per
FEATURE(`conncontrol', `nodelay', `terminate')dnl
FEATURE(`ratecontrol', `nodelay', `terminate')dnl
FEATURE(local_lmtp)
FEATURE(local_procmail)
FEATURE(`genericstable')dnl
GENERICS_DOMAIN(`strange.networkguild.org')dnl
FEATURE(`always_add_domain')dnl
FEATURE(`masquerade_envelope')dnl
FEATURE(`nocanonify', `canonify_hosts')
define(`confMILTER_MACROS_CONNECT',`t, b, j, _, {daemon_name}, {if_name}, {if_addr}, {auth_type}')dnl
define(`confMILTER_MACROS_HELO',`s, {tls_version}, {cipher}, {cipher_bits}, {cert_subject}, {cert_issuer}, {auth_type}')dnl
define(`confMILTER_MACROS_ENVFROM', `i, {auth_authen}')
define(`confMILTER_MACROS_ENVRCPT',`r, v, Z, {auth_type}, {greylist}, {auth_ssf}')dnl
INPUT_MAIL_FILTER(`clamav', `S=local:/run/clamav/clamav-milter.ctl, F=, T=S:4m;R:4m')dnl
define(`_FFR_MILTER', `true')dnl
INPUT_MAIL_FILTER(`BitDefender', `S=unix:/opt/BitDefender/var/run/bdmilterd.sock, F=T, T=S:60s;R:60s;E:10m')dnl
INPUT_MAIL_FILTER(`spamassassin', `S=local:/run/spamass/spamass.sock, F=, T=S:4m;R:4m;E:10m')dnl
INPUT_MAIL_FILTER(`opendkim', `S=local:/run/opendkim/opendkim.sock')dnl
INPUT_MAIL_FILTER(`greylist',`S=local:/run/milter-greylist/milter-greylist.sock, F=, T=S:1m;R:1m')dnl
FEATURE(dnswl, `list.dnswl.org')
FEATURE(dnswl, `accredit.habeas.com')
FEATURE(dnswl, `query.bondedsender.org')
FEATURE(dnswl, `nobl.junkemailfilter.com')
FEATURE(dnsbl, `zen.spamhaus.org', `"550 Mail from " $&{client_addr} " BLOCKED/ZEN -- see http://check.spamhaus.org/listed/?searchterm="; $&{client_addr}')
FEATURE(rhsbl, `dbl.spamhaus.org',`"550 Mail from domain " $`'&{RHS} " BLOCKED/DBL -- see http://check.spamhaus.org/listed/?searchterm="; $`'&{RHS}')
FEATURE(dnsbl, `inv-sip.localhost', `"550 Mail from " $&{client_addr} " BLOCKED/INVSIP -- see http://dnsbl.invaluement.com/research/?item="; $&{client_addr}')
FEATURE(dnsbl, `inv-sip24.localhost', `"550 Mail from " $&{client_addr} " BLOCKED/INVSIP24 -- see http://dnsbl.invaluement.com/research/?item="; $&{client_addr}')
FEATURE(rhsbl, `inv-uri.localhost',`"550 Mail from domain " $`'&{RHS} " BLOCKED/INVURI -- see http://dnsbl.invaluement.com/research/?item="; $`'&{RHS}')
FEATURE(dnsbl, `rbl-r.localhost', `"550 Mail from " $&{client_addr} " BLOCKED/RBL+ -- see http://servicecentral.trendmicro.com/en-US/ers/ip-lookup/?ip="; $&{client_addr}')
FEATURE(dnsbl, `rbl-q.localhost', `"550 Mail from " $&{client_addr} " BLOCKED/QIL -- see http://servicecentral.trendmicro.com/en-US/ers/ip-lookup/?ip="; $&{client_addr}')
FEATURE(dnsbl, `b.barracudacentral.org', `"550 Mail from " $&{client_addr} " BLOCKED/BRBL -- see http://www.barracudacentral.org/lookups/lookup-reputation?"; $&{client_addr}')
MAILER_DEFINITIONS
MAILER(procmail)
MAILER(`smtp')dnl
submit.mc...
divert(-1)dnl
divert(0)dnl
define(`_USE_ETC_MAIL_')dnl
include(`/usr/share/sendmail/cf/m4/cf.m4')dnl
VERSIONID(`$Id: submit.mc, v 8.14.8-1 2014-10-03 13:06:30 cowboy Exp $')
OSTYPE(`debian')dnl
DOMAIN(`debian-msp')dnl
define(`confDIRECT_SUBMISSION_MODIFIERS', `C')dnl
FEATURE(`msp', `[127.0.0.1]', `25')dnl
-- System Information:
Debian Release: 12.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable'), (250, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 6.1.0-21-amd64 (SMP w/2 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages sendmail-base depends on:
ii adduser 3.134
ii lockfile-progs 0.1.19
ii m4 1.4.19-3
ii make 4.3-4.1
ii netbase 6.4
ii perl 5.36.0-7+deb12u1
Versions of packages sendmail-base recommends:
ii postfix-mta-sts-resolver 1.1.2-1.1
Versions of packages sendmail-base suggests:
ii ca-certificates 20230311
ii logcheck 1.4.2
ii logrotate 3.21.0-1
pn resolvconf <none>
pn sendmail-doc <none>
Versions of packages sensible-mda depends on:
ii libc6 2.36-9+deb12u7
ii procmail 3.22-27
ii sendmail-bin [mail-transport-agent] 8.17.1.9-2
Versions of packages libmilter1.0.1 depends on:
ii libc6 2.36-9+deb12u7
Versions of packages sendmail depends on:
ii sendmail-bin 8.17.1.9-2
ii sendmail-cf 8.17.1.9-2
ii sensible-mda 8.17.1.9-2
Versions of packages sendmail suggests:
pn rmail <none>
pn sendmail-doc <none>
Versions of packages sendmail-bin depends on:
ii debconf 1.5.82
ii init-system-helpers 1.65.2
ii libc6 2.36-9+deb12u7
ii libdb5.3 5.3.28+dfsg2-1
ii libldap-2.5-0 2.5.13+dfsg-5
ii liblockfile1 1.17-1+b1
ii libnsl2 1.3.0-2
ii libsasl2-2 2.1.28+dfsg-10
ii libssl3 3.0.11-1~deb12u2
ii libwrap0 7.6.q-32
ii procps 2:4.0.2-3
ii sendmail-cf 8.17.1.9-2
Versions of packages sendmail-bin suggests:
ii libsasl2-modules 2.1.28+dfsg-10
ii openssl 3.0.11-1~deb12u2
ii sasl2-bin 2.1.28+dfsg-10
pn sendmail-doc <none>
-- Configuration Files:
/etc/logcheck/ignore.d.paranoid/sendmail [Errno 13] Permission denied: '/etc/logcheck/ignore.d.paranoid/sendmail'
/etc/logcheck/ignore.d.server/sendmail [Errno 13] Permission denied: '/etc/logcheck/ignore.d.server/sendmail'
/etc/logcheck/ignore.d.workstation/sendmail [Errno 13] Permission denied: '/etc/logcheck/ignore.d.workstation/sendmail'
/etc/logcheck/violations.ignore.d/logcheck-sendmail [Errno 13] Permission denied: '/etc/logcheck/violations.ignore.d/logcheck-sendmail'
-- no debconf information
Reply to: