LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-06-2019, 12:29 PM   #1
mikeg1203
LQ Newbie
 
Registered: Aug 2019
Posts: 17

Rep: Reputation: Disabled
SMTP email blocked by gmail for one account only


I'm trying to find out if there is a way to change the relay=nobody@localhost for user webserver to relay=webserver@localhost. If I could figure out how to make all email flow out as a different user besides webserver, then all mail would be good to go. Below is from my /var/log/maillog:

Aug 6 06:58:44 mydomain sendmail[15033]: x76AwiRG015033: Authentication-Warning: mydomain.com: nobody set sender to webserver@stingrayboats.com using -f
Aug 6 06:58:44 mydomain sendmail[15033]: x76AwiRG015033: from=webserver@mydomain.com, size=1425, class=0, nrcpts=4, msgid=<201908061058.x76AwiRG015033@mydomain.com>, relay=nobody@localhost
Aug 6 06:58:44 mydomain sendmail[15033]: STARTTLS=client: file /usr/local/apache2/conf/www_mydomain_com.key unsafe: Group readable file
Aug 6 06:58:44 mydomain sendmail[15033]: STARTTLS=client, relay=gmail-smtp-relay.l.google.com., version=TLSv1/SSLv3, verify=FAIL, cipher=AES128-SHA, bits=128/128
Aug 6 06:58:45 mydomain sendmail[15033]: x76AwiRG015033: to=srbilling@mydomain.com,user@anotherdomain.com,user@anotherdomain.com,ctladdr=webserver@mydomain.c om (1330/1330), delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=121425, relay=gmail-smtp-relay.l.google.com. [64.233.185.28], dsn=2.0.0, stat=Sent (OK 1565089122 g13sm8223575vkk.2 - gsmtp)
 
Old 08-06-2019, 01:20 PM   #2
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.7.1908
Posts: 4,281

Rep: Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497
Quote:
Originally Posted by mikeg1203 View Post
I'm trying to find out if there is a way to change the relay=nobody@localhost for user webserver to relay=webserver@localhost. If I could figure out how to make all email flow out as a different user besides webserver, then all mail would be good to go. Below is from my /var/log/maillog:

Aug 6 06:58:44 mydomain sendmail[15033]: x76AwiRG015033: Authentication-Warning: mydomain.com: nobody set sender to webserver@stingrayboats.com using -f
Aug 6 06:58:44 mydomain sendmail[15033]: x76AwiRG015033: from=webserver@mydomain.com, size=1425, class=0, nrcpts=4, msgid=<201908061058.x76AwiRG015033@mydomain.com>, relay=nobody@localhost
Aug 6 06:58:44 mydomain sendmail[15033]: STARTTLS=client: file /usr/local/apache2/conf/www_mydomain_com.key unsafe: Group readable file
Aug 6 06:58:44 mydomain sendmail[15033]: STARTTLS=client, relay=gmail-smtp-relay.l.google.com., version=TLSv1/SSLv3, verify=FAIL, cipher=AES128-SHA, bits=128/128
Aug 6 06:58:45 mydomain sendmail[15033]: x76AwiRG015033: to=srbilling@mydomain.com,user@anotherdomain.com,user@anotherdomain.com,ctladdr=webserver@mydomain.c om (1330/1330), delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=121425, relay=gmail-smtp-relay.l.google.com. [64.233.185.28], dsn=2.0.0, stat=Sent (OK 1565089122 g13sm8223575vkk.2 - gsmtp)
What are the permissions on /usr/local/apache2/conf/www_mydomain_com.key?
That appears to be the problem. Maybe.
 
Old 08-06-2019, 01:26 PM   #3
mikeg1203
LQ Newbie
 
Registered: Aug 2019
Posts: 17

Original Poster
Rep: Reputation: Disabled
they are set at 755. -rwxr-xr-x
 
Old 08-06-2019, 01:30 PM   #4
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.7.1908
Posts: 4,281

Rep: Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497
Quote:
Originally Posted by mikeg1203 View Post
they are set at 755. -rwxr-xr-x
That's apparently not right, given that sendmail is complaining about it being a group readable file.
Try 700 and see what happens.
 
Old 08-06-2019, 01:33 PM   #5
mikeg1203
LQ Newbie
 
Registered: Aug 2019
Posts: 17

Original Poster
Rep: Reputation: Disabled
Made the change and checking logs to see what it has. I'll post back shortly.
Thanks
 
Old 08-06-2019, 01:46 PM   #6
mikeg1203
LQ Newbie
 
Registered: Aug 2019
Posts: 17

Original Poster
Rep: Reputation: Disabled
here's the info after changing permissions to 700

Aug 6 13:38:36 mydomain sendmail[19079]: x76Hcaaf019079: Authentication-Warning: stingrayboats.com: nobody set sender to webserver@mydomain.com using -f
Aug 6 13:38:37 mydomain sendmail[19079]: x76Hcaaf019079: from=webserver@stingrayboats.com, size=427, class=0, nrcpts=3, msgid=<201908061738.x76Hcaaf019079@stingrayboats.com>, relay=nobody@localhost
Aug 6 13:38:37 mydomain sendmail[19079]: STARTTLS=client: file /usr/local/apache2/conf/www_mydomain_com.key unsafe: Permission denied
Aug 6 13:38:37 mydomain sendmail[19079]: STARTTLS=client, relay=gmail-smtp-relay.l.google.com., version=TLSv1/SSLv3, verify=FAIL, cipher=AES128-SHA, bits=128/128
Aug 6 13:38:37 mydomain sendmail[19079]: x76Hcaaf019079: to=purchaser@mydomain.com,webppl@mydomain.com,drewg@mydomain.com, ctladdr=webserver@mydomain.com (1330/1330), delay=00:00:01, xdelay=00:00:00, mailer=relay, pri=90427, relay=gmail-smtp-relay.l.google.com. [64.233.177.28], dsn=2.0.0, stat=Sent (OK 1565113116
 
Old 08-06-2019, 01:57 PM   #7
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.7.1908
Posts: 4,281

Rep: Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497
Now the error is saying that sendmail can't read the key file. You need to figure out what the ownership and permissions on that file are supposed to be. I don't know.
 
Old 08-06-2019, 02:01 PM   #8
mikeg1203
LQ Newbie
 
Registered: Aug 2019
Posts: 17

Original Poster
Rep: Reputation: Disabled
roger that. Thanks.
 
Old 08-07-2019, 09:48 AM   #9
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.7.1908
Posts: 4,281

Rep: Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497Reputation: 1497
Starting a new thread with the same question is generally frowned upon at LQ.
In that new thread, the OP only talks about the desire to change the relayto setting, as they did here. As we can see here, the problem appears to be related to the key file being used to authenticate to google, according to the error messages.

Can someone help them with how to address the keyfile problem please. I don't speak sendmail.

I'll add this thought: If nobody is the apache user, then the email is being sent by a cgi (php? perl?) script on a web page. Do you know which web page might be doing that?
 
Old 08-07-2019, 10:30 AM   #10
dc.901
Member
 
Registered: Aug 2018
Location: Atlanta, GA - USA
Distribution: CentOS 6-7; SuSE 8-12
Posts: 657

Rep: Reputation: 199Reputation: 199
Quote:
Originally Posted by mikeg1203 View Post
Aug 6 13:38:37 mydomain sendmail[19079]: STARTTLS=client: file /usr/local/apache2/conf/www_mydomain_com.key unsafe: Permission denied
Who is the owner/group is for this file?
Also, for file, it should be 600, for directory 700.
 
Old 08-07-2019, 10:39 AM   #11
mikeg1203
LQ Newbie
 
Registered: Aug 2019
Posts: 17

Original Poster
Rep: Reputation: Disabled
Looks like its smmsp while the rest of the files in that folder are root.
 
Old 08-07-2019, 09:12 PM   #12
frankbell
LQ Guru
 
Registered: Jan 2006
Location: Virginia, USA
Distribution: Slackware, Ubuntu MATE, Mageia, and whatever VMs I happen to be playing with
Posts: 15,799
Blog Entries: 27

Rep: Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639Reputation: 4639
Fedora 14 reached end of life in 2011. That means it is no longer supported and will no longer receive updates, including security updates, after that date.

It would be better to replace it than try to repair it.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Postfix: forward all account email within domain to another email account? 18Googol2 Linux - Software 3 03-04-2011 02:10 PM
Postfix is not sending via my Gmail account smtp. Usalabs Linux - Server 4 02-11-2011 01:03 PM
vsftpd with one account upload only and other account download only ahmadnawaz Linux - Server 2 08-11-2010 12:52 AM
Gmail account blocked ! khaleel5000 General 13 05-03-2010 12:24 PM
PHP SMTP connection to gmail SMTP protocol violation ratcateme Programming 9 02-23-2009 04:58 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 04:43 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration