Bug 238763 - mail/dcc-dccd: leaks the two files ids and map.txt into /
Summary: mail/dcc-dccd: leaks the two files ids and map.txt into /
Status: Closed Overcome By Events
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: Piotr Kubaj
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-06-22 16:28 UTC by Trond.Endrestol
Modified: 2019-11-06 17:59 UTC (History)
0 users

See Also:
bugzilla: maintainer-feedback? (pkubaj)


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Trond.Endrestol 2019-06-22 16:28:15 UTC
I noticed two files in / with timestamps matching the time when mail/dcc-dccd was last installed/updated, up to plus or minus 1 second. These two files really belong in /usr/local/dcc. Looking into the latter directory, none of the files have been updated recently. Maybe they are not supposed to be touched when they already exists. Running pkg info -l mail/dcc-dccd, states that all files from this package should stay away from /.

$ pkg info -dfr mail/dcc-dccd
dcc-dccd-2.3.167_1
Name           : dcc-dccd
Version        : 2.3.167_1
Installed on   : Fri Jun 21 19:36:58 2019 CEST
Origin         : mail/dcc-dccd
Architecture   : FreeBSD:12:amd64
Prefix         : /usr/local
Categories     : mail
Licenses       : DCC
Maintainer     : pkubaj@FreeBSD.org
WWW            : https://www.rhyolite.com/dcc/
Comment        : Distributed Checksum Clearinghouse bulk email detector
Options        :
        DCCD           : on
        DCCGREY        : on
        DCCIFD         : on
        DCCM           : on
        IPV6           : on
        PORTS_MILTER   : off
Annotations    :
        FreeBSD_version: 1200512
        repo_type      : binary
        repository     : Synth
Flat size      : 3.97MiB
Description    :
This is the Distributed Checksum Clearinghouse (DCC) package, including
the command line (e.g. procmail) interface, dccproc; the SpamAssassin
and Postfix interface, dccifd; the Sendmail milter interface, dccm;
the DCC server, dccd; and the DCC greylisting server, dccd-grey.

Also included are utilities such as cdcc and all of the manual pages
and documentation.

WWW: https://www.rhyolite.com/dcc/

-rw-------   1 root  wheel  uarch  2.4K Jun 21 19:36:59 2019 /ids
-rw-------   1 root  wheel  uarch  386B Jun 21 19:36:59 2019 /map.txt

drwxr-xr-x  2 root  dcc  uarch   15B Jun 21 19:36:59 2019 /usr/local/dcc/cgi-bin/
-rw-------  1 dcc   dcc  uarch  2.4K Dec  6 17:04:23 2018 /usr/local/dcc/ids
-rw-------  1 dcc   dcc  uarch  2.4K Dec  6 17:04:23 2018 /usr/local/dcc/ids.nopasswd
drwx--x---  2 dcc   dcc  uarch    2B Mar  7 19:17:10 2018 /usr/local/dcc/log/
-rw-------  1 dcc   dcc  uarch  7.5K Dec  6 17:04:24 2018 /usr/local/dcc/map
-rw-------  1 dcc   dcc  uarch  7.5K Dec  6 17:04:24 2018 /usr/local/dcc/map.nopasswd
-rw-------  1 dcc   dcc  uarch  382B Dec  6 17:04:24 2018 /usr/local/dcc/map.txt
-rw-------  1 dcc   dcc  uarch  382B Dec  6 17:04:24 2018 /usr/local/dcc/map.txt.nopasswd

$ pkg info -l mail/dcc-dccd
dcc-dccd-2.3.167_1:
        /usr/local/bin/cdcc
        /usr/local/bin/dccif-test
        /usr/local/bin/dccproc
        /usr/local/dcc/cgi-bin/README
        /usr/local/dcc/cgi-bin/chgpasswd
        /usr/local/dcc/cgi-bin/common
        /usr/local/dcc/cgi-bin/common.pm
        /usr/local/dcc/cgi-bin/edit-whiteclnt
        /usr/local/dcc/cgi-bin/footer.sample
        /usr/local/dcc/cgi-bin/header.sample
        /usr/local/dcc/cgi-bin/http2https
        /usr/local/dcc/cgi-bin/list-log
        /usr/local/dcc/cgi-bin/list-msg
        /usr/local/dcc/cgi-bin/webuser-notify
        /usr/local/etc/rc.d/dccd
        /usr/local/etc/rc.d/dccgrey
        /usr/local/etc/rc.d/dccifd
        /usr/local/etc/rc.d/dccm
        /usr/local/libexec/check_ip_range
        /usr/local/libexec/ck2ip
        /usr/local/libexec/cron-dccd
        /usr/local/libexec/dbclean
        /usr/local/libexec/dblist
        /usr/local/libexec/dcc-nagios
        /usr/local/libexec/dcc-stats-collect
        /usr/local/libexec/dcc-stats-graph
        /usr/local/libexec/dcc-stats-init
        /usr/local/libexec/dcc-stats-update
        /usr/local/libexec/dccd
        /usr/local/libexec/dccifd
        /usr/local/libexec/dccm
        /usr/local/libexec/dccsight
        /usr/local/libexec/dns-helper
        /usr/local/libexec/dump-clients
        /usr/local/libexec/fetch-testmsg-whitelist
        /usr/local/libexec/fetchblack
        /usr/local/libexec/fetchids
        /usr/local/libexec/fix-map
        /usr/local/libexec/hackmc
        /usr/local/libexec/list-clients
        /usr/local/libexec/logger
        /usr/local/libexec/newwebuser
        /usr/local/libexec/rcDCC
        /usr/local/libexec/start-dccd
        /usr/local/libexec/start-dccifd
        /usr/local/libexec/start-dccm
        /usr/local/libexec/start-grey
        /usr/local/libexec/stats-get
        /usr/local/libexec/stop-dccd
        /usr/local/libexec/uninstalldcc
        /usr/local/libexec/updatedcc
        /usr/local/libexec/wlist
        /usr/local/man/man8/cdcc.8.gz
        /usr/local/man/man8/dbclean.8.gz
        /usr/local/man/man8/dblist.8.gz
        /usr/local/man/man8/dcc.8.gz
        /usr/local/man/man8/dccd.8.gz
        /usr/local/man/man8/dccifd.8.gz
        /usr/local/man/man8/dccm.8.gz
        /usr/local/man/man8/dccproc.8.gz
        /usr/local/man/man8/dccsight.8.gz
        /usr/local/share/licenses/dcc-dccd-2.3.167_1/DCC
        /usr/local/share/licenses/dcc-dccd-2.3.167_1/LICENSE
        /usr/local/share/licenses/dcc-dccd-2.3.167_1/catalog.mk
        /var/db/dcc/dcc_conf.sample
        /var/db/dcc/flod.sample
        /var/db/dcc/grey_flod.sample
        /var/db/dcc/grey_whitelist.sample
        /var/db/dcc/ids.sample
        /var/db/dcc/map.sample
        /var/db/dcc/map.txt.sample
        /var/db/dcc/whiteclnt.sample
        /var/db/dcc/whitecommon.sample
        /var/db/dcc/whitelist.sample
Comment 1 Piotr Kubaj freebsd_committer 2019-06-26 13:39:17 UTC
(In reply to Trond.Endrestol from comment #0)
Can you show your make.conf?

I have just installed this port on my desktop (which didn't have it installed).

root@talos:/usr/ports/mail/dcc-dccd # ls /
.cshrc          .snap           COPYRIGHT       boot            dev             etc             lib             media           net             rescue          sbin            tmp             var
.profile        .sujournal      bin             data            entropy         home            libexec         mnt             proc            root            sys             usr

root@talos:/usr/ports/mail/dcc-dccd # ls /var/db/dcc/
dcc_conf                flod.sample             grey_whitelist          ids.nopasswd            map                     map.txt                 whiteclnt               whitecommon.sample
dcc_conf.sample         grey_flod               grey_whitelist.sample   ids.sample              map.nopasswd            map.txt.nopasswd        whiteclnt.sample        whitelist
flod                    grey_flod.sample        ids                     log                     map.sample              map.txt.sample          whitecommon             whitelist.sample

All seems ok.

Also:
root@talos:/usr/ports/mail/dcc-dccd # make check-plist
====> Checking for pkg-plist issues (check-plist)
===> Parsing plist
===> Checking for items in STAGEDIR missing from pkg-plist
===> Checking for items in pkg-plist which are not in STAGEDIR
===> No pkg-plist issues found (check-plist)
Comment 2 Trond.Endrestol 2019-06-26 16:57:30 UTC
(In reply to Piotr Kubaj from comment #1)
I'm using ports-mgmt/synth to build my ports, hence /usr/local/etc/synth/LiveSystem-make.conf contains these lines:

# $BSDnet: config/freebsd/enterprise/usr/local/etc/synth/LiveSystem-make.conf,v 1.2 2019-01-02 08:45:02 trond Exp $

# DTrace:
STRIP=
CFLAGS+=-fno-omit-frame-pointer
WITH_CTF=1

AMANDA_SERVER?=amanda.some.domain
AMANDA_TAPE?=/dev/nsa0
AMANDA_USER?=amanda
AMANDA_GROUP?=amanda

OPTIONS_UNSET+=X11              # Global setting

WITH_BDB6_PERMITTED=yes

# Comment #3 from https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214979.
WITH_MPM=event

WITH_SSP_PORTS=yes

TEX_DEFAULT=texlive

DEFAULT_VERSIONS+=apache=2.4
DEFAULT_VERSIONS+=bdb=6
DEFAULT_VERSIONS+=corosync=2
#DEFAULT_VERSIONS+=emacs=full
DEFAULT_VERSIONS+=emacs=nox
DEFAULT_VERSIONS+=firebird=2.5
DEFAULT_VERSIONS+=fortran=gfortran
DEFAULT_VERSIONS+=fpc=3.0.4
DEFAULT_VERSIONS+=llvm=70
DEFAULT_VERSIONS+=gcc=8
DEFAULT_VERSIONS+=ghostscript=agpl
DEFAULT_VERSIONS+=lazarus=1.8.4
DEFAULT_VERSIONS+=linux=c6_64
DEFAULT_VERSIONS+=lua=5.2
DEFAULT_VERSIONS+=mysql=5.7
DEFAULT_VERSIONS+=perl5=5.28
DEFAULT_VERSIONS+=pgsql=11
DEFAULT_VERSIONS+=php=7.3
DEFAULT_VERSIONS+=python=2.7
DEFAULT_VERSIONS+=python2=2.7
DEFAULT_VERSIONS+=python3=3.6
DEFAULT_VERSIONS+=ruby=2.4
DEFAULT_VERSIONS+=samba=4.7
DEFAULT_VERSIONS+=ssl=base
#DEFAULT_VERSIONS+=ssl=openssl
DEFAULT_VERSIONS+=tcltk=8.6
DEFAULT_VERSIONS+=varnish=6

# EOF
Comment 3 Trond.Endrestol 2019-11-06 17:59:01 UTC
For all I know I made a boo-boo along the way. Maybe I extracted the .tgz file when I intended to list its contents.