HAKERIS 11

home *** CD-ROM | disk | FTP | other *** search

/ HAKERIS 11 / HAKERIS 11.ISO / linux / system / LinuxConsole 0.4 / linuxconsole0.4install-en.iso / linuxconsole0.4.lcm / etc / postfix / post-install < prev next >

Wrap

Text File | 2004-03-26 | 17.6 KB | 550 lines

#!/usr/bin/bash # To view the formatted manual page of this file, type: # POSTFIXSOURCE/mantools/srctoman - post-install | nroff -man #++ # NAME # post-install # SUMMARY # Postfix post-installation script # SYNOPSIS # post-install [name=value] command ... # DESCRIPTION # The post-install script performs the finishing touch of a Postfix # installation, after the executable programs and configuration # files are installed. Usage is one of the following: # .IP o # While installing Postfix from source code on the local machine, the # script is run by the postfix-install script to update selected file # or directory permissions and to update Postfix configuration files. # .IP o # While installing Postfix from a pre-built package, the script is run # by the package management procedure to set all file or directory # permissions and to update Postfix configuration files. # .IP o # The script can be used to change installation parameter settings such # as mail_owner or setgid_group after Postfix is already installed. # .IP o # The script can be used to upgrade configuration files and to upgrade # file/directory permissions of a secondary Postfix instance. # .IP o # At Postfix start-up time, the script is run from "postfix check" to # create missing queue directories. # .PP # The post-install script is controlled by installation parameters. # Specific parameters are described at the end of this document. # All installation parameters must be specified ahead of time via # one of the methods described below. # # Arguments # .IP create-missing # Create missing queue directories with ownerships and permissions # according to the contents of $config_directory/postfix-files, using # the mail_owner and setgid_group parameter settings from the command # line, process environment or from the installed main.cf file. # # This is required at Postfix start-up time. # .IP set-permissions # Set all file/directory ownerships and permissions according to the # contents of $config_directory/postfix-files, using the mail_owner # and setgid_group parameter settings from the command line, process # environment or from the installed main.cf file. Implies create-missing. # # This is required when installing Postfix from a pre-built package, # or when changing the mail_owner or setgid_group installation parameter # settings after Postfix is already installed. # .IP upgrade-permissions # Update ownership and permission of existing files/directories as # specified in $config_directory/postfix-files, using the mail_owner # and setgid_group parameter settings from the command line, process # environment or from the installed main.cf file. Implies create-missing. # # This is required when upgrading an existing Postfix instance. # .IP upgrade-configuration # Edit the installed main.cf and master.cf files, in order to account # for missing services and to fix deprecated parameter settings. # # This is required when upgrading an existing Postfix instance. # .IP upgrade-source # Short-hand for: upgrade-permissions upgrade-configuration. # # This is recommended when upgrading Postfix from source code. # .IP upgrade-package # Short-hand for: set-permissions upgrade-configuration. # # This is recommended when upgrading Postfix from a pre-built package. # .IP first-install-reminder # Remind the user that they still need to configure main.cf and the # aliases file, and that newaliases still needs to be run. # # This is recommended when Postfix is installed for the first time. # MULTIPLE POSTFIX INSTANCES # .ad # .fi # Multiple Postfix instances on the same machine can share command and # daemon program files but must have separate configuration and queue # directories. # # To create a secondary Postfix installation on the same machine, # copy the configuration files from the primary Postfix instance to # a secondary configuration directory and execute: # # post-install config_directory=secondary-config-directory \e # .in +4 # queue_directory=secondary-queue-directory \e # .br # create-missing # .PP # This creates secondary Postfix queue directories, sets their access # permissions, and saves the specified installation parameters to the # secondary main.cf file. # # Be sure to list the secondary configuration directory in the # alternate_config_directories parameter in the primary main.cf file. # # To upgrade a secondary Postfix installation on the same machine, # execute: # # post-install config_directory=secondary-config-directory \e # .in +4 # upgrade-permissions upgrade-configuration # INSTALLATION PARAMETER INPUT METHODS # .ad # .fi # Parameter settings can be specified through a variety of # mechanisms. In order of decreasing precedence these are: # .IP "command line" # Parameter settings can be given as name=value arguments on # the post-install command line. These have the highest precedence. # Settings that override the installed main.cf file are saved. # .IP "process environment" # Parameter settings can be given as name=value environment # variables. # Settings that override the installed main.cf file are saved. # .IP "installed configuration files" # If a parameter is not specified via the command line or via the # process environment, post-install will attempt to extract its # value from the already installed Postfix main.cf configuration file. # These settings have the lowest precedence. # INSTALLATION PARAMETER DESCRIPTION # .ad # .fi # The description of installation parameters is as follows: # .IP config_directory # The directory for Postfix configuration files. # .IP daemon_directory # The directory for Postfix daemon programs. This directory # should not be in the command search path of any users. # .IP command_directory # The directory for Postfix administrative commands. This # directory should be in the command search path of adminstrative users. # .IP queue_directory # The directory for Postfix queues. # .IP sendmail_path # The full pathname for the Postfix sendmail command. # This is the Sendmail-compatible mail posting interface. # .IP newaliases_path # The full pathname for the Postfix newaliases command. # This is the Sendmail-compatible command to build alias databases # for the Postfix local delivery agent. # .IP mailq_path # The full pathname for the Postfix mailq command. # This is the Sendmail-compatible command to list the mail queue. # .IP mail_owner # The owner of the Postfix queue. Its numerical user ID and group ID # must not be used by any other accounts on the system. # .IP setgid_group # The group for mail submission and for queue management commands. # Its numerical group ID must not be used by any other accounts on the # system, not even by the mail_owner account. # .IP manpage_directory # The directory for the Postfix on-line manual pages. # .IP sample_directory # The directory for the Postfix sample configuration files. # .IP readme_directory # The directory for the Postfix README files. # SEE ALSO # postfix-install(1) Postfix primary installation script. # FILES # $config_directory/main.cf, Postfix installation parameters. # $config_directory/postfix-files, installation control file. # $config_directory/install.cf, obsolete configuration file. # LICENSE # .ad # .fi # The Secure Mailer license must be distributed with this software. # AUTHOR(S) # Wietse Venema # IBM T.J. Watson Research # P.O. Box 704 # Yorktown Heights, NY 10598, USA #-- umask 022 #PATH=/bin:/usr/bin:/usr/sbin:/usr/etc:/sbin:/etc:/usr/contrib/bin:/usr/gnu/bin:/usr/ucb:/usr/bsd SHELL=/bin/sh IFS=" " BACKUP_IFS="$IFS" USAGE="Usage: $0 [name=value] command create-missing Create missing queue directories. upgrade-source When installing or upgrading from source code. upgrade-package When installing or upgrading from pre-built package. first-install-reminder Remind of mandatory first-time configuration steps. name=value Specify an installation parameter". # Process command-line options and parameter settings. Work around # brain damaged shells. "IFS=value command" should not make the # IFS=value setting permanent. But some broken standard allows it. create=; set_perms=; upgrade_perms=; upgrade_conf=; first_install_reminder= for arg do case $arg in *=*) IFS= eval $arg; IFS="$BACKUP_IFS";; create-missing) create=1;; set-perm*) create=1; set_perms=1;; upgrade-perm*) create=1; upgrade_perms=1;; upgrade-conf*) upgrade_conf=1;; upgrade-source) create=1; upgrade_conf=1; upgrade_perms=1;; upgrade-package) create=1; upgrade_conf=1; set_perms=1;; first-install*) first_install_reminder=1;; *) echo "$0: Error: $USAGE" 1>&2; exit 1;; esac shift done # Sanity checks. test -n "$create$upgrade_conf$first_install_reminder" || { echo "$0: Error: $USAGE" 1>&2 exit 1 } # Bootstrapping problem. if [ -n "$command_directory" ] then POSTCONF="$command_directory/postconf" else POSTCONF="postconf" fi $POSTCONF -d mail_version >/dev/null 2>/dev/null || { echo $0: Error: no $POSTCONF command found. 1>&2 echo Re-run this command as $0 command_directory=/some/where. 1>&2 exit 1 } test -n "$config_directory" || config_directory=`$POSTCONF -d -h config_directory` || exit 1 test -d "$config_directory" || { echo $0: Error: $config_directory is not a directory. 1>&2 exit 1 } test -f $config_directory/postfix-files || { echo $0: Error: $config_directory/postfix-files is not a file. 1>&2 exit 1 } # # LINUX by default does not synchronously update directories - # that's dangerous for mail. # if [ -f /usr/bin/chattr ] then CHATTR="/usr/bin/chattr +S" else CHATTR=echo fi case `uname -s` in HP-UX*) FMT=cat;; *) FMT=fmt;; esac # If a parameter is not set via the command line or environment, # try to use settings from installed configuration files. # Extract parameter settings from the obsolete install.cf file, as # a transitional aid. grep setgid_group $config_directory/main.cf >/dev/null 2>&1 || { test -f $config_directory/install.cf && { for name in sendmail_path newaliases_path mailq_path setgid manpages do eval junk=\$$name case "$junk" in "") eval unset $name;; esac eval : \${$name="\`. $config_directory/install.cf; echo \$$name\`"} \ || exit 1 done : ${setgid_group=$setgid} : ${manpage_directory=$manpages} } } # Extract parameter settings from the installed main.cf file. test -f $config_directory/main.cf && { for name in daemon_directory command_directory queue_directory mail_owner \ setgid_group sendmail_path newaliases_path mailq_path \ manpage_directory sample_directory readme_directory do eval junk=\$$name case "$junk" in "") eval unset $name;; esac eval : \${$name=\`$POSTCONF -c $config_directory -h $name\`} || exit 1 done } # Sanity checks case $manpage_directory in no) echo $0: Error: manpage_directory no longer accepts \"no\" values. 1>&2 echo Try again with \"$0 manpage_directory=/pathname ...\". 1>&2; exit 1;; esac case $setgid_group in no) echo $0: Error: setgid_group no longer accepts \"no\" values. 1>&2 echo Try again with \"$0 setgid_group=groupname ...\" 1>&2; exit 1;; esac for path in "$daemon_directory" "$command_directory" "$queue_directory" \ "$sendmail_path" "$newaliases_path" "$mailq_path" "$manpage_directory" \ "$sample_directory" do case "$path" in /*) ;; *) echo $0: Error: \"$path\" should be an absolute path name. 1>&2; exit 1;; esac done for path in "$readme_directory" do case "$path" in /*) ;; no) ;; *) echo $0: Error: \"$path\" should be \"no\" or an absolute path name. 1>&2; exit 1;; esac done # Find out what parameters were not specified via command line, # via environment, or via installed configuration files. missing= for name in daemon_directory command_directory queue_directory mail_owner \ setgid_group sendmail_path newaliases_path mailq_path manpage_directory \ sample_directory readme_directory do eval test -n \"\$$name\" || missing="$missing $name" done # All parameters must be specified at this point. test -n "$non_interactive" -a -n "$missing" && { cat <<EOF | ${FMT} 1>&2 $0: Error: some required installation parameters are not defined. - Either the parameters need to be given in the $config_directory/main.cf file from a recent Postfix installation, - Or the parameters need to be specified through the process environment. - Or the parameters need to be specified as name=value arguments on the $0 command line, The following parameters were missing: $missing EOF exit 1 } POSTCONF="$command_directory/postconf" # Save settings, allowing command line/environment override. override= for name in daemon_directory command_directory queue_directory mail_owner \ setgid_group sendmail_path newaliases_path mailq_path manpage_directory \ sample_directory readme_directory do eval test \"\$$name\" = \"`$POSTCONF -c $config_directory -h $name`\" || { override=1 break } done test -n "$override" && { $POSTCONF -c $config_directory -e \ "daemon_directory = $daemon_directory" \ "command_directory = $command_directory" \ "queue_directory = $queue_directory" \ "mail_owner = $mail_owner" \ "setgid_group = $setgid_group" \ "sendmail_path = $sendmail_path" \ "mailq_path = $mailq_path" \ "newaliases_path = $newaliases_path" \ "manpage_directory = $manpage_directory" \ "sample_directory = $sample_directory" \ "readme_directory = $readme_directory" \ || exit 1 } # Use file/directory status information in $config_directory/postfix-files. test -n "$create" && { exec <$config_directory/postfix-files || exit 1 while IFS=: read path type owner group mode flags junk do IFS="$BACKUP_IFS" set_permission= # Skip comments. case $path in [$]*) ;; *) continue;; esac # Expand $name, and canonicalize null fields. for name in path owner group flags do eval junk=\${$name} case $junk in [$]*) eval $name=$junk;; -) eval $name=;; *) ;; esac done # Skip uninstalled files. case $path in no|no/*) continue;; esac # Pick up the flags. case $flags in *u*) upgrade_flag=1;; *) upgrade_flag=;; esac case $flags in *c*) create_flag=1;; *) create_flag=;; esac case $flags in *r*) recursive="-R";; *) recursive=;; esac # Create missing directories with proper owner/group/mode settings. if [ -n "$create" -a "$type" = "d" -a -n "$create_flag" -a ! -d "$path" ] then mkdir $path || exit 1 $CHATTR $path >/dev/null 2>/dev/null set_permission=1 # Update all owner/group/mode settings. elif [ -n "$set_perms" ] then set_permission=1 # Update obsolete owner/group/mode settings. elif [ -n "$upgrade_perms" -a -n "$upgrade_flag" ] then set_permission=1 fi test -n "$set_permission" && { chown $recursive $owner $path || exit 1 test -z "$group" || chgrp $recursive $group $path || exit 1 chmod $mode $path || exit 1 } done } # Upgrade existing Postfix configuration files if necessary. test -n "$upgrade_conf" && { # Add missing flush service to master.cf. grep 'flush.*flush' $config_directory/master.cf >/dev/null || { echo Editing $config_directory/master.cf, adding missing entry for flush service cat >>$config_directory/master.cf <<EOF || exit 1 flush unix - - n 1000? 0 flush EOF } # Change privileged pickup service into unprivileged. grep "^pickup[ ]*fifo[ ]*n[ ]*n" \ $config_directory/master.cf >/dev/null && { echo Editing $config_directory/master.cf, making the pickup service unprivileged ed $config_directory/master.cf <<EOF || exit 1 /^pickup[ ]*fifo[ ]*n[ ]*n/ s/$n[ ]*$n/\1-/ p w q EOF } # Change private cleanup and flush services into public. for name in cleanup flush do grep "^$name[ ]*unix[ ]*[-y]" \ $config_directory/master.cf >/dev/null && { echo Editing $config_directory/master.cf, making the $name service public ed $config_directory/master.cf <<EOF || exit 1 /^$name[ ]*unix[ ]*[-y]/ s/[-y]/n/ p w q EOF } done # With 10000 active queue files, the active queue directory should # be hashed, and so should the other directories, because they # can contain even more mail. # # Unfortunately, this sucks mailq performance on unloaded systems. # # If you don't want slow mailq, be sure to hash defer and deferred, # because those two directories can contain lots of files. found=`$POSTCONF -c $config_directory -h hash_queue_names` missing= (echo "$found" | grep active >/dev/null) || missing="$missing active" (echo "$found" | grep bounce >/dev/null) || missing="$missing bounce" (echo "$found" | grep defer >/dev/null) || missing="$missing defer" (echo "$found" | grep flush >/dev/null) || missing="$missing flush" (echo "$found" | grep incoming>/dev/null)|| missing="$missing incoming" (echo "$found" | grep deferred>/dev/null)|| missing="$missing deferred" test -n "$missing" && { echo fixing main.cf hash_queue_names for missing $missing $POSTCONF -c $config_directory -e hash_queue_names="$found$missing" || exit 1 } } # A reminder if this is the first time Postfix is being installed. test -n "$first_install_reminder" && { ALIASES=`$POSTCONF -h alias_database | sed 's/^[^:]*://'` NEWALIASES_PATH=`$POSTCONF -h newaliases_path` cat <<EOF | ${FMT} Warning: you still need to edit myorigin/mydestination/mynetworks parameter settings in $config_directory/main.cf. See also http://www.postfix.org/faq.html for information about dialup sites or about sites inside a firewalled network. BTW: Check your $ALIASES file and be sure to set up aliases that send mail for root and postmaster to a real person, then run $NEWALIASES_PATH. EOF } exit 0