The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Adding zone changed ownership of /etc/userdomains

Discussion in 'Bind / DNS / Nameserver Issues' started by jndawson, Apr 27, 2016.

  1. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    103
    Likes Received:
    4
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    We added a stand-alone zone, that is, a zone not attached to any account. Apparently, the action changed the ownership of /etc/userdomains from root:mail to root:root. Mode was not changed.

    We only discovered it because customers suddenly started complaining about bounces:

    Code:
    The message could not be sent. The setting for your outgoing email [SMTP] server might need to be configured. To find the server settings for 'user@fakedomain.tld', please contact your email service provider.
    Subject 'Re: Subject'
    Server Error: 451
    Server Response: 451 Temporary local problem - please try later
    Server: 'cp1.anotherfakedomain.tld'
    Windows Live Mail Error ID: 0x800CCC79
    Protocol: SMTP
    Port: 465
    Secure(SSL): Yes
    Looking in the logs:

    Code:
    2016-04-27 14:26:25 H=111.222.333.444.static.fakedomain.tld (ICRPC) [111.222.333.444]:33889 X=TLSv1:DES-CBC3-SHA:168 CV=no F=<user@customer.tld>
    A=dovecot_login:user@customer.tld temporarily rejected RCPT <recipient@otherfakename.tld>: failed to expand ACL string "${if eq{${lookup
    {$sender_address_domain}lsearch*{/etc/userdomains}{$value}}}{$sender_address_local_part}{1}{0}}": failed to open /etc/userdomains for linear
    search: Permission denied (euid=47 egid=12)
    Changing ownership back to root:mail fixed it.

    1. Is that a known issue?
    2. Is there a way to prevent that?
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    648
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    Internal case CPANEL-5899 is open to address this issue. I will update this thread with more information on the status of this case as it becomes available. In the meantime, you can run "/scripts/updateuserdomains" after adding the zone to correct the ownership values on /etc/userdomains.

    Thank you.
     
  3. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    103
    Likes Received:
    4
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Thanks.
     
  4. tiagorf

    tiagorf Registered
    PartnerNOC

    Joined:
    Sep 14, 2006
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    We are having the same problem on multiple servers since the upgrade to WHM 11.56.0.9
    This is creating alot of issues, as our clients stop receiving and sending emails while we don't correct the ownership.

    Is there a script like postcpbackup for a zone creation? This could help create a temporary fix.
     
  5. DWHS.net

    DWHS.net Well-Known Member
    PartnerNOC

    Joined:
    Jul 28, 2002
    Messages:
    1,569
    Likes Received:
    6
    Trophy Points:
    38
    Location:
    LA, Costa RIca
    cPanel Access Level:
    Root Administrator
    I just got this today as well. Is there a way to prevent this from happening in the future yet? We add a lot of stand alone zones for servers with no local DNS.

    It just started after the last CPanel WHM 56.0 (build 9) update this morning.
     
    #5 DWHS.net, May 3, 2016
    Last edited by a moderator: May 4, 2016
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    648
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello,

    The resolution to this issue is included in version 56.0.13:

    Fixed case CPANEL-5899: Cpanel::FileUtils::Modify does not preserve group ownership.


    You can update to the new version via "/scripts/upcp" over the command line, or through Web Host Manager (WHM Home >> cPanel >> Upgrade to Latest Version).

    Thank you.
     
  7. jandafields

    jandafields Well-Known Member

    Joined:
    May 6, 2004
    Messages:
    426
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    USA
    cPanel Access Level:
    Root Administrator
    I had the same problem today on a test server, on Edge.
    (installed on May-29-2016 and then immediately updated to Edge)
    Version 57.9999 (build 62)

    Running /scripts/updateuserdomains fixed it.
     
    gfserver likes this.
  8. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    648
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Could you verify the specific steps you are taking to reproduce the issue? I've been unable to reproduce this on cPanel 57.9999.69 after manually creating a DNS zone via Web Host Manager and through WHM API 2.

    Thank you.
     
  9. jandafields

    jandafields Well-Known Member

    Joined:
    May 6, 2004
    Messages:
    426
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    USA
    cPanel Access Level:
    Root Administrator
    I did try to reproduce it, but was unable to do so after I ran updateuserdomains.

    Basically, I installed, updated, created an account, changed and added several DNS entries, and then after that I noticed there was that problem. I found this thread, ran the updateuserdomains commaned, and it was fixed then. I then tried to reproduce it, but I could not. It must be some combination of things. I was running NSD, not BIND, I don't know if that had anything to do with it or not.
     
  10. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    648
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    When referring to this problem, are you referencing the permissions on the /etc/userdomains file, or do you mean you noticed the "Server Response: 451 Temporary local problem - please try later" message during email activity? I've tried several methods of reproducing this issue with both Bind and NSD, but have been unable to do so. It's possible this was a temporary issue unrelated to the previously reported issue in this thread.

    Thank you.
     
Loading...

Share This Page