We've just upgraded our box from Plesk 10.3.1 to 10.4.4 and we're getting some issues, some with FastCGI which we'll look at later but more serious are problems with Postfix.
ASL seems to be blocking postfix under rule 60026. Users have no access to webmail/horde and outbound emails are not working.
The type of errors we are getting are:
plesk kernel: grsec: From 77.xx.xx.xx: denied untrusted exec of /usr/sbin/postmap by /usr/lib64/plesk-9.0/psa-pc-remote[psa-pc-remote:10371] uid/euid:89/89 gid/egid:89/31, parent /usr/lib64/plesk-9.0/psa-pc-remote[psa-pc-remote:19959] uid/euid:89/89 gid/egid:89/31
plesk kernel: grsec: From 77.xx.xx.xx: denied untrusted exec of /usr/sbin/sendmail.postfix by /bin/bash[sh:14367] uid/euid:502/502 gid/egid:503/503, parent /usr/sbin/httpd[httpd:13960] uid/euid:502/502 gid/egid:503/503
not sure why /bin/bash is calling this but
# ls -al /usr/sbin/sendmail.postfix
-rwxr-xr-x 1 root root 267232 Oct 6 08:37 /usr/sbin/sendmail.postfix
I followed instructions here: https://www.atomicorp.com/wiki/index.ph ... pplication
but they only seem to apply to the first message. Users trying to send emails through the server get an error establishing an Encrypted connection (in outlook).
We're running CentOS 6.x with the latest version of ASL and updated rules.
I've looked through the board and can't really see anyone who's encountered this problem.
Can anyone point me in the right direction??