domino can't bind port 25

Latest response

hy community,

i have a problem was not releasable by ibm domino support.
lately i have installed a rhel 7.3 64bit on a hp proliant 8core computer.
on this machine are installed and running a domino server 9.0.1FP7 64bit mail server.
in principle works this domino server fine ( ip and notesprotokoll are running ok - replicate with other main-dominoserver are ok ).
now i have the problem that i can not activate or bind the port 25 and port 80 ( smtp and http ) on
this machine.
• all mailservices (postfix and sendmail ) on rhel are deinstalled (also firewalld).
only local mail service are running:
[root@linlotus ~]# mail
Heirloom Mail version 12.5 7/5/10. Type ? for help.
"/var/spool/mail/root": 2 messages 2 unread

ports normaly free:
[root@linlotus ~]# lsof -i:25
[root@linlotus ~]# lsof -i:80


domino write following error in log:

ERROR: bindsock
2016.12.28 10:43:40 ERROR: bindsock' helper application is missing, not executable, not setuid root, or no sticky bit set
2016.12.28 10:43:40 SMTP Server: Listener failure: 'bindsock' is missing, not executable, not owned by root, not setuid root or user needs net_privaddr privilege.
2016.12.28 10:43:40 Suspending listen task for 20 seconds due to network errors

Unable to bind to port Port = 25 errno = 13 "Permission denied"

dominoserver was installed as root (default) and running as user domino (not root). this ist the prefers install method.
bindsock fileperms on the machine: ( bindsock with acl 4555 and -rwsrwxrwx. 1) not work !

[root@linlotus ~]# find / -name bindsock
/opt/lotus/notes/90010/linux/901FP7/bindsock
/opt/lotus/notes/90010/linux/90010/bindsock
/opt/lotus/notes/90010/linux/bindsock
[root@linlotus ~]# ls -l /opt/lotus/notes/90010/linux/901FP7/bindsock
-rwsrwxrwx. 1 root bin 14832 15. Okt 2013 /opt/lotus/notes/90010/linux/901FP7/bindsock
[root@linlotus ~]# ls -l /opt/lotus/notes/90010/linux/90010/bindsock
-rwsrwxrwx. 1 root bin 14832 15. Okt 2013 /opt/lotus/notes/90010/linux/90010/bindsock
[root@linlotus ~]# ls -l /opt/lotus/notes/90010/linux/bindsock
-rwsrwxrwx. 1 root bin 14832 18. Aug 16:42 /opt/lotus/notes/90010/linux/bindsock

have anyone solved in past this problem ?

thank you very much
willi

Responses

Hi Willibald, What about SeLinux? SeLinux status? Anything inside /var/log /audit/audit.log.

Sorry didn't read the post closely enough. Did you start the domino Server as an unprivileged user domino? This cannot be successful since ports below 1024 are so called privilleged ports which can only be bind by a process executed with higher privileges. e.g. started by root

Hi Steven!

Thx for your answer. i found the mistake. Domino was installed in a extra Partition - /opt/Lotus and (not / Filesystem). in the /etc/fstab was mounted the /opt/Lotus with ( /dev/sdb2 on /opt/lotus type xfs (rw,nosuid,nodev,relatime,attr2,inode64,noquota)

nosuid !!!!!

the System also ignored the suid bit !

Solution: vi /etc/fstab and remove the nosuid flag !

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.