Spamassassin emails have wrong perms
by Justin Willmert
I am hoping somebody can help me solve a problem I am having with
procmail and spamassassin (specifically spamd). When spamassassin has
marked a message as spam, it gets sorted to a Junk folder, but the
problem is that it is owned by root:mail when it should be owned by the
user. When this happens, dovecot will not serve the email to the user. I
sort other emails into folders with simple matching rules and those work
fine. Spamassassin is the only rule that is piped out to a program.
Here is the relevant portion my procmailrc file:
DROPPRIV=yes # Make this run as a normal user. If
you need
# root privileges for something, do
it before
# this line.
# Send mail through spamassassin
:0fw
| spamc -u $LOGNAME
# Now that we've tagged the spam, put in the appropriate folder
:0
* ^X-Spam-Status: Yes
.Junk/
I've tried taking the -u $LOGNAME portion out too and that doesn't work.
Following is a maillog sample.
Jan 29 17:47:11 netserv sendmail[19847]: k0TNlAig019847: Milter add:
header: X-Virus-Scanned: ClamAV 0.88/1257/Sun Jan 29 09:15:47 2006
on mydomain.com
Jan 29 17:47:11 netserv sendmail[19847]: k0TNlAig019847: Milter add:
header: X-Virus-Status: Clean
Jan 29 17:47:11 netserv spamd[19654]: connection from mydomain.com
[127.0.0.1] at port 57905
Jan 29 17:47:11 netserv spamd[19654]: handle_user: unable to find
user 'justin'!
Jan 29 17:47:11 netserv spamd[19654]: Still running as root: user
not specified with -u, not found, or set to root. Fall back to nobody.
Jan 29 17:47:11 netserv spamd[19654]: processing message
<BAY107-F2792E57045186E9EED3A038A160(a)phx.gbl> for justin:99.
Jan 29 17:47:11 netserv spamd[19654]: cannot write to
/etc/mail/bayes/bayes_journal, Bayes db update ignored: Permission
denied
Jan 29 17:47:13 netserv spamd[19654]: clean message (1.7/5.0) for
justin:99 in 1.5 seconds, 1076 bytes.
Jan 29 17:47:13 netserv spamd[19654]: result: . 1 -
BAYES_50,DNS_FROM_RFC_POST,MSGID_FROM_MTA_HEADER
scantime=1.5,size=1076,mid=<BAY107-F2792E57045186E9EED3A038A160(a)phx.gbl>,bayes=0.499999999735837,autolearn=no
Jan 29 17:47:13 netserv sendmail[19849]: k0TNlAig019847:
to=<justin(a)mydomain.com>, delay=00:00:02, xdelay=00:00:02,
mailer=local, pri=30995, dsn=2.0.0, stat=Sent
As you can see, I've also got a problem with not being able to access
the bayes_journal. I've put it in it's own directory and made them owned
by nobody:staff and still nothing. Anyway, here is my local.cf file:
# These values can be overridden by editing
~/.spamassassin/user_prefs.cf
# (see spamassassin(1) for details)
# How many hits before a message is considered spam. The lower the
number, the
# more sensitive it is.
required_hits 5
# Encapsulate spam in an attachment (0=No, 1=Yes in message/rfc822,
# 2=Yes in text/plain)
report_safe 0
# Text to prepend to subject of spam
rewrite_header Subject [SPAM]
# Enable the Bayes System
use_bayes 1
# Enable Bayes auto-learning
bayes_auto_learn 1
# Mail using languages used in these country codes will not be
marked as being
# possibly spam in a foreign language.
ok_languages en
I'd be happy to send along any other information you need. Thanks for
help in advance.
Justin Willmert
18 years, 4 months
Re: Spamassassin emails have wrong perms -- CC'ed to selinux list
by Justin Willmert
Ivan Gyurdiev wrote:
>
>> I'm cc-ing this to the fedora-selinux-list. I think some of the
>> problems may be applicable there.
>>
>> OK, after some more testing, when I disable SELinux, many of the
>> errors go away. First of all, I get rid of the error message saying
>> user can not be found and with it the 'still running as root' error.
>> Second, it is able to access the bayes_journal file (as long as
>> normal unix permissions are right, which I've figured out). So I
>> guess the problem is an SELinux issue which I can't solve. I'd attach
>> some avc error messages, but I can't seem to find any. I've looked in
>> maillog, secure, and messages, but nothing.
> Have you looked in the audit log, where all such messages are usually
> found ?
> /var/log/audit.log
>
Below is what showed up in audit/audit.log when I sent a message through
spamassassin. I'm _*really*_ rusty on SELinux...it's the one thing I
have to deal with quite often that I haven't been able to learn how to
use...it's so foreign to me. I've never looked in audit.log before: the
avc messages used to show up in messages, but now as far back as my logs
go, I don't have a single avc message. This all looks like jibberish to
me, so I need your guy's help.
Thanks,
Justin
type=AVC msg=audit(1138596151.681:104174): avc: denied {
name_connect } for pid=23796 comm="spamd" dest=389
scontext=root:system_r:spamd_t
tcontext=system_u:object_r:ldap_port_t tclass=tcp_socket
type=SYSCALL msg=audit(1138596151.681:104174): arch=40000003
syscall=102 success=no exit=-13 a0=3 a1=bfb2dc20 a2=1229cb8 a3=7
items=0 pid=23796 auid=600 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 comm="spamd" exe="/usr/bin/perl"
type=SOCKADDR msg=audit(1138596151.681:104174):
saddr=02000185C0A801940000000000000000
type=SOCKETCALL msg=audit(1138596151.681:104174): nargs=3 a0=7
a1=9b1fe80 a2=10
type=AVC msg=audit(1138596153.220:104175): avc: denied {
name_connect } for pid=23796 comm="spamd" dest=389
scontext=root:system_r:spamd_t
tcontext=system_u:object_r:ldap_port_t tclass=tcp_socket
type=SYSCALL msg=audit(1138596153.220:104175): arch=40000003
syscall=102 success=no exit=-13 a0=3 a1=bfb2dc20 a2=1229cb8 a3=7
items=0 pid=23796 auid=600 uid=0 gid=0 euid=99 suid=0 fsuid=99
egid=99 sgid=0 fsgid=99 comm="spamd" exe="/usr/bin/perl"
type=SOCKADDR msg=audit(1138596153.220:104175):
saddr=02000185C0A801940000000000000000
type=SOCKETCALL msg=audit(1138596153.220:104175): nargs=3 a0=7
a1=9b6a6f0 a2=10
type=AVC msg=audit(1138596160.388:104176): avc: denied {
name_connect } for pid=23797 comm="spamd" dest=389
scontext=root:system_r:spamd_t
tcontext=system_u:object_r:ldap_port_t tclass=tcp_socket
type=SYSCALL msg=audit(1138596160.388:104176): arch=40000003
syscall=102 success=no exit=-13 a0=3 a1=bfb2dc20 a2=1229cb8 a3=7
items=0 pid=23797 auid=600 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 comm="spamd" exe="/usr/bin/perl"
type=SOCKADDR msg=audit(1138596160.388:104176):
saddr=02000185C0A801940000000000000000
type=SOCKETCALL msg=audit(1138596160.388:104176): nargs=3 a0=7
a1=9b20050 a2=10
type=AVC msg=audit(1138596164.032:104177): avc: denied {
name_connect } for pid=23797 comm="spamd" dest=389
scontext=root:system_r:spamd_t
tcontext=system_u:object_r:ldap_port_t tclass=tcp_socket
type=SYSCALL msg=audit(1138596164.032:104177): arch=40000003
syscall=102 success=no exit=-13 a0=3 a1=bfb2dc20 a2=1229cb8 a3=7
items=0 pid=23797 auid=600 uid=0 gid=0 euid=99 suid=0 fsuid=99
egid=99 sgid=0 fsgid=99 comm="spamd" exe="/usr/bin/perl"
type=SOCKADDR msg=audit(1138596164.032:104177):
saddr=02000185C0A801940000000000000000
type=SOCKETCALL msg=audit(1138596164.032:104177): nargs=3 a0=7
a1=9b84af0 a2=10
18 years, 4 months
hylafax supported formats
by azeem ahmad
hi list
in the man pages of hylafax it says that
HylaFAX accepts POSTSCRIPT, PDF, PCL, and TIFF documents for transmission
but what if i want to send a document which is in JPEG format or DOC format.
Regards
Azeem
18 years, 4 months
format convertor
by azeem ahmad
hi list
i want a program that can convert file types
like
doc > pdf
tiff > pdf
pdf > jpeg
gif > tiff
etc etc
is there any utility available
Regards
Azeem
18 years, 4 months
OT: Document Management
by Paul Lemmons
I am about Googled-out looking for a good GPL document management
solution that runs under Linux. I have come to the conclusion that I am
either searching for the wrong things or such a beast does not exist. I
am hoping that you all can give guidance.
Here is what I am trying to do: I would like a simple, web based means
to store, retrieve, update and search documents. The back end needs to
run under Linux. The immediate goal is to be able to organize system
documentation. I want to be able to upload office type documents and
possibly images. It would be really cool if it did versioning but that
is a bell. I am not looking for an authoring system such as a wiki.
The best I have found so far is a XOOPS plug-in. It is kind of a gorilla
and banana problem, though. All I really want is the banana but the
gorilla comes with it. I also looked at eDMS but it has a lot of
dependencies and I was not able to get it to work reliably. Though not a
show-stopper, the interface for both products are a bit
counter-intuitive as well.
Has anybody had any positive experiences solving this problem?
18 years, 4 months
can't install vlc via yum
by James Pifer
I did a yum update last night (on FC4) but it was failing some
dependencies for vlc. So I yum removed vlc and after manually installing
libquicktime-devel, was then able to do the update. But now I can't
reinstall vlc. I get the error below. Is there any way to resolve this?
How come it does not find these dependencies?
Thanks,
James
--> Populating transaction set with selected packages. Please wait.
---> Package vlc.i386 0:0.8.4-0.lvn.3.a.4 set to be updated
--> Running transaction check
--> Processing Dependency: libwx_gtk2-2.4.so.0 for package: vlc
--> Processing Dependency: libpostproc.so.51.0.0 for package: vlc
--> Processing Dependency: libavformat.so.50 for package: vlc
--> Processing Dependency: libwx_gtk2-2.4.so.0(WXGTK2_2.4) for package:
vlc
--> Processing Dependency: libavcodec.so.51 for package: vlc
--> Processing Dependency: libavutil.so.49 for package: vlc
--> Finished Dependency Resolution
Error: Missing Dependency: libwx_gtk2-2.4.so.0 is needed by package vlc
Error: Missing Dependency: libpostproc.so.51.0.0 is needed by package
vlc
Error: Missing Dependency: libavformat.so.50 is needed by package vlc
Error: Missing Dependency: libwx_gtk2-2.4.so.0(WXGTK2_2.4) is needed by
package vlc
Error: Missing Dependency: libavcodec.so.51 is needed by package vlc
Error: Missing Dependency: libavutil.so.49 is needed by package vlc
18 years, 4 months
/boot/grub/stage1 not read correctly
by arora.himanshu@gmail.com
Hi,
I'm getting problems with the re-installation of grub.
I did:
chroot /mnt/sysimage
/sbin/grub-install /dev/hda
It is saying that the file /boot/grub/stage1 not read correctly.
Any solution.
Himanshu Arora
18 years, 4 months
Fedora and netware
by Michael Cortes
I have been using RH7-9 and FC2, as well as CentOS 4. On all of those, other
than CentOS, I have used ipx_interface and ncpmount to mount novell netware
volumes as drives on my linux boxes.
CentOS did not have those as an option and I am trying to find out if FC is
eliminating it also. I have dl'ed FC3 and FC4 for a new laptop I am getting,
as well as updating my other boxes. But if Fedora is eliminating this
option, how can I mount and/or access my netware volumes?
Can anyone assist me with this?
Thanks you
--
Michael Cortes
Fort LeBoeuf School District
18 years, 4 months
OT: Email signing
by Arthur Pemberton
Hey guys, this is somewhat offtopic, but I can't think of a better place to
ask . . .
Could someone briefly fill me in on the if, why and how of email signing (I
do not mean signatures). I am sure I can google the how, but I would like
opions and experiences.
Thank you.
--
As a boy I jumped through Windows, as a man I play with Penguins.
18 years, 4 months