[Baruwa] mailscanner rpm issues

[Nerijus Baliunas]

Hello,

mailscanner-4.84.3-2.el6.noarch from baruwa repo, CentOS 6.2.

If using with postfix, it does not start, probably because rh_status() does not have
postfix section? Running "bash -x /etc/rc.d/init.d/mailscanner start" ends with:

+ lockfile=/var/lock/subsys/mailscanner
+ case "$1" in
+ rh_status_q
+ rh_status
+ exit 0

It starts if I apply the following patch to /etc/rc.d/init.d/mailscanner:

--- mailscanner.orig 2012-01-31 04:36:04.000000000 +0200
+++ mailscanner 2012-02-07 20:55:35.000000000 +0200
@@ -324,7 +324,7 @@
startoutmta
;;
start)
- rh_status_q && exit 0
+# rh_status_q && exit 0
$1
;;
stop)

Another issue - # rpm -V mailscanner
S.5....T. c /etc/MailScanner/MailScanner.conf
S.5....T. c /etc/MailScanner/filename.rules.conf
S.5....T. c /etc/MailScanner/rules/spam.whitelist.rules
S.5....T. c /etc/MailScanner/spam.assassin.prefs.conf
..5....T. /etc/cron.daily/clean.quarantine
S.5....T. /etc/rc.d/init.d/mailscanner
S.5....T. /usr/sbin/MailScanner
.....UG.. /var/spool/MailScanner/incoming
.....UG.. /var/spool/MailScanner/quarantine

Shouldn't /etc/cron.daily/clean.quarantine be marked as config file?

When I update mailscanner, will owner/group of /var/spool/MailScanner/incoming
and quarantine be reset?
# ls -ld /var/spool/MailScanner/incoming /var/spool/MailScanner/quarantine
drwxr-xr-x 7 postfix clamav 4096 2012-02-07 20:57 /var/spool/MailScanner/incoming
drwxr-xr-x 11 postfix postfix 4096 2012-02-07 00:51 /var/spool/MailScanner/quarantine

The last question - mailscanner rpm from baruwa repo works OK without the need
of -U in /usr/sbin/MailScanner, but only until it finds a virus (I am using clamd). Then
it fails to deliver until I add -U (taint issues).

Regards,
Nerijus
_______________________________________________
Keep Baruwa FREE - http://pledgie.com/campaigns/12056

[Andrew Colin Kissa]

On 07 Feb 2012, at 9:06 PM, Nerijus Baliunas wrote:

> The last question - mailscanner rpm from baruwa repo works OK without the need
> of -U in /usr/sbin/MailScanner, but only until it finds a virus (I am using clamd). Then
> it fails to deliver until I add -U (taint issues).

What MTA are you running ? Please run debug when this happens and give me the
taint message you get and i will fix it.

--
www.baruwa.org

[Nerijus Baliunas]

On Thu, 16 Feb 2012 06:30:37 +0200 Andrew Colin Kissa <and...@topdog.za.net> wrote:

> > The last question - mailscanner rpm from baruwa repo works OK without the need
> > of -U in /usr/sbin/MailScanner, but only until it finds a virus (I am using clamd). Then
> > it fails to deliver until I add -U (taint issues).
>
> What MTA are you running ? Please run debug when this happens and give me the
> taint message you get and i will fix it.

I use postfix. I got taint issue when mailscanner was trying to quarantine spam message.

/var/log/maillog:
Mar 14 02:59:07 server MailScanner[1179]: Spam Checks: Found 1 spam messages
Mar 14 02:59:07 server MailScanner[1179]: Spam Actions: message 531683FF53.A731A actions are store

mailscanner running with debug enabled:
02:59:06 Have a batch of 1 message.
02:59:07 Insecure dependency in open while running with -T switch at /usr/lib/perl5/IO/File.pm line 185.
Failed.

perl-5.10.1-119.el6_1.1.i686 (CentOS 6.2).

Regards,
Nerijus

[Nerijus Baliunas]

On Tue, 7 Feb 2012 21:06:42 +0200 Nerijus Baliunas <ner...@users.sourceforge.net> wrote:

> mailscanner-4.84.3-2.el6.noarch from baruwa repo, CentOS 6.2.

Now upgraded to 4.84.5.

> Another issue - # rpm -V mailscanner

> ..5....T. /etc/cron.daily/clean.quarantine
...

> .....UG.. /var/spool/MailScanner/incoming
> .....UG.. /var/spool/MailScanner/quarantine
>
> Shouldn't /etc/cron.daily/clean.quarantine be marked as config file?

This is still not fixed (or it shouldn't be?).

> When I update mailscanner, will owner/group of /var/spool/MailScanner/incoming
> and quarantine be reset?
> # ls -ld /var/spool/MailScanner/incoming /var/spool/MailScanner/quarantine
> drwxr-xr-x 7 postfix clamav 4096 2012-02-07 20:57 /var/spool/MailScanner/incoming
> drwxr-xr-x 11 postfix postfix 4096 2012-02-07 00:51 /var/spool/MailScanner/quarantine

Owner of /var/spool/MailScanner/incoming was left intact, but owner of
/var/spool/MailScanner/quarantine was reset to root:root and messages could not
be saved to quarantine. Could this be fixed?

> The last question - mailscanner rpm from baruwa repo works OK without the need
> of -U in /usr/sbin/MailScanner, but only until it finds a virus (I am using clamd). Then
> it fails to deliver until I add -U (taint issues).

Seems to work so far. Could have been false alert.

[Andrew Colin Kissa]

On 14 Mar 2012, at 3:07 AM, Nerijus Baliunas wrote:

> mailscanner running with debug enabled:
> 02:59:06 Have a batch of 1 message.
> 02:59:07 Insecure dependency in open while running with -T switch at /usr/lib/perl5/IO/File.pm line 185.
> Failed.

This should be fixed in the latest rpm, i have submitted the patches to upstream as well - https://github.com/julesfm/MailScanner/pull/1

--
www.baruwa.org

[Nerijus Baliunas]

On Wed, 14 Mar 2012 13:23:54 +0200 Andrew Colin Kissa <and...@topdog.za.net> wrote:

> > 02:59:07 Insecure dependency in open while running with -T switch at /usr/lib/perl5/IO/File.pm line 185.
> > Failed.
>
> This should be fixed in the latest rpm, i have submitted the patches to upstream as well - https://github.com/julesfm/MailScanner/pull/1

Is rpm released? yum update does not find it.

Regards,
Nerijus

[Andrew Colin Kissa]

On 15 Mar 2012, at 3:15 AM, Nerijus Baliunas wrote:

>
> Is rpm released? yum update does not find it.

Yes for EL-6 http://repo.baruwa.org/el6/x86_64/repoview/mailscanner.html the EL-5 one was pulled due to a signature issue.

--
www.baruwa.org