With 2.7.0-pre11 and SQL or LDAP policy lookups enabled
and SQL logging enabled you may see the following warnings
in the log under certain circumstances:
(!)WARN save_info_final: sql exec: err=, ,
Insecure dependency in parameter 2 of DBI::st=HASH(0x4cd23510)->bind_param
method call while running with -T switch
at (eval 128) line 167, <GEN38> line 159.
The following patch should fix the issue:
--- amavisd~ 2010-12-18 01:35:48.000000000 +0100
+++ amavisd 2010-12-18 20:47:19.000000000 +0100
@@ -11654,5 +11654,5 @@
my($is_local) = lookup2(0,$recip, ca('local_domains_maps'));
$is_local ? $cnt_local++ : $cnt_remote++;
- $r->recip_is_local($is_local);
+ $r->recip_is_local($is_local ? 1 : 0); # canonical boolean, untainted
if (!defined($r->bypass_virus_checks)) {
my($bypassed_v) = lookup2(0,$recip, ca('bypass_virus_checks_maps'));
If you don't see these warnings the patch is not necessary.
Thanks to Christian Roessner for reporting the problem
and helping to troubleshoot it!
An unrelated documentation bug: in file amavisd.conf-default the
default for %sql_clause was not updated by mistake. The correct
default value for %sql_clause can be found in file amavisd.
The 'upd_msg' and 'ins_rcp' entries were changed with -pre11.
Mark
------------------------------------------------------------------------------
Lotusphere 2011
Register now for Lotusphere 2011 and learn how
to connect the dots, take your collaborative environment
to the next level, and enter the era of Social Business.
http://p.sf.net/sfu/lotusphere-d2d
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
Please visit http://www.ijs.si/software/amavisd/ regularly
For administrativa requests please send email to rainer at openantivirus dot
org
