If sending a packet is generating "permission denied", my first guess would be
that SELinux (or something similar) is blocking spamdyke from doing anything on
the network. Can you try disabling SELinux and see if this error goes away?
-- Sam Clippinger
On Jan 24, 2014, at 12:56 PM, Paul Matthias Diderichsen
<paul.matth...@diderichsen.dk> wrote:
> After upgrading from Fedora 18 to Fedora 19, spamdyke
> (4.3.1+TLS+CONFIGTEST+DEBUG) does not seem able to do RDNS lookups any
> more. I have not have much luck finding any previous reports on this
> error. The error is pretty much the first thing that happens when
> spamdyke is called - increasing the log level does not (appear to)
> produce more useful information.
>
> The issue seems to be related to a call to sendto(udp_socket,
> question...) in dns.c, but I cannot figure out where the permission
> denied comes from... Anybody has an idea how to debug this?
>
> /var/log/maillog:
>
> Jan 24 19:38:56 tiger spamdyke[15519]: ERROR: unable to send data
> packet, tried to send 45 bytes: Permission denied
> Jan 24 19:38:56 tiger spamdyke[15519]: ERROR: unable to send data
> packet, tried to send 55 bytes: Permission denied
> Jan 24 19:39:01 tiger spamdyke[15519]: ALLOWED from: x...@gmail.com to:
> y...@zzz.dk origin_ip: 209.85.215.182
>
>
> $ dig -x 209.85.215.182
>
> ; <<>> DiG 9.9.3-rl.13207.22-P2-RedHat-9.9.3-14.P2.fc19 <<>> -x
> 209.85.215.182
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57481
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
>
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 4096
> ;; QUESTION SECTION:
> ;182.215.85.209.in-addr.arpa. IN PTR
>
> ;; ANSWER SECTION:
> 182.215.85.209.in-addr.arpa. 79846 IN PTR mail-ea0-f182.google.com.
>
> ;; Query time: 11 msec
> ;; SERVER: 208.67.222.222#53(208.67.222.222)
> ;; WHEN: Fri Jan 24 19:51:34 CET 2014
> ;; MSG SIZE rcvd: 94
>
>
> $ cat /etc/resolv.conf
> ; generated by /sbin/dhclient-script
> nameserver 208.67.222.222
> nameserver 208.67.220.220
>
>
> I have these uncommented lines in spamdyke.conf:
>
> dns-blacklist-entry=bogons.cymru.com
> dns-blacklist-entry=dul.dnsbl.sorbs.net
> dns-blacklist-entry=zombie.dnsbl.sorbs.net
> graylist-dir=/var/qmail/control/spamdyke/graylist
> graylist-level=always-create-dir
> graylist-max-secs=1814400
> graylist-min-secs=300
> greeting-delay-secs=5
> idle-timeout-secs=300
> ip-whitelist-entry=127.0.0.1
> local-domains-file=/var/qmail/control/rcpthosts
> log-level=info
> reject-ip-in-cc-rdns
> reject-unresolvable-rdns
> sender-blacklist-entry=_none@_none
>
> I have disabled these; otherwise everything is rejected:
>
> #reject-empty-rdns
> #reject-missing-sender-mx
>
>
> /etc/xinetd.d/qmail-smtpd:
>
> # default: on
> # description: The qmail smtp daemon
> #
> service smtp
> {
> flags = NAMEINARGS IPv4
> socket_type = stream
> protocol = tcp
> wait = no
> user = qmaild
> id = smtp
> server = /usr/sbin/tcpd
> server_args = /var/qmail/bin/tcp-env -R -t5 spamdyke -f
> /etc/spamdyke.conf /var/qmail/bin/qmail-smtpd
> # server_args = /var/qmail/bin/tcp-env -R -t5
> /var/qmail/bin/qmail-smtpd
> log_on_success += DURATION
> log_on_failure += USERID
> }
>
>
> Output from spamdyke --config-test /var/qmail/bin/qmail-smtpd :
>
> SUCCESS: Tests complete. No errors detected.
>
>
> Any input is much appreciated!
> --
> Paul Matthias Diderichsen
> mobile: +31 652 466 414
> _______________________________________________
> spamdyke-users mailing list
> spamdyke-users@spamdyke.org
> http://www.spamdyke.org/mailman/listinfo/spamdyke-users
_______________________________________________
spamdyke-users mailing list
spamdyke-users@spamdyke.org
http://www.spamdyke.org/mailman/listinfo/spamdyke-users
