Re: [AMaViS-user] Enabling DCC with spamass //

[bsd]

I have seen that user "dcc" has a default of /nonexistent:/sbin/nologin
I have switched to user vscan which has the default of :

vscan:*:1002:1002::0:0:Scanning Virus Account:/var/amavis:/bin/sh


vscan is my default user for various mail treatement (clamd amavisd &  
dccifd) :

vscan    19831  0.0  1.4 16480 14472  ??  Ss    4Feb06   7:34.28 /usr/ 
local/sbin/clamd
vscan    50657  0.0  0.1  2020  1404  ??  Is    7:29PM   0:00.00 /usr/ 
local/dcc/libexec/dccifd -tCMN,5, -llog -wwhiteclnt -Uuserdirs -SHELO  
-Smail_host -SSender -SList-ID
vscan    50658  0.0  0.8  8852  7868  ??  S     7:29PM   0:00.04 /usr/ 
local/dcc/libexec/dccifd -tCMN,5, -llog -wwhiteclnt -Uuserdirs -SHELO  
-Smail_host -SSender -SList-ID
vscan    50695  0.0  3.8 41652 39424  ??  Ss    7:30PM   0:00.55  
amavisd (master) (perl5.8.7)
vscan    50696  0.0  3.9 42392 40084  ??  S     7:30PM   0:00.20  
amavisd (ch1-avail) (perl5.8.7)
vscan    50697  0.0  4.2 46712 43844  ??  S     7:30PM   0:00.69  
amavisd (ch1-avail) (perl5.8.7)
vscan    50698  0.0  3.8 42016 39740  ??  S     7:30PM   0:00.23  
amavisd (ch1-avail) (perl5.8.7)
vscan    50699  0.0  3.8 42116 39808  ??  S     7:30PM   0:00.20  
amavisd (ch1-avail) (perl5.8.7)



Could this open a potential threat ?



Le 13 févr. 06 à 19:07, Gary V a écrit :

Mark wrote:

One you get this working, amavisd-new would most likely
work with dcc too. I only have experience with dccproc
and never tried to run a local dcc server.

  Mark

dccifd and dccm are clients. Servers are disabled by default.
Actually, if you install from source, both are disabled unless you
configure dcc to use them.

If you have only been using dccproc, you could gain a performance
advantage by enabling dccifd (spamassassin will use it instead of
dccproc if it is running). It is necessary to configure dcc_home so
spamassassin can find the socket. The init script for dcc should read
its configuration from dcc_conf. So, to get dccifd running, you
would set DCCIFD_ENABLE=on and reload the init script. An init script
'rcDCC' is supplied with the source if needed.

Personally, I install from source, and configure it with:
./configure --with-uid=amavis
I also make sure my amavisd-new user owns the dcc files:
chown -R amavis:amavis /var/dcc

And as I said earlier, you have to keep the log files under control,
and of course you have to make sure spamassassin can find and
r/w the socket.

Gary V




________________________________________________
«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Gregober ---> PGP ID --> 0x1BA3C2FD
bsd @at@ todoo.biz
________________________________________________
«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯





-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642
_______________________________________________
AMaViS-user mailing list
AMaViS-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/