On Fri, Aug 24, 2007 at 03:19:16PM +0200, Mark Martinec wrote:
> Rob,
>
> > I have amavisd-new 2.5.1, installed as part of the 2007Q2 pkgsrc
> > distribution (on RHEL4). When I try to enable altermime, amavisd-new
> > complains that:
> >
> > Aug 24 11:01:17 smtphostem02 amavis[24932]: (24863-01) (!)run_command:
> > child process [24932]: Insecure dependency in exec while running with -T
> > switch at /usr/pkg/sbin/amavisd line 2591
>
> > So what's tainted?
>
> Is the directory in which altermime resides world-writable?
>
> Mark
Nope. Here are the relevant file and directory permissions:
[EMAIL PROTECTED] ~]# ls -ld /usr /usr/pkg/ /usr/pkg/bin/ /usr/pkg/sbin/
/usr/pkg/sbin/amavisd /usr/pkg/bin/altermime /usr/pkg/etc/
/usr/pkg/etc/disclaimers/
drwxr-xr-x 18 root root 4096 Aug 1 16:26 /usr
drwxr-xr-x 10 root root 4096 Jul 13 11:19 /usr/pkg/
drwxr-xr-x 2 root root 4096 Jul 31 10:02 /usr/pkg/bin/
-r-xr-xr-x 1 root root 252118 Jul 31 10:02 /usr/pkg/bin/altermime
drwxr-sr-x 9 root sysadmin 4096 Aug 24 16:27 /usr/pkg/etc/
drwxr-sr-x 2 root sysadmin 4096 Aug 21 12:43 /usr/pkg/etc/disclaimers/
drwxr-xr-x 2 root root 4096 Aug 26 10:00 /usr/pkg/sbin/
-r-xr-xr-x 1 root root 907464 Aug 26 10:00 /usr/pkg/sbin/amavisd
>From a bit of further testing, it looks like the tainting culprit is
@disclaimer_options_bysender_maps =
(read_hash("/usr/pkg/etc/disclaimers/disclaimers_by_sender"));
The permissions of /usr/pkg/etc/disclaimers/disclaimers_by_sender are OK:
-rw-r--r-- 1 root sysadmin 105 Aug 21 12:43 disclaimers_by_sender
Specifying disclaimer_options_bysender_maps directly in amavisd.conf gets
disclaimers added correctly. I can go with this for now; is there any
chance it might be looked at in a future release?
Thanks
rob
National Australia Bank Ltd - ABN 12 004 044 937
This email may contain confidential information. If you are not the intended
recipient, please immediately notify us at [EMAIL PROTECTED] or by replying to
the sender, and then destroy all copies of this email. Except where this email
indicates otherwise, views expressed in this email are those of the sender and
not of National Australia Bank Ltd. Advice in this email does not take account
of your objectives, financial situation, or needs. It is important for you to
consider these matters and, if the e-mail refers to a product(s), you should
read the relevant Product Disclosure Statement(s)/other disclosure document(s)
before making any decisions. If you do not want email marketing from us in
future, forward this email with "unsubscribe" in the subject line to [EMAIL
PROTECTED] in order to stop marketing emails from this sender. National
Australia Bank Ltd does not represent that this email is free of errors,
viruses or interference.
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
