> This option has nothing to do with the user that spamass-milter is > running as; it only affects the default user spamass-milter passes to > spamc when it can't figure out what user to use.
Yes you are right. /etc/init.d/spamass-milter should be changed: -RUNAS="nobody" +RUNAS="spamass" OPTIONS="-u spamass -i 127.0.0.1 -x" just helps to collect spam which cannot be got by any user if home directory for 'spamass' is defined, e.g. $ cat /etc/passwd|grep spamass spamass:x:125:136:Spamassasin milter,,,:/var/lib/spamassassin/:/bin/false $ sudo ls -al /var/lib/spamassassin/.spamassassin/ итого 48 drwx------ 2 spamass spamass 80 2007-02-14 07:19 . drwxr-xr-x 3 spamass spamass 80 2007-02-14 07:19 .. -rw------- 1 spamass spamass 49152 2007-02-14 07:19 auto-whitelist > It should run as its own user, but it definetly should not be gid > smmsp. If sendmail is unable to chdir to /var/spool/mqueue, then it > means that for some reason you've removed the setgid on > /usr/lib/sendmail. setgid on its place: $ ls -ld /usr/lib/sendmail /etc/alternatives/lib.sendmail /usr/lib/sm.bin/sendmail lrwxrwxrwx 1 root root 24 2006-12-13 07:37 /etc/alternatives/lib.sendmail -> /usr/lib/sm.bin/sendmail lrwxrwxrwx 1 root root 30 2006-12-13 07:37 /usr/lib/sendmail -> /etc/alternatives/lib.sendmail -rwxr-sr-x 1 root smmsp 703292 2006-12-09 10:23 /usr/lib/sm.bin/sendmail $ ls -dl /var/spool/mqueue drwxr-s--- 2 smmta smmsp 48 2007-02-17 20:02 /var/spool/mqueue $ /usr/lib/sm.bin/sendmail -bv Notice: -bv may give misleading output for non-privileged user can not chdir(/var/spool/mqueue/): Permission denied Program mode requires special privileges, e.g., root or TrustedUser. -- Sincerely yours/С уважением, Damir Islamov/Дамир Исламов
