https://bz.apache.org/SpamAssassin/show_bug.cgi?id=8031
--- Comment #12 from Giovanni Bechis <giova...@paclan.it> --- (In reply to Sidney Markowitz from comment #11) > I think I figured it out. It's the code in SATest.pm that has this comment: > > # If PERL5LIB is empty copy @INC instead because on some platforms like > FreeBSD MakeMaker clears PER5LIB and sets @INC > # Filter out relative paths, and canonicalize so no symlinks or /../ will > be left in untainted result as a nod to security > > I bet that somehow you can access directories as relative pathnames but not > when they are canonicalized absolute pathnames. > > I see in the error message in the first comment that you were building in > /root/rpmbuild/BUILD/Mail-SpamAssassin-4.0.0 > > On the VM I installed Cpanel on, it ended up with /root having dr-xr-x--- > permissions. How were you able to cd into the directory with those > permissions? > > It looks like I should not make the paths canonicalized and absolute there, > just leave them relative. The less change made to them the less chance of > unforseen problems, anyway. As an unprivileged user, regression test works, as root fails. I think the issue is that when spamd(8) starts as root and changes its user to "nobody", it cannot access the directory it started in and fails. -- You are receiving this mail because: You are the assignee for the bug.
