Below: On 8/24/05, Matt Kettler <[EMAIL PROTECTED]> wrote: > Ilan Aisic wrote: > > Matt, > > I've modified the permissions on my auto-whitelist file and directory > > to 777 > > I didn't say modify the permissions of the file or directory. I said to modify > your configuration file option in your local.cf to be 0777. The file should be > set to 666 anyway (which is what SA will do if the option is 777, RTFM that I > quoted again, closely this time)
That's what I did. I just wasnt' phrasing it right :-) [EMAIL PROTECTED] ~]$ cd /var/spool/spamassassin/ [EMAIL PROTECTED] spamassassin]$ ls -al total 20 drwxrwxrwx 2 root root 4096 Aug 25 08:20 . drwxr-xr-x 18 root root 4096 Aug 24 11:17 .. -rw-rw-rw- 1 root root 12288 Aug 25 08:12 auto-whitelist -rw------- 1 root root 6 Aug 25 08:12 auto-whitelist.mutex Perhaps the problem is that the Mutex is for root only and spamd runs as 'nobody' ? > > > > even though I don't see why this is needed since spamd runs as > > root. > > Spamd will *NEVER*, EVER, scan mail as root. Thus it will not have root > permissions when touching that file. If it finds it's running as root when > mail > is to be scanned, it will setuid itself to nobody as a security measure of > last-resort. > > If you're running as root, take measures to make sure nobody has RWX to the > directory, RW to the file, and your auto_whitelist_file_mode needs to be set > to > 0777. With the exception of very few trusted users, all the mail users can't login to the system. > -- Ilan Aisic Registered Linux User 8124 http://counter.li.org
