On Sun, Nov 12, 2006 at 11:41:34AM -0600, Stuart Johnston wrote:
> Exim does not actually run spamc, it connects directly to spamd.
>
> spamd does run as root. Exim can connect as nobody depending on your
> configuration. Generally though, you want to have a writable home
> directory so it is easiest to create a user for this purpose that Exim
> can connect as.
I wondered if Exim didn't connect directly to spamd.
You say spamd does run as root, but I was asking about it not running as root.
So, I created a user spamd:
# adduser --disabled-login spamd
And added the --username=spamd to spamd startup:
# ps aux | grep spamd
root 21086 36.8 21.7 115400 111960 ? Ss 10:53 0:05
/usr/sbin/spamd --max-children 5 --max-conn-per-child=20 --username=spamd -d
--pidfile=/home/spamd/spamd.pid
spamd 21092 0.0 21.7 115400 111968 ? S 10:54 0:00 spamd child
spamd 21093 0.5 21.7 115400 111968 ? S 10:54 0:00 spamd child
I updated my Exim config to use "spamd" as the user:
deny message = This message scored $spam_score spam points.
spam = spamd:true
condition = ${if >{$spam_score_int}{100}{1}{0}}
Now all is happy, it seems.
Well, except dccproc complains about "Address family not supported".
cdcc 'IPv6 off'
seems to have fixed that for now. Just not sure how to make it permanent.
--
Bill Moseley
[EMAIL PROTECTED]
