Well… I’m glad I’m on this mailing list :P I did the same thing, running sa-learn —spam /spamfolder as root, and was pondering this very issue.
I understand the logic behind why it shouldn’t be run as root, the problem is on FC 22 the spamd user has /sbin/nologin as the shell in /etc/passwd. Which means in order to run the process as spamd one has to manual change that to /bin/bash, then, change it back (/sbin/nologin it self is a security precaution), once the process is complete. This seems convoluted. I know sa-learn has -u option but that simply changes the user name in the environment (does not sudo), is there a better way to do this? Have i missed something? Shawn > On Oct 31, 2015, at 8:14 AM, Reindl Harald <h.rei...@thelounge.net> wrote: > > > > Am 31.10.2015 um 16:06 schrieb j...@lexoncom.com: >> So after initial learning it looks better now. (BAYES_50) > > BAYES_50 is not really good for clear spam > >> When sendmail sends email to procmail and procmail passes it to spam >> assassin, does spam assassin runs as root user or as the user the email >> is destined to? > > depends on how SA is called in detail, normally it should switch to that > unix-user and hence training as root makes no sense, *nothing* should proceed > potentially dangerous input as root at all - inbound mailcontent is by > definition that sort of "don#t do that" input > >> I run the sa-learn as root user > > oh my god....... > >> and it seems like this is the data based >> that is being used so it would be global data base used for all mail >> users? > > https://wiki.apache.org/spamassassin/SiteWideBayesSetup > >> X-Spam-Flag: YES >> X-Spam-Level: ************ >> X-Spam-Status: Yes, score=12.9 required=5.0 tests=BAYES_50,FROM_12LTRDOM, >> HTML_MESSAGE,MIME_HTML_ONLY,RCVD_IN_BRBL_LASTEXT,RCVD_IN_MSPIKE_BL, >> RCVD_IN_MSPIKE_L5,RCVD_IN_XBL,RDNS_NONE,URIBL_BLACK,URIBL_DBL_SPAM, >> URIBL_JP_SURBL,URIBL_WS_SURBL autolearn=disabled version=3.4.0 > > well, the quota of your sa-headers was enough to reject my repsonse on the > submission spamass-milter > > result: Y 16 - URIBL_BLACK,URIBL_DBL_SPAM,URIBL_JP_SURBL,URIBL_WS_SURBL >
