Re: [Clamav-users] contrib/init/RedHat suggested patch

Mon, 16 Aug 2004 23:45:36 -0700 

On Mon, 16 Aug 2004, Todd Lyons wrote:

> >It shouldn't, however change if a virus is accepted - since sendmail
> >should be tempfailing mail until the milters are functioning.
>
> Incorrect, depending on how you define your milter call for sendmail.

Yes, I guess one cant legislate sanity, can one :(

> The following is the default recommended line for sendmail.mc in the
> clamav documenation (one long line):
>
>         INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clmilter.sock,
>         F=, T=S:4m;R:4m')dnl

That is poor planning on thier part ! Why would you *NOT* want to
tempfail a late (or failing milter)... Ok, I can see some milters
wanting to pass through (maybe a Reverse MX checker).

But spamassassin and clamav should default to tempfail !

My setup is:
INPUT_MAIL_FILTER(`mimedefang',
    `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T,T=S:1m;R:1m')dnl
dnl INPUT_MAIL_FILTER(`spamassassin',
dnl `S=local:/var/run/sendmail/spamass.sock, F=T,T=S:4m;R:4m;E:10m')dnl
dnl INPUT_MAIL_FILTER(`clamav',
dnl `S=local:/var/run/clamav/clamav-milter.ctl, F=T, T=S:4m;R:4m')dnl

ie, I've dropped spamass-milter and clamav-milter for mimedefang - but
I've got F=T on the lot of them...  Kept meaning to investigate the
time outs, but never got a round tuit.

> In the libmilter documentation, it defines the F flag as:
>
>   The current flags (F=) are:
>         R               Reject connection if filter unavailable
>         T               Temporary fail connection if filter unavailable
>   If neither F=R nor F=T is specified, the message is passed through
>   sendmail in case of filter errors as if the failing filters were not
>   present.

Read that once, seems like eons ago... but still cant believe that
people aren't recommending a safe, by default setup.

-- 
Rick Nelson
Life'll kill ya                         -- Warren Zevon
Then you'll be dead                     -- Life'll kill ya



-------------------------------------------------------
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
_______________________________________________
Clamav-users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/clamav-users

Reply via email to