Re: [Qmail-scanner-general]clamdscan

Tue, 16 May 2006 10:18:14 -0700 

Cristina Tanzi Tolenti wrote:




http://qmail-scanner.sourceforge.net/CHANGES

says:


Changed setuid to 6755 - ie it's now setuid and setgid. Forcing all 
files to be group qscand will allow those who wish to do so to keep 
their AV daemons running as other accounts. They just need to ensure 
those daemons are members of the qscand group - and as such should be 
able to read the necessary files.
e.g. clamd could run as "clamav", but as long as account "clamav" is a 
member of group "qscand", clamd is able to read the mail enough to 
scan it.




But that is without the ST patch.  I dont see why this ability would 
have been removed with the patch so i really dont think thats the 
problem.


What are the permissions of /var/spool/qscan/ ?

-Jim




yes, maybe this is the problem:



[EMAIL PROTECTED] root]# ls -l /var/spool/qscan/
total 74896
drwxrwx---    5 qscand   qscand       4096 Apr 24 10:52 archives
-rwxr-x---    1 qscand   qscand       1381 Apr 24 10:52 log-report.sh
-rw-------    1 qscand   qscand   25684331 May 16 15:52 qmail-queue.log

-rw-------    1 qscand   qscand    3055753 May 16 04:03 
qmail-queue.log.1.gz
-rw-------    1 qscand   qscand     950675 May  7 04:03 
qmail-queue.log.10.gz
-rw-------    1 qscand   qscand    2830080 May  6 04:03 
qmail-queue.log.11.gz
-rw-------    1 qscand   qscand    2859336 May  5 04:03 
qmail-queue.log.12.gz
-rw-------    1 qscand   qscand    3352922 May  4 04:03 
qmail-queue.log.13.gz
-rw-------    1 qscand   qscand    2682873 May  3 04:05 
qmail-queue.log.14.gz
-rw-------    1 qscand   qscand     306990 May  2 04:06 
qmail-queue.log.15.gz
-rw-------    1 qscand   qscand     290769 May  1 04:04 
qmail-queue.log.16.gz
-rw-------    1 qscand   qscand     390868 Apr 30 04:05 
qmail-queue.log.17.gz
-rw-------    1 qscand   qscand    1802796 Apr 29 04:04 
qmail-queue.log.18.gz
-rw-------    1 qscand   qscand    2829710 Apr 28 04:03 
qmail-queue.log.19.gz
-rw-------    1 qscand   qscand     896955 May 15 04:05 
qmail-queue.log.2.gz
-rw-------    1 qscand   qscand    2657522 Apr 27 04:03 
qmail-queue.log.20.gz
-rw-rw----    1 qscand   qscand    2252540 Apr 26 04:02 
qmail-queue.log.21.gz
-rw-------    1 qscand   qscand    1445227 May 14 04:02 
qmail-queue.log.3.gz
-rw-------    1 qscand   qscand    2790134 May 13 04:05 
qmail-queue.log.4.gz
-rw-------    1 qscand   qscand    2561837 May 12 04:07 
qmail-queue.log.5.gz
-rw-------    1 qscand   qscand    3643874 May 11 04:03 
qmail-queue.log.6.gz
-rw-------    1 qscand   qscand    4176147 May 10 04:03 
qmail-queue.log.7.gz
-rw-------    1 qscand   qscand    3577505 May  9 04:05 
qmail-queue.log.8.gz
-rw-------    1 qscand   qscand    1210505 May  8 04:02 
qmail-queue.log.9.gz
-rw-rw----    1 qscand   qscand         63 May 16 15:09 
qmail-scanner-queue-version.txt

drwxrwx---    5 qscand   qscand       4096 Apr 24 13:33 quarantine

-rw-r-----    1 qscand   qscand      12288 May 16 15:09 
quarantine-events.db
-rw-rw----    1 qscand   qscand      10194 Apr 24 11:00 
quarantine-events.txt

-rw-------    1 qscand   qscand     560417 May 16 15:52 quarantine.log
-rw-------    1 qscand   qscand    1801355 May 14 04:00 quarantine.log.1
-rw-------    1 qscand   qscand    1019065 May  7 03:58 quarantine.log.2
-rw-rw----    1 qscand   qscand     834065 Apr 30 03:18 quarantine.log.3

-rw-r-----    1 qscand   qscand       2739 Apr 24 10:52 
settings_per_domain.txt

drwxr-x---    2 qscand   qscand       4096 May 16 15:52 tmp
drwxrwx---    5 qscand   qscand       4096 Apr 24 10:52 working


the solution is chmod 660 * ?




I dont know if all files/directories should have that permission.  Is it 
possible to delete the /var/spool/qscan directory and reinstall 
qmail-scanner so it re-creates it?


Mine is:

[EMAIL PROTECTED] spool]# ls -l /var/spool/qscan
total 132
drwxrwx---  5 qscand qscand  4096 Feb 12 17:38 archives
-rw-rw----  1 qscand qscand 81451 Feb 17 09:46 qmail-queue.log

-rw-rw----  1 qscand qscand    43 Feb 17 00:22 
qmail-scanner-queue-version.txt

drwxrwx---  5 qscand qscand  4096 Feb 12 17:38 quarantine
-rw-r-----  1 qscand qscand 12288 Feb 14 08:56 quarantine-events.db
-rw-rw----  1 qscand qscand  9168 Feb 14 08:56 quarantine-events.txt
-rw-rw----  1 qscand qscand   694 Feb 12 17:46 quarantine.log
drwxr-x---  2 qscand qscand  4096 Feb 17 11:35 tmp
drwxrwx---  5 qscand qscand  4096 Feb 12 17:38 working

-Jim


-------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Qmail-scanner-general mailing list
Qmail-scanner-general@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general






















					Reply via email to