Hello, I've just installed qmail-scanner-2.06 on top of netqmail-1.06. Q-S has successfully detected clamd 0.93.3 and spamd (fast) 3.2.5. It _appears_ to be functioning well when sending and receiving plain text email, but I find the following if I test the installation with test_insallation.sh, or attempted to replicate it with an attachment or something similar that would invoke clamd, I find the following:
test_installation.sh: Sending standard test message - no viruses... done! Sending eicar test virus - should be caught by perlscanner module... qmail-inject: fatal: qq temporary problem (#4.3.0) Bad error. qmail-inject died (I do receive the first test email intact.) qmail-queue.log: Thu, 02 Jul 2009 00:40:20 EDT:24660: ini_sc: start scanning Thu, 02 Jul 2009 00:40:20 EDT:24660: ini_sc: recursively scan the directory /var/spool/qscan/tmp/my-hostname124650962056624660/ Thu, 02 Jul 2009 00:40:20 EDT:24660: scanloop(virus): starting scan of directory "/var/spool/qscan/tmp/my-hostname124650962056624660"... Thu, 02 Jul 2009 00:40:20 EDT:24660: scanloop: scanner=clamdscan_scanner,plain_text_msg=0 Thu, 02 Jul 2009 00:40:20 EDT:24660: clamdscan: starting scan of directory "/var/spool/qscan/tmp/my-hostname124650962056624660"... Thu, 02 Jul 2009 00:40:20 EDT:24660: run /usr/bin/clamdscan --no-summary /var/spool/qscan/tmp/my-hostname124650962056624660 2>&1 Thu, 02 Jul 2009 00:40:20 EDT:24660: --output of clamdscan was: /var/spool/qscan/tmp/my-hostname124650962056624660: Access denied. ERROR -- Thu, 02 Jul 2009 00:40:20 EDT:24660: error_condition: X-Qmail-Scanner-2.06: clamdscan: corrupt or unknown clamd scanner error or memory/resource/perms problem - exit status 512/2 syslog: Jul 2 00:40:20 my-hostname qmail-scanner-queue.pl: qmail-scanner[24651]: Clear:RC:1(127.0.0.1): 0.012001 318 postmas...@my-domain.net postmas...@my-domain.net Qmail-Scanner_test_(1/4):_inoffensive_message <20090702044020.24650.qm...@my-domain.net> orig-my-hostname124650962056624651:318 1246509620.24653-0.my-hostname:68 Jul 2 00:40:20 my-hostname clamd[24430]: No stats for Database check - forcing reload Jul 2 00:40:20 my-hostname qmail-scanner-queue.pl: X-Qmail-Scanner-2.06:[my-hostname124650962056624660] clamdscan: corrupt or unknown clamd scanner error or memory/resource/perms problem - exit status 512/2 Jul 2 00:40:21 my-hostname clamd[24430]: Reading databases from /usr/share/clamav Jul 2 00:40:25 my-hostname clamd[24430]: Database correctly reloaded (581968 signatures) I've looked around, and it appears that the most common explanation for this is that clamd is not running as qscand, but it is. I must note that I do not have perl installed with suid, instead I'm running Q-S through the wrapper as specified, and it passes all of the tests. However, I am not entirely convinced that the wrapper is working as it should. I had some other permission issues when first starting qmail that affected even plaintext mail, permission failures on certain files in /var/spool/qscan, which seemed to be resolved by chown'ing them to qmaild:nofiles. The wrapper sits in /var/qmail/bin, is owned by qscand, has the permission mask 6755; qmail-scanner-queue.pl is the same except its permission mask is 0755. I would just install rebuild perl with suid, but this server runs Linux from Scratch (Yes, I am insane, but this is just a proof of concept install.) , which makes installing things rather tedious, and as perl is pretty critical to a lot of things, I'd rather not risk breaking it if it can be at all avoided. So, is this really a suid problem, or is it just permissions somewhere? I've checked everything against a previous qmail install and people with similar experiences in mailing lists, and I can't seem to find anything that helps. Any help would be much appreciated. Thanks in advance. ------------------------------------------------------------------------------ _______________________________________________ Qmail-scanner-general mailing list Qmail-scanner-general@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
