ginal Message-
> From: Micha Silver [mailto:[EMAIL PROTECTED]
> Sent: Thursday, December 18, 2003 6:25 PM
> To: '[EMAIL PROTECTED]'
> Cc: ([EMAIL PROTECTED])
> Subject: [Qmail-scanner-general]RE: Quarantine-attachments revisited
>
>
> Thanks for your help Tom,
Indeed qscand does NOT have a legitimate shell. The installation
instructions suggest to create the user qscand with /bin/false as the
shell. (BTW qmailq also has a null shell; /bin/true)
That is good ... two fewer potential entry points for the script kiddies ;-)
Anyone on the list know if thi
[EMAIL PROTECTED] wrote:
Does qmailq have a no login shell in /etc/passwd (e.g. /bin/false,
/etc/noway or something similar)?
Indeed qscand does NOT have a legitimate shell. The installation
instructions suggest to create the user qscand with /bin/false as the
shell. (BTW qmailq also has a null
[EMAIL PROTECTED] qmailscan]# su -c "/var/qmail/bin/qmail-scanner-queue.pl -g" qmailq
[EMAIL PROTECTED] qmailscan]#
After the su command, there's no change to quarantine-attachments.db.
What's the difference between the way those two commands work??
Does qmailq have a no login shell in /etc/passw
>
> What happens when you run:
>
> su -c "/var/qmail/bin/qmail-scanner-queue.pl -g" qscand
>
> does it error out or actually work?
>
Hello Ed:
It's strange. When I use the daemontools setuidgid it works, but with su -c
it silently ends, without doing anything:
[EMAIL PROTECTED] qmailscan]# s
On Thu, Dec 18, 2003 at 03:59:46PM +, [EMAIL PROTECTED] wrote:
> >Do you mean the whole qmailscan directory? I tried changing the owner of
> >quarantine-attachments.db to qmailq, but that didn't make any difference.
>
> Yes (and there are most likely others here who know better than I) ... in
Thanks for your help Tom, but no joy yet.
>
> A couple of tests:
> (quick and dirty):
> $ chmod 666 /var/spool/qmailscan/quarantine-attachments.db
>
> Then run and look at the log again.
>
> (more complicated):
> around line 998 of q-s.pl add:
> my ($idd);
> $idd=`id -a`;
> &debug("ID is:
Hmmm ... maybe I am muddying the waters then, I will shut up on this
subject ... and I think that on the one 1.20 installation I may have
manually made qmail-scanner-queue.pl be suid qmailq. Sorry if I have
caused confusion.
[EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] qmail-scanner-1.20]# ll
/va
Do you mean the whole qmailscan directory? I tried changing the owner of
quarantine-attachments.db to qmailq, but that didn't make any difference.
Yes (and there are most likely others here who know better than I) ... in
all of my installations including 1.15 version, the whole
/var/spool/qmailsca
[EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] qmail-scanner-1.20]# ll
/var/spool/qmailscan/quarantine-attachments.*
-rw-r-1 qscand nofiles 12288 Dec 18 10:33
/var/spool/qmailscan/quarantine-attachments.db
-rw-rw1 qscand qscand 4361 Dec 17 14:28
/var/spool/qmailscan/quara
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> Sent: Thursday, December 18, 2003 3:21 PM
> To: Micha Silver
> Cc: ([EMAIL PROTECTED])
> Subject: Re: Quarantine-attachments revisited
>
>
> > [EMAIL PROTECTED] qmail-scanner-1.20]# ll
> > /var/spool/qmailscan/q
[EMAIL PROTECTED] qmail-scanner-1.20]# ll
/var/spool/qmailscan/quarantine-attachments.*
-rw-r-1 qscand nofiles 12288 Dec 18 10:33
/var/spool/qmailscan/quarantine-attachments.db
-rw-rw1 qscand qscand 4361 Dec 17 14:28
/var/spool/qmailscan/quarantine-attachments.txt
Shou
12 matches
Mail list logo
