> >You forgot to mention one VERY important fact.. you're using amavisd-new.
yes, that's true. am using amavisd-new i'll check the email header and the config file for amavis. thanks. >Do NOT give amavis ownership of /usr/share/spamassassin. Leave that ROOT >owned. SA does not need to write files here, just read. Chowning the files >gives amavis unnecessary privleges to the files in the directory.. > >By chowning /usr/share/spamassassin you've created a potential privilege >escalation hole where a user exploiting amavis can modify the standard >rules to contain dangerous regexes and use those to gain execution as >another user, including root, should root run SpamAssassin manually at the >command line. thanks for the advise, I'll check it out.
