On Apr 8, 2019, at 5:37 PM, Bill Cole <sausers-20150...@billmail.scconsult.com> wrote: > What does running 'id -a' as the problem user say?
uid=1000(centos) gid=1000(centos) groups=1000(centos),4(adm),10(wheel),190(systemd-journal) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 > I still haven't been able to reproduce it. I'm running a stock CentOS 7 configuration except that SA 3.4.2 is installed from the Fedora SRPM (using rpmbuild) since EPEL is lagging behind. > If you add "-D all" to SPAMDOPTIONS in /etc/sysconfig/spamassassin and > restart spamd, it will log an insane amount (i.e. don't leave it that way) > including lines with "get_user_groups: added" that will show the group list > being built. This may help provide insight to how $( is being mangked and how > to avoid it. Here are the relevant get_user_groups and other util lines leading up to the error. Note that the error occurs four times per message, twice (in a row) with a <GENxx> tag and twice (in a row) without. It runs pyzor and razor tests in between. Apr 8 23:56:14 kismet spamd[24113]: get_user_groups: uid is 1000 Apr 8 23:56:14 kismet spamd[24113]: get_user_groups: added 4 (adm) to group list which is now: 1000 4 Apr 8 23:56:14 kismet spamd[24113]: get_user_groups: added 10 (wheel) to group list which is now: 1000 4 10 Apr 8 23:56:14 kismet spamd[24113]: get_user_groups: added 190 (systemd-journal) to group list which is now: 1000 4 10 190 Apr 8 23:56:14 kismet spamd[24113]: util: changing real primary gid from 0 4 10 190 to 1000 and supplemental groups to 4 10 190 to match effective uid 1000 Apr 8 23:56:14 kismet spamd[24113]: util: POSIX::setgid(1000) set errno to Apr 8 23:56:14 kismet spamd[24113]: util: assignment $) = 1000 4 10 190 set errno to Apr 8 23:56:14 kismet spamd[24113]: util: changing real uid from 0 to match effective uid 1000 Apr 8 23:56:14 kismet spamd[24113]: Use of uninitialized value $( in concatenation (.) or string at /usr/share/perl5/vendor_perl/Mail/SpamAssassin/Util.pm line 1595, <GEN11> line 29. Apr 8 23:56:14 kismet spamd[24113]: Use of uninitialized value $) in concatenation (.) or string at /usr/share/perl5/vendor_perl/Mail/SpamAssassin/Util.pm line 1595, <GEN11> line 29. Apr 8 23:56:14 kismet spamd[24113]: util: setuid: ruid=1000 euid=1000 rgid= 10 190 egid= 10 190 When I send a test email to a non-problem user (i.e., a user with only a single group), the lines look as follows: Apr 9 00:01:22 kismet spamd[24195]: get_user_groups: uid is 22001 Apr 9 00:01:22 kismet spamd[24195]: util: changing real primary gid from 0 to 505 and supplemental groups to 505 to match effective uid 22001 Apr 9 00:01:22 kismet spamd[24195]: util: POSIX::setgid(505) set errno to Apr 9 00:01:22 kismet spamd[24195]: util: assignment $) = 505 505 set errno to Apr 9 00:01:22 kismet spamd[24195]: util: changing real uid from 0 to match effective uid 22001 Apr 9 00:01:22 kismet spamd[24195]: util: setuid: ruid=22001 euid=22001 rgid=505 egid=505 Does this help? Thanks! --- Amir
