Payal Rathod wrote: >On Mon, May 02, 2005 at 02:11:19PM -0400, Matt Kettler wrote: > > >>How is SA called? from procmail, or something else? >> >> > >For .qmail file with a script ifspamh > > > >>One major problem I see is that the bayes files have permissions of 400, >>but the bayes DB is site-wide. You generally need to use bayes_file_mode >> >> >[...] > >Right. Do I need 777 or just 744? > > In general 777. All users that need to access the bayes DB need to be able to write to it, and create/delete temporary files and lock files.
This happens most extensively in the event of opportunistic expiry or autolearning. In your case I might do 744, just because the box isn't yours and the admin might not want world-writable files (in which case he shouldn't be using a global bayes DB). However, 744 is really a half-baked solution and won't eliminate bayes problems. > > >>As for receiving more spam than ever. Well, you're using SA 2.61, >>which >>IS massively outdated. Spam is a moving target, and SpamAssassin does >>require reasonably frequent updates to keep abreast of changing >>trends. >> >> > >How safe is it to change to the new version? His is a live server and we >don't want to risk anything at all. > > I wouldn't be doing extensive upgrades on a box you don't normally administer. However, you should let him know that all versions from 2.60 through 2.63 are vulnerable to a DoS attack if a person sends you a maliciously crafted email (it's a bug in the mime decoder which was fixed in 2.64, as well as 3.0.0)
