Mark Sansome wrote:
I am trying to run SA site-wide. That sounds far grander than it
actually is. I am running fetchmail -> procmail -> clamav -> SA on a FC6
platform which acts as a server for my home system.
What I am trying to achieve is as follows:
fetchmail scoops up all the mail for all the various POP3 accounts and
passes it to procmail which (running as root) first scans it for viruses
and then for spam (using SA). Only if the mail is clean does it then put
mail for my wife in /var/spool/mail/wifey, for my children
in /var/spool/mail/kiddies and anything else gets sorted for mailing
lists (e.g. this one) etc and what remains is put
into /var/spool/mail/me.
The problem is that (running procmail as root) if I follow the
instructions I have found on various setup guides (including the SA
wiki) I am supposed to put "DROPPRIVS=yes" into /etc/procmailrc. If I do
that SA works fine, but procmail is unable to put mail for my other
users in their /var/spool/mail directories.
[snip]
> How do I set up procmail / SA to achieve what I want?
I'm not certain what you actually want to do (aside from "Make the
errors go away" <g>), but I can offer some suggestions for what I'd do.
-> Call spamc with the -u option and specify each destination user in a
separate recipe. You'll have to call SA for each destination user after
splitting off the mail stream for that user (instead of before as you're
probably doing now), but you should already have some pieces that do
that. This is probably the simplest option.
-> Install a full MTA and get fetchmail to push messages through it,
which will then call procmail as needed with the appropriate
priviledges. You can probably keep using the existing procmailrc if you
do this.
-> Create user and a home directory for spamd to run as/in, and
explicitly point the AWL and Bayes paths to that location. Check the
man page for Mail::SpamAssassin::Conf for details. Disadvantage:
Global Bayes and AWL are not as accurate as per-user.
-kgd
