Gene Heskett wrote: > Greetings all; > > I _thought_ I had sa-update running ok, but it seemed that the effectiveness > was stagnant, so I found the cron entry that was running as-update & > discovered a syntax error there, which when I fixed it, disclosed that I had > all sorts of perms problems that I don't seem to be able to fix readily. > > sa-update is being run as the user saupdate, which is a member of the group > mail. I have made the whole /var/lib/spamassassin/keys tree an > saupdate:mail, > with very limited rights as in: > drw------- 2 saupdate mail 4096 2008-12-19 16:05 keys > > But sa-update appears not to have perms to access or create gpg keys there. > -------------------------- > [r...@coyote init.d]# su saupdate -c "/usr/bin/sa-update --gpghomedir > /var/lib/spamassassin/keys" > gpg: failed to create temporary file > `/var/lib/spamassassin/keys/.#lk0xb9bfb8a8.coyote.coyote.den.8955': > Permission > denied > -------------------------- > What do I need to open that up to? > > Thanks. > In order to be able to create files, you need the X permission on a directory.
That said, why give the saupdate user the ability to add keys at all? Import them as root and only give the saupdate user read access.
