Quarantine Taint issue

Fabio De Martin fabiodemartin at gmail.com
Mon Mar 26 15:52:01 IST 2012


Hi,

As per Martin Hepworth request, I tried to run with -U flag on the 
mailscanner executable but it does not work. Just more taint errors...
Please see MailScanner --debug result with -U flag:


In Debugging mode, not forking...
Trying to setlogsock(unix)
Building a message batch to scan...
Have a batch of 1 message.
Insecure dependency in open while running with -T switch at 
/usr/lib64/perl5/IO/File.pm line 185, <$fh> line 2.
Insecure dependency in open while running with -T switch at 
/usr/lib64/perl5/IO/File.pm line 185.
Stopping now as you are debugging me.

Regards,

Fabio De Martin

------------------------------------------------------------------------

Hi,

I'm installing MailScanner 4.84.5-2 on CentOS 6.2 and found some trouble 
with quarantine.
Getting "Insecure dependency in open while running with -T switch at 
/usr/share/perl5/File/Copy.pm line 192"

Any help?

Regards,

Fabio De Martin

------------------------------------------------------------------------


Result of MailScanner --debug:

In Debugging mode, not forking...
Trying to setlogsock(unix)
Building a message batch to scan...
Have a batch of 1 message.
Insecure dependency in open while running with -T switch at 
/usr/share/perl5/File/Copy.pm line 192.

Result of MailScanner -v:

Running on
Linux localhost.localdomain 2.6.32-220.7.1.el6.x86_64 #1 SMP Wed Mar 7 
00:52:02 GMT 2012 x86_64 x86_64 x86_64 GNU/Linux
This is CentOS release 6.2 (Final)
This is Perl version 5.010001 (5.10.1)

This is MailScanner version 4.84.5
Module versions are:
1.00    AnyDBM_File
1.30    Archive::Zip
0.23    bignum
1.11    Carp
2.02    Compress::Zlib
1.119     Convert::BinHex
0.17    Convert::TNEF
2.124    Data::Dumper
2.27    Date::Parse
1.03    DirHandle
1.06    Fcntl
2.77    File::Basename
2.14    File::Copy
2.02    FileHandle
2.08    File::Path
0.22    File::Temp
0.92    Filesys::Df
3.64    HTML::Entities
3.64    HTML::Parser
3.57    HTML::TokeParser
1.25    IO
1.14    IO::File
1.13    IO::Pipe
2.04    Mail::Header
1.89    Math::BigInt
0.22    Math::BigRat
3.08    MIME::Base64
5.427    MIME::Decoder
5.427    MIME::Decoder::UU
5.427    MIME::Head
5.427    MIME::Parser
3.08    MIME::QuotedPrint
5.427    MIME::Tools
0.14    Net::CIDR
1.25    Net::IP
0.19    OLE::Storage_Lite
1.04    Pod::Escapes
3.13    Pod::Simple
1.17    POSIX
1.21    Scalar::Util
1.82    Socket
2.20    Storable
1.4    Sys::Hostname::Long
0.27    Sys::Syslog
1.40    Test::Pod
0.92    Test::Simple
1.9721    Time::HiRes
1.02    Time::localtime

Optional module versions are:
1.58    Archive::Tar
0.23    bignum
2.05    Business::ISBN
20081208    Business::ISBN::Data
1.15    Data::Dump
1.82    DB_File
1.27    DBD::SQLite
1.609    DBI
1.16    Digest
1.01    Digest::HMAC
2.39    Digest::MD5
2.12    Digest::SHA1
1.01    Encode::Detect
0.17015    Error
0.27    ExtUtils::CBuilder
2.2203    ExtUtils::ParseXS
2.38    Getopt::Long
0.46    Inline
1.08    IO::String
1.09    IO::Zlib
2.27    IP::Country
0.29    Mail::ClamAV
3.003002    Mail::SpamAssassin
v2.007    Mail::SPF
missing    Mail::SPF::Query
0.35    Module::Build
0.21    Net::CIDR::Lite
0.65    Net::DNS
v0.003    Net::DNS::Resolver::Programmable
missing    Net::LDAP
  4.027    NetAddr::IP
1.965001    Parse::RecDescent
missing    SAVI
3.17    Test::Harness
1.22    Test::Manifest
2.0.0    Text::Balanced
1.40    URI
0.77    version
0.70    YAML

Quarantine configuration on MailScanner.conf:
Run As User = postfix
Run As Group = mail
Quarantine Dir = /var/spool/MailScanner/quarantine
Quarantine User = postfix
Quarantine Group = mail
Quarantine Permissions = 0660
Quarantine Infections = yes
Quarantine Silent Viruses = yes
Quarantine Modified Body = no
Quarantine Whole Message = yes
Quarantine Whole Messages As Queue Files = yes
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20120326/6abb9a45/attachment.html


More information about the MailScanner mailing list