Quarantine Taint issue

[Fabio De Martin]

Thanks,

Works with -U flag.
Do you believe it will be fixed on future releases?

Regards,

Fabio De Martin

On 3/26/12 12:02 PM, Sampson, Aaron wrote:
>
> Just to make sure that we are all on the same page this is part of the 
> documentation that I have listed on what I changed to fix that same 
> error.  This worked for me to fix the problem. So are you sure you 
> made the same change?
>
> Change configuration in /usr/sbin/MailScanner  and add the *–_U_* to 
> the end of the line of code.  This causes a fatal Taint error which 
> prevents MailScanner from placing e-mails into the quarantine folders 
> that it creates.  Adding the –U will change the fatal error to just a 
> warning and e-mails will be placed into quarantine.
>
> #!/usr/bin/perl -I/usr/lib/MailScanner *_-U_*
>
> *From:*mailscanner-bounces at lists.mailscanner.info 
> [mailto:mailscanner-bounces at lists.mailscanner.info] *On Behalf Of 
> *Fabio De Martin
> *Sent:* Monday, March 26, 2012 9:52 AM
> *To:* mailscanner at lists.mailscanner.info
> *Subject:* Re: Quarantine Taint issue
>
> Hi,
>
> As per Martin Hepworth request, I tried to run with -U flag on the 
> mailscanner executable but it does not work. Just more taint errors...
> Please see MailScanner --debug result with -U flag:
>
>
> In Debugging mode, not forking...
> Trying to setlogsock(unix)
> Building a message batch to scan...
> Have a batch of 1 message.
> Insecure dependency in open while running with -T switch at 
> /usr/lib64/perl5/IO/File.pm line 185, <$fh> line 2.
> Insecure dependency in open while running with -T switch at 
> /usr/lib64/perl5/IO/File.pm line 185.
> Stopping now as you are debugging me.
>
> Regards,
>
> Fabio De Martin
>
> ------------------------------------------------------------------------
>
>
> Hi,
>
> I'm installing MailScanner 4.84.5-2 on CentOS 6.2 and found some 
> trouble with quarantine.
> Getting "Insecure dependency in open while running with -T switch at 
> /usr/share/perl5/File/Copy.pm line 192"
>
> Any help?
>
> Regards,
>
> Fabio De Martin
>
> ------------------------------------------------------------------------
>
>
>
> Result of MailScanner --debug:
>
> In Debugging mode, not forking...
> Trying to setlogsock(unix)
> Building a message batch to scan...
> Have a batch of 1 message.
> Insecure dependency in open while running with -T switch at 
> /usr/share/perl5/File/Copy.pm line 192.
>
> Result of MailScanner -v:
>
> Running on
> Linux localhost.localdomain 2.6.32-220.7.1.el6.x86_64 #1 SMP Wed Mar 7 
> 00:52:02 GMT 2012 x86_64 x86_64 x86_64 GNU/Linux
> This is CentOS release 6.2 (Final)
> This is Perl version 5.010001 (5.10.1)
>
> This is MailScanner version 4.84.5
> Module versions are:
> 1.00    AnyDBM_File
> 1.30    Archive::Zip
> 0.23    bignum
> 1.11    Carp
> 2.02    Compress::Zlib
> 1.119     Convert::BinHex
> 0.17    Convert::TNEF
> 2.124    Data::Dumper
> 2.27    Date::Parse
> 1.03    DirHandle
> 1.06    Fcntl
> 2.77    File::Basename
> 2.14    File::Copy
> 2.02    FileHandle
> 2.08    File::Path
> 0.22    File::Temp
> 0.92    Filesys::Df
> 3.64    HTML::Entities
> 3.64    HTML::Parser
> 3.57    HTML::TokeParser
> 1.25    IO
> 1.14    IO::File
> 1.13    IO::Pipe
> 2.04    Mail::Header
> 1.89    Math::BigInt
> 0.22    Math::BigRat
> 3.08    MIME::Base64
> 5.427    MIME::Decoder
> 5.427    MIME::Decoder::UU
> 5.427    MIME::Head
> 5.427    MIME::Parser
> 3.08    MIME::QuotedPrint
> 5.427    MIME::Tools
> 0.14    Net::CIDR
> 1.25    Net::IP
> 0.19    OLE::Storage_Lite
> 1.04    Pod::Escapes
> 3.13    Pod::Simple
> 1.17    POSIX
> 1.21    Scalar::Util
> 1.82    Socket
> 2.20    Storable
> 1.4    Sys::Hostname::Long
> 0.27    Sys::Syslog
> 1.40    Test::Pod
> 0.92    Test::Simple
> 1.9721    Time::HiRes
> 1.02    Time::localtime
>
> Optional module versions are:
> 1.58    Archive::Tar
> 0.23    bignum
> 2.05    Business::ISBN
> 20081208    Business::ISBN::Data
> 1.15    Data::Dump
> 1.82    DB_File
> 1.27    DBD::SQLite
> 1.609    DBI
> 1.16    Digest
> 1.01    Digest::HMAC
> 2.39    Digest::MD5
> 2.12    Digest::SHA1
> 1.01    Encode::Detect
> 0.17015    Error
> 0.27    ExtUtils::CBuilder
> 2.2203    ExtUtils::ParseXS
> 2.38    Getopt::Long
> 0.46    Inline
> 1.08    IO::String
> 1.09    IO::Zlib
> 2.27    IP::Country
> 0.29    Mail::ClamAV
> 3.003002    Mail::SpamAssassin
> v2.007    Mail::SPF
> missing    Mail::SPF::Query
> 0.35    Module::Build
> 0.21    Net::CIDR::Lite
> 0.65    Net::DNS
> v0.003    Net::DNS::Resolver::Programmable
> missing    Net::LDAP
>  4.027    NetAddr::IP
> 1.965001    Parse::RecDescent
> missing    SAVI
> 3.17    Test::Harness
> 1.22    Test::Manifest
> 2.0.0    Text::Balanced
> 1.40    URI
> 0.77    version
> 0.70    YAML
>
> Quarantine configuration on MailScanner.conf:
> Run As User = postfix
> Run As Group = mail
> Quarantine Dir = /var/spool/MailScanner/quarantine
> Quarantine User = postfix
> Quarantine Group = mail
> Quarantine Permissions = 0660
> Quarantine Infections = yes
> Quarantine Silent Viruses = yes
> Quarantine Modified Body = no
> Quarantine Whole Message = yes
> Quarantine Whole Messages As Queue Files = yes
>
>
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20120326/c494963b/attachment.html