Lots of mail on Hold
Jerry Benton
jerry.benton at mailborder.com
Thu Apr 18 23:49:44 IST 2013
Forgot to mention ...
I do this with the mtagroup because both postfix and clamav need access to
these files. If you read the MailScanner docs you see where Julian lays out
the logic. I just extended upon that with an enitrely new group because the
Mailborder servers have a lot more going on.
If you are still having huge problems, you could always run clamd as root,
but that is not recommended. However, it is a valid short term solution to
clear out your queues with email being time sensitive and all.
On Fri, Apr 19, 2013 at 12:44 AM, Jerry Benton
<jerry.benton at mailborder.com>wrote:
> Ok so ... I have no idea how you setup permissions, so I will just show
> you what is doen in the Mailborder install scripts. In short, I create a
> special group and add postfix, clamav, and any other required user to that
> group. I then set the MailScanner quarantine, postfix processing, etc. as
> being owned by that group. I then set the below permissions, which is
> essentially group read and write (0660)
>
>
> # set permissions
> #
> chown root:mtagroup /etc/postfix/main.cf
> chmod 0664 /etc/postfix/main.cf
> chown -R root:mtagroup /etc/MailScanner/reports/
> chown postfix:mtagroup /var/spool/MailScanner
> chown postfix:mtagroup /var/spool/MailScanner/incoming
> chown postfix:mtagroup /var/spool/MailScanner/quarantine
> chown postfix.mtagroup /var/spool/MailScanner/spamassassin
> chown postfix:mtagroup /var/spool/postfix
> chown postfix:mtagroup /var/spool/postfix/incoming
> find /etc/MailScanner/reports/ -type d -exec chmod 0655 {} \;
> find /etc/MailScanner/reports/ -type f -exec chmod 0664 {} \;
> chmod g+w /var/spool/MailScanner/*
> touch /var/spool/MailScanner/incoming/SpamAssassin.cache.db
> chown postfix:mtagroup
> /var/spool/MailScanner/incoming/SpamAssassin.cache.db
> touch /var/spool/MailScanner/incoming/Processing.db
> chown postfix:mtagroup /var/spool/MailScanner/incoming/Processing.db
>
>
>
> On Thu, Apr 18, 2013 at 11:54 PM, Steve Freegard <steve.freegard at fsl.com>wrote:
>
>> How about AppArmour as you're on Ubuntu.
>>
>> sudo /etc/init.d/apparmor stop
>>
>> Does that fix it?
>>
>> Regards,
>> Steve.
>>
>>
>> On 18/04/13 21:57, Carlos Raúl Laguna wrote:
>> > Did what you ask no difference do
>> >
>> > #!/usr/bin/perl -U -I/usr/share/MailScanner/
>> >
>> > an't call method "close" on an undefined value at
>> > /usr/sbin/mailscanner_create_locks line 47.
>> > Error: Attempt to create locks in /var/lock/MailScanner failed!
>> > Can't set GID 33 at /usr/sbin/MailScanner line 1541.
>> >
>> >
>> > 2013/4/18 Carlos Raúl Laguna <carlosla1987 at gmail.com
>> > <mailto:carlosla1987 at gmail.com>>
>> >
>> > Did what you ask no difference do
>> >
>> >
>> >
>> > 2013/4/18 Carlos Raúl Laguna <carlosla1987 at gmail.com
>> > <mailto:carlosla1987 at gmail.com>>
>> >
>> > Thanks for the fast reply
>> > all i get is
>> >
>> > Can't call method "close" on an undefined value at
>> > /usr/sbin/mailscanner_create_locks line 47.
>> > Error: Attempt to create locks in /var/lock/MailScanner failed!
>> > Can't set GID 33 at /usr/sbin/MailScanner line 1541.
>> >
>> >
>> >
>> >
>> > 2013/4/18 Martin Hepworth <maxsec at gmail.com
>> > <mailto:maxsec at gmail.com>>
>> >
>> > Make youve turned off selinux
>> >
>> > Also run the debug as the postfix user
>> >
>> > Martin
>> >
>> > On Thursday, 18 April 2013, Carlos Raúl Laguna wrote:
>> >
>> >
>> > Hi aim using mailscanner 4.84.5-4 on ubuntu 12.04.2 an
>> > after some check MailScanner --lint give no error back,
>> > however when i run in debug mode i get this
>> >
>> > LibClamAV Error: cli_scanhtml: Can't create temporary
>> > directory
>> >
>> /var/spool/MailScanner/incoming/SpamAssassin-Temp/fileZu9PiO/clamav-dfeb188c6d93ac33695b6db46175629e
>> > LibClamAV Error: cli_scanhtml: Can't create temporary
>> > directory
>> >
>> /var/spool/MailScanner/incoming/SpamAssassin-Temp/fileZu9PiO/clamav-0973cd1b961c3f9d0c42a72a271a3579
>> >
>> > plugin: eval failed: bayes: (in learn) locker:
>> > safe_lock: cannot create lockfile
>> > /var/lib/MailScanner/bayes.mutex: Permission denied
>> > plugin: eval failed: bayes: (in learn) locker:
>> > safe_lock: cannot create lockfile
>> > /var/lib/MailScanner/bayes.mutex: Permission denied
>> >
>> > It looks like permission issue but no enteraly shure
>> > about that had change the user from where runnig clamav
>> > without any good outcome
>> >
>> > grep -i postfix MailScanner.conf | grep -v ^#
>> > Run As User = postfix
>> > Run As Group = postfix
>> > Incoming Queue Dir = /var/spool/postfix/hold
>> > Outgoing Queue Dir = /var/spool/postfix/incoming
>> > MTA = postfix
>> >
>> > Any help here would be really appreciated. Thanks for
>> > your time.
>> >
>> >
>> >
>> > --
>> > --
>> > Martin Hepworth, CISSP
>> > Oxford, UK
>> >
>> > --
>> > MailScanner mailing list
>> > mailscanner at lists.mailscanner.info
>> > <mailto:mailscanner at lists.mailscanner.info>
>> > http://lists.mailscanner.info/mailman/listinfo/mailscanner
>> >
>> > Before posting, read http://wiki.mailscanner.info/posting
>> >
>> > Support MailScanner development - buy the book off the
>> website!
>> >
>> >
>> >
>> >
>> >
>> >
>>
>>
>> --
>> MailScanner mailing list
>> mailscanner at lists.mailscanner.info
>> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>>
>> Before posting, read http://wiki.mailscanner.info/posting
>>
>> Support MailScanner development - buy the book off the website!
>>
>
>
>
> --
>
> --
> Jerry Benton
> Mailborder Systems
> www.mailborder.com
>
--
--
Jerry Benton
Mailborder Systems
www.mailborder.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20130419/41544888/attachment.html
More information about the MailScanner
mailing list