Idea - everyone duck

Christophe GRENIER grenier at cgsecurity.org
Wed Jan 27 07:56:11 UTC 2016


On Tue, 26 Jan 2016, Kevin Miller wrote:

> I always create that by hand, usually 1 gb, so it has my vote.  I only have about 550 users; others may need a bigger playpen.  I could probably cut it down to much smaller however.  I'm sure I don't use nearly that much...
>
> ...Kevin

For my part, creation of this mount point is done via an ansible task:
- mount: fstype=tmpfs src=none name=/var/spool/MailScanner/incoming opts=context="{{mailscanner_setype_varspool}}",nodev,nosuid,noatime,mode=775,uid=89,gid=0 passno=0 state=mounted

where 89 is the uid of postfix

The SELinux context is different following the Linux distribution
vars/os_CentOS_5.yml:mailscanner_setype_varspool: "system_u:object_r:clamd_var_run_t"
vars/os_CentOS_6.yml:mailscanner_setype_varspool: "system_u:object_r:mscan_spool_t:s0"
vars/os_CentOS_7.yml:mailscanner_setype_varspool: "system_u:object_r:mscan_spool_t:s0"

Regards,

 	Christophe
-- 
    ,-~~-.___.     ._.
   / |  '     \    | |--------.   Christophe GRENIER
  (  )         0   | |        | grenier at cgsecurity.org
   \_/-, ,----'    | |        |
      ====         !_!-v---v--.
      /  \-'~;      .--------.   TestDisk & PhotoRec
     /  __/~| ._-""||        |   Data Recovery
   =(  _____|_|____||________|   http://www.cgsecurity.org


More information about the MailScanner mailing list