https://bugzilla.novell.com/show_bug.cgi?id=663726 https://bugzilla.novell.com/show_bug.cgi?id=663726#c0 Summary: amavisd-new: group of /var/spool/amavis conflicts with av programms Classification: openSUSE Product: openSUSE 11.4 Version: Factory Platform: All OS/Version: SLES 11 Status: NEW Severity: Minor Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: stefan.jakobs@rus.uni-stuttgart.de QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; de; rv:1.9.2.13) Gecko/20101203 SUSE/3.6.13-3.1 Firefox/3.6.13 I'm referencing to: # rpm -q amavisd-new amavisd-new-2.6.2-1.14 The directory /var/spool/amavis has the following rights: # ls -ld /var/spool/amavis drwx------ 8 vscan root 4096 Dec 6 15:36 /var/spool/amavis This conflicts with av scanners, like sophie. They need to access the files in /var/spool/amavis but doesn't run as the user vscan. I suggest to change the rights to 750 and make the group vscan, too. It will look like: drwxr-x--- 8 vscan vscan 4096 Dec 6 15:36 /var/spool/amavis Reproducible: Always Steps to Reproduce: 1. Install and run amavisd-new with sophie 2. activate sophie in /etc/amavisd.conf with: ### http://www.vanja.com/tools/sophie/ ['Sophie', \&ask_daemon, ["{}/\n", '/var/run/sophie'], qr/(?x)^ 0+ ( : | [\000\r\n]* $)/, qr/(?x)^ 1 ( : | [\000\r\n]* $)/, qr/(?x)^ [-+]? \d+ : (.*?) [\000\r\n]* $/ ], ); 3. send a message through amavisd-new and see in the logs: amavis[9000]: (09000-04) (!!)Sophie av-scanner FAILED: CODE(0x277c0a8) un expected , output="-1:/var/spool/amavis/tmp/amavis-20110110T234409-09000/parts/ (Permission denied)" at (eval 110) line 543, <GEN23> line 506. Actual Results: The av scanner failed to access the file. Expected Results: The av scanner finshes without a failure. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.