[Bug 606231] New: Spamassassin still uses openwhois tests, a squatted domain.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c0 Summary: Spamassassin still uses openwhois tests, a squatted domain. Classification: openSUSE Product: openSUSE 11.2 Version: Final Platform: Other OS/Version: openSUSE 11.2 Status: NEW Severity: Major Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: carlos.e.r@opensuse.org QAContact: qa@suse.de CC: pth@novell.com Found By: --- Blocker: --- Mail is wrongly tagged as spam by those tests. Affects at least 11.0 to 11.2. Bug was solved upstream last July. Bug 6157 - remove open-whois.org rules since domain is cybersquatted https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6157 linux.debian.bugs.dist Bug#537477: spamassassin: Remove open-whois.org as it is cybersquatted http://groups.google.com/group/linux.debian.bugs.dist/browse_thread/thread/4... http://www.dnsbl.com/2009/08/status-of-blopen-whoisorg-dead.html Status of bl.open-whois.org: DEAD Posted by Al Iverson on Tuesday, August 18, 2009 Classified as "security", public, because I understand that spamassassin is a security component of the distro. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c Philipp Thomas <pth@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P2 - High -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c1 Thomas Biege <thomas@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC|varkoly@novell.com |security-team@suse.de AssignedTo|security-team@suse.de |varkoly@novell.com Summary|Spamassassin still uses |VUL-1: Spamassassin still |openwhois tests, a squatted |uses openwhois tests, a |domain. |squatted domain. --- Comment #1 from Thomas Biege <thomas@novell.com> 2010-05-17 11:31:39 UTC --- reassigned to maintainer I will put it on the list of planned updates. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard| |maint:planned:update -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c2 Peter Varkoly <varkoly@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |thomas@novell.com --- Comment #2 from Peter Varkoly <varkoly@novell.com> 2010-05-17 11:41:24 UTC --- We need update for: SLES10-SP3 SLE11 SLE11-SP1 11.1 11.2 -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c4 Marcus Meissner <meissner@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |carlos.e.r@opensuse.org --- Comment #4 from Marcus Meissner <meissner@novell.com> 2010-05-17 13:05:41 UTC --- how large is the impact? how much of a rating can this test give? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c5 Peter Varkoly <varkoly@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW InfoProvider|carlos.e.r@opensuse.org | --- Comment #5 from Peter Varkoly <varkoly@novell.com> 2010-05-17 16:38:12 UTC --- That are the scores of whois rules: 3.51 WHOIS_AITPRIV 2.84 WHOIS_UNLISTED 2.70 WHOIS_SECUREWHOIS 2.70 WHOIS_CONTACTPRIV 2.60 WHOIS_MONIKER_PRIV 2.02 WHOIS_WHOISGUARD 1.65 WHOIS_REGISTERFLY 1.50 WHOIS_PRIVPROT 1.50 WHOIS_MYPRIVREG 1.41 WHOIS_NAMEKING 1.00 WHOIS_WHOISPROT 1.00 WHOIS_SAFENAMES 1.00 WHOIS_REGTEK 1.00 WHOIS_REGISTER4LESS 1.00 WHOIS_PRIVDOMAIN 1.00 WHOIS_NOMINET 1.00 WHOIS_NETID 1.00 WHOIS_FINEXE 1.00 WHOIS_DYNADOT 1.00 WHOIS_DREAMPRIV 1.00 WHOIS_DOMPRIVCORP 1.00 WHOIS_DOMESCROW If the user runs periodically sa-update (which is recommended) there is no problem. http://www.dnsbl.com/2009/08/status-of-blopen-whoisorg-dead.html -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c6 --- Comment #6 from Carlos Robinson <carlos.e.r@opensuse.org> 2010-05-17 20:23:33 UTC --- (In reply to comment #5)
If the user runs periodically sa-update (which is recommended) there is no problem. http://www.dnsbl.com/2009/08/status-of-blopen-whoisorg-dead.html
Recommended by whom? Not by SUSE/Novell. "users" do not run sa-update. We rely on "YOU" (YaST) for doing our updates. Or, we could rely on a system service, like /etc/init.d/fresclam to do the updates to the virus dababase - but such a system service does not exist for SA. Mail administrators and some users *may* run sa-update. (In reply to comment 2)
We need update for: SLES10-SP3 SLE11 SLE11-SP1 11.1 11.2
11.0 is affected and still officially supported, AFAIK. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c7 Peter Varkoly <varkoly@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |suse-beta@cboltz.de --- Comment #7 from Peter Varkoly <varkoly@novell.com> 2010-06-24 10:17:42 UTC --- *** Bug 615250 has been marked as a duplicate of this bug. *** http://bugzilla.novell.com/show_bug.cgi?id=615250 -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c8 --- Comment #8 from Carlos Robinson <carlos.e.r@opensuse.org> 2010-09-25 19:45:45 UTC --- Ping! Still undone. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c10 Ludwig Nussel <lnussel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |ast@novell.com Summary|VUL-1: Spamassassin still |Spamassassin still uses |uses openwhois tests, a |openwhois tests, a squatted |squatted domain. |domain. --- Comment #10 from Ludwig Nussel <lnussel@novell.com> 2010-09-27 13:53:24 CEST --- not really a security vulnerability and no other security update can be used as driver. Needs to be handles as regular maintenance update. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c11 --- Comment #11 from Peter Varkoly <varkoly@novell.com> 2010-09-28 10:13:12 UTC --- I've submitted all packages. Please start mainenance -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c12 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:planned:update |maint:running:36123:low --- Comment #12 from Swamp Workflow Management <swamp@suse.com> 2010-09-28 12:31:43 UTC --- The SWAMPID for this issue is 36123. This issue was rated as low. Please submit fixed packages until 2010-10-26. Also create a patchinfo file using this link: https://swamp.suse.de/webswamp/wf/36123 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c13 Christian Dengler <cdengler@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW CC| |cdengler@novell.com InfoProvider|ast@novell.com | --- Comment #13 from Christian Dengler <cdengler@novell.com> 2010-09-28 12:32:36 UTC --- As it is annoying for the customers (which doesn't use sa-update), update started now. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c16 --- Comment #16 from Dirk Mueller <dmueller@novell.com> 2010-10-01 13:26:41 CEST --- correct. Can you please submit packages that contain the complete "sa-update" diff, not just this one fix please? Thanks, -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c17 Peter Varkoly <varkoly@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |dmueller@novell.com --- Comment #17 from Peter Varkoly <varkoly@novell.com> 2010-10-04 07:01:56 UTC --- I think the best solution is to make a daily cronjob which runs sa-update. Is it OK? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c18 --- Comment #18 from Dirk Mueller <dmueller@novell.com> 2010-10-04 10:46:48 CEST --- that would be also okay. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c19 Dirk Mueller <dmueller@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW InfoProvider|dmueller@novell.com | --- Comment #19 from Dirk Mueller <dmueller@novell.com> 2010-10-04 10:47:18 CEST --- note that those who use sa-compile (I do), also need to run sa-compile after sa-update. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c20 --- Comment #20 from Ludwig Nussel <lnussel@novell.com> 2010-10-04 11:24:37 CEST --- the cron job shouldn't be enabled by default though IMO. Just as spamd isn't enabled by default. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c30 Dirk Mueller <dmueller@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |FIXED --- Comment #30 from Dirk Mueller <dmueller@novell.com> 2010-11-16 23:00:33 CET --- updates ready for QA, resolving Bug. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c31 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:36123:low |maint:running:36123:low | |maint:released:11.1:36199 | |maint:released:11.2:36199 --- Comment #31 from Swamp Workflow Management <swamp@suse.com> 2010-12-16 13:28:54 UTC --- Update released for: perl-spamassassin, spamassassin, spamassassin-debuginfo, spamassassin-debugsource Products: openSUSE 11.1 (debug, i586, ppc, x86_64) openSUSE 11.2 (debug, i586, x86_64) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c32 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:36123:low |maint:running:36123:low |maint:released:11.1:36199 |maint:released:11.1:36199 |maint:released:11.2:36199 |maint:released:11.2:36199 | |maint:released:sle11-sp1:37 | |702 --- Comment #32 from Swamp Workflow Management <swamp@suse.com> 2010-12-16 15:58:55 UTC --- Update released for: perl-spamassassin, spamassassin, spamassassin-debuginfo, spamassassin-debugsource Products: SLE-DEBUGINFO 11-SP1 (i386, ia64, ppc64, s390x, x86_64) SLE-DESKTOP 11-SP1 (i386, x86_64) SLE-SERVER 11-SP1 (i386, ia64, ppc64, s390x, x86_64) SLES4VMWARE 11-SP1 (i386, x86_64) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c33 Christian Boltz <suse-beta@cboltz.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | Severity|Major |Critical --- Comment #33 from Christian Boltz <suse-beta@cboltz.de> 2010-12-18 00:41:38 CET --- I just installed the patch on a 11.1 server, with the result that Amavis died instantly after startup :-( The log says: Dec 18 00:29:41 srv amavis[26790]: SpamControl: initializing Mail::SpamAssassin Dec 18 00:29:42 srv amavis[26790]: (!!)TROUBLE in pre_loop_hook: check: no loaded plugin implements 'check_main': cannot scan! at /usr/lib/perl5/vendor_perl/5.10.0/Mail/SpamAssassin/PerMsgStatus.pm line 164. Dec 18 00:29:42 srv amavis[26790]: (!)_DIE: check: no loaded plugin implements 'check_main': cannot scan! at /usr/lib/perl5/vendor_perl/5.10.0/Mail/SpamAssassin/PerMsgStatus.pm line 164. (Amavis works again after downgrading to perl-spamassassin-3.2.5-26.9.1) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c34 --- Comment #34 from Christian Boltz <suse-beta@cboltz.de> 2010-12-19 12:12:19 CET --- bug 660431 contains more details about the reason of the failure. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c35 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:36123:low |maint:running:36123:low |maint:released:11.1:36199 |maint:released:11.1:36199 |maint:released:11.2:36199 |maint:released:11.2:36199 |maint:released:sle11-sp1:37 |maint:released:sle11-sp1:37 |702 |702 | |maint:released:sle10-sp3:37 | |703 --- Comment #35 from Swamp Workflow Management <swamp@suse.com> 2010-12-29 21:54:27 UTC --- Update released for: perl-spamassassin, spamassassin, spamassassin-debuginfo Products: SLE-DESKTOP 10-SP3 (i386, x86_64) SLE-SAP-APL 10-SP3 (x86_64) SLE-SERVER 10-SP3 (i386, ia64, ppc, s390x, x86_64) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c36 Dirk Mueller <dmueller@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Component|Security |Network Product|openSUSE 11.2 |openSUSE 11.3 --- Comment #36 from Dirk Mueller <dmueller@novell.com> 2010-12-30 15:01:44 CET --- sa-update support is missing for 11.3. please submit a fixed package. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c37 --- Comment #37 from Dirk Mueller <dmueller@novell.com> 2011-01-11 14:19:56 CET --- Peter, when can you submit the package? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c39 Dirk Mueller <dmueller@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |RESOLVED Resolution| |FIXED --- Comment #39 from Dirk Mueller <dmueller@novell.com> 2011-01-19 10:13:34 CET --- submitted the factory package now myself. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=606231 https://bugzilla.novell.com/show_bug.cgi?id=606231#c Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:36123:low |maint:released:11.1:36199 |maint:released:11.1:36199 |maint:released:11.2:36199 |maint:released:11.2:36199 |maint:released:sle11-sp1:37 |maint:released:sle11-sp1:37 |702 |702 |maint:released:sle10-sp3:37 |maint:released:sle10-sp3:37 |703 |703 | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=606231 http://bugzilla.novell.com/show_bug.cgi?id=606231#c40 --- Comment #40 from Bernhard Wiedemann <bwiedemann@suse.com> --- This is an autogenerated message for OBS integration: This bug (606231) was mentioned in https://build.opensuse.org/request/show/50120 11.2:Test / spamassassin https://build.opensuse.org/request/show/50121 11.1 / spamassassin -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com