Bug#293207: bogofilter: Any fix found?
Dann Daggett
dann at exposim.com
Tue Mar 8 02:59:04 CET 2005
Matthias, thank you so much for the considerable thought you have put into
this already. I hope you find my responses to each question helpful.
>Please check or show me the following:
>
>0. if you have all security, critical and recommended patches installed
> on your OS
RedHat 9 Kernel 2.4.20-6. No patches applied to kernel.
Nearly all apps (named, sendmail, openssl, etc) are all the latest versions
downloaded and installed seperately. I don't know where or how to find the
critical and recommended patches for the OS now that RedHat seems to have
abondoned their web based support for this product. I'll be switching to
another OS soon (perhaps gentoo?) when I get some time and another machine
to install/test it on.
>1. if your sendmail configuration and executable are version-matched. If
> your sendmail executable is 8.13, then your configuration must have
> been generated with the 8.13 m4 macro set as well.
Yes, they are matched. Excerpt from my sendmail.cf:
##### SENDMAIL CONFIGURATION FILE
#####
##### built by root at ns1 on Thu Feb 24 11:33:14 PST 2005
##### in /usr/local/src/sendmail-8.13.3/cf/cf
##### using ../ as configuration include directory
>2. permissions on the programs:
> a. ls -l `which procmail`
-rwxr-xr-x 1 root mail 80064 Jan 24 2003 /usr/bin/procmail
> b. ls -l `which bogofilter`
-rwxr-xr-x 1 root root 955412 Feb 25 20:29
/usr/local/bin/bogofilter
>3. if there is a file /etc/procmailrc, and if there is...
There is no /etc/procmailrc file.
>4. save to /var/tmp, (a) compile and (b) install the attached program
> (Linux-specific) and (c) insert it before the bogofilter call into
> your .dmdbogo_procmailrc, possibly redirecting its output:
>
> a. gcc -O -o printugid printugid.c
> b. install -s -m0755 printugid /usr/local/bin/
> c. edit ~/.dmdbogo_procmailrc with your favorite editor to run
> printugid and save its output before bogofilter is run.
Ok, see question 6 for results.
>5. procmail version (procmail -v)
procmail v3.22 2001/09/10
Locking strategies: dotlocking, fcntl()
Default rcfile: $HOME/.procmailrc
>6. sendmail version
(/root) # sendmail -d0.1 -bv root
Version 8.13.3
Compiled with: DNSMAP LOG MATCHGECOS MILTER MIME7TO8 MIME8TO7
NAMED_BIND NETINET NETUNIX NEWDB PIPELINING SASLv2 SCANF
STARTTLS USERDB XDEBUG
dann... deliverable: mailer local, user dann
>Then send yourself a mail that goes through bogofilter (you may need to
skip the
>whitelist) and watch the output of printugid. The figures of all *uid
should match each
>other, and the figures of all *gid should match each other, example:
>
>ruid=500 euid=500 suid=500
>rgid=100 egid=100 sgid=100
>
>whereas for setuid or setgid executables, there will me mismatches
>within either line (or both).
Ok. However, I have no idea how to get a .procmailrc file to redirect
output, so instead, I incorporated your printugid.c code (thanks for that
btw) into my dmd_whitelist.c program and had it log the results in it's
existing log file. It's output was:
03/07/05 17:40:43|ruid=500 euid=500 suid=500
03/07/05 17:40:43|rgid=500 egid=500 sgid=500
On my system, 500 is both the passwd and group number associated to user
'dann'.
I believe this proves that .procmailrc is being executed as user 'dann' does
it not?
Finally, I'm still not clear exactly which program is creating new
log.0000000 files in ~/.bogofilter when the current log file reaches 1MB. Is
that the Berkley DB program or bogofilter doing that?
Thanks again for all your help!
Dann
_______________________________________________
Bogofilter mailing list
Bogofilter at bogofilter.org
http://www.bogofilter.org/mailman/listinfo/bogofilter
More information about the Bogofilter
mailing list