Upgraded amavisd, mail failing

Arthur W. Neilson III art at pilikia.net
Mon Apr 7 22:51:20 PDT 2003 

I had the same problem, brought up amavisd-new/postfix/spamassassin
on a new system today w/freshly cvsupped ports tree and have the
taint check problem you are describing.

I posted a query about this to the amavis-user list, if you hear of
a fix *please* let me know I am running with -T taint checking disabled
fer now.

--On Monday, April 07, 2003 10:43 PM -0400 H.Wade Minter said:
| I ran a portupgrade on my postfix-based mail system tonight, and it
| upgraded p5-Mail-SpamAssassin and amavisd-new.  So far so good.  I
| restarted the daemons, restarted the queue, and all of the incoming mail
| started getting held with the following error:
|
| Apr  7 22:37:12 mail postfix/lmtp[62440]: D8C44280:
| to=<minter at example.com>, relay=127.0.0.1[127.0.0.1], delay=1566,
| status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in
| processing, id=62383-01-3, decoding FAILED: Insecure $ENV{PATH} while
| running with -T switch at /usr/local/sbin/amavisd line 3082. (in reply to
| end of DATA command))
|
|
| Line 3082 from amavisd is:
|
|# call 'file' utility for each part,
|# and associate (save) full and short types with each part
|#
| sub determine_file_types($$$) {
|      my($partslist,$tempdir,$file_generator_object) = @_;
|
|      for my $part (@$partslist) {
|          my($filename) = "$tempdir/parts/$part";
| ==>        my($filetype) = qx($file -b $filename 2>/dev/null);
|          my($ret) = retcode($?);
|          $ret==0 or die "'file' utility ($file) failed, status=$ret";
|          chomp($filetype);
|          section_time('get-file-type');
|
|          local($_) = $filetype;  my($ty);
|
|          # try to classify some common types and give them short type name
|
|
| Line 5140 in amavisd has:
|
|# Set path, home and term explictly.  Don't trust environment
| ==> $ENV{PATH} = $path          if $path ne '';
| $ENV{HOME} = $helpers_home  if $helpers_home ne '';
| $ENV{TERM} = 'dumb';
|
| And amavisd.conf has:
|
| $path = '/usr/local/sbin:/usr/local/bin:/usr/sbin:/sbin:/usr/bin:/bin';
|
|
| This is a stock install from ports, nothing funny going on.  Does anyone
| have any ideas on what might be broken?
|
| --Wade
|
| _______________________________________________
| freebsd-questions at freebsd.org mailing list
| http://lists.freebsd.org/mailman/listinfo/freebsd-questions
| To unsubscribe, send any mail to
| "freebsd-questions-unsubscribe at freebsd.org"
|



--
   __
  /  )    _/_  It is a capital mistake to theorise before one has data.
 /--/ __  /    Insensibly one begins to twist facts to suit theories,
/  (_/ (_<__   Instead of theories to suit facts.
                    -- Sherlock Holmes, "A Scandal in Bohemia"
Arthur W. Neilson III, WH7N - FISTS #7448
Bank of Hawaii Network Services
http://www.pilikia.net
art at pilikia.net, aneilson at boh.com, wh7n at arrl.net

More information about the freebsd-questions mailing list