Procmail, Spamassassin, and /etc/shadow

Paul Howarth paul at
Thu Aug 17 06:57:17 UTC 2006

On Wed, 2006-08-16 at 21:38 -0700, Charles A. Crayne wrote:
> With a fully updated FC5 targeted policy, in permissive mode, while sorting
> incoming mail, procmail invokes spamassassin, which wants read and getattr
> permission for file /etc/shadow. I used audit2allow to create an allow
> rule for these cases, but the resulting local.pp module will not load,
> because it triggers an assert rule.

Can you post the AVC messages you get when calling spamassassin from

How do you call spamassassin from procmail? Can you post the procmail
recipe you use?


More information about the fedora-selinux-list mailing list