SELinux and spamass-milter
Lutfi
lutfi at rg.co.id
Mon Jul 24 02:06:39 UTC 2006
It's like SELinux problem here. Cannot handle spamass-milter form Fedora
Extras. Any help?
Here log maillog n audit.log
==== /var/log/maillog
Jul 24 08:58:31 beta spamd[2358]: spamd: connection from beta.rg.co.id
[127.0.0.1] at port 39319
Jul 24 08:58:31 beta spamd[2358]: spamd: setuid to mail succeeded
Jul 24 08:58:31 beta spamd[2358]: spamd: creating default_prefs:
/var/spool/mail/.spamassassin/user_prefs
Jul 24 08:58:31 beta spamd[2358]: mkdir
/var/run/spamass-milter/.spamassassin: Permission denied at
/usr/lib/perl5/vendor_perl/5.8.8/Mail/SpamAssassin.pm line 1486
Jul 24 08:58:31 beta spamd[2358]: config: cannot write to
/var/spool/mail/.spamassassin/user_prefs: Permission denied
Jul 24 08:58:31 beta spamd[2358]: spamd: failed to create readable
default_prefs: /var/spool/mail/.spamassassin/user_prefs
Jul 24 08:58:31 beta spamd[2358]: spamd: processing message
<008b01c6ad38$52a114e0$c000a8c0 at rbrana.co.id> for mail:8
Jul 24 08:58:36 beta spamd[2358]: locker: safe_lock: cannot create tmp
lockfile
/var/spool/mail/.spamassassin/auto-whitelist.lock.beta.rg.co.id.2358 for
/var/spool/mail/.spamassassin/auto-whitelist.lock: Permission denied
Jul 24 08:58:36 beta spamd[2358]: auto-whitelist: open of auto-whitelist
file failed: locker: safe_lock: cannot create tmp lockfile
/var/spool/mail/.spamassassin/auto-whitelist.lock.beta.rg.co.id.2358 for
/var/spool/mail/.spamassassin/auto-whitelist.lock: Permission denied
Jul 24 08:58:36 beta spamd[2358]: bayes: locker: safe_lock: cannot
create tmp lockfile
/var/spool/mail/.spamassassin/bayes.lock.beta.rg.co.id.2358 for
/var/spool/mail/.spamassassin/bayes.lock: Permission denied
Jul 24 08:58:36 beta spamd[2358]: spamd: clean message (-0.6/5.0) for
mail:8 in 4.7 seconds, 21826 bytes.
Jul 24 08:58:36 beta spamd[2358]: spamd: result: . 0 -
ADVANCE_FEE_1,ALL_TRUSTED,HTML_MESSAGE,INFO_TLD
scantime=4.7,size=21826,user=mail,uid=8,required_score=5.0,rhost=beta.rg.co.id,raddr=127.0.0.1,rport=39319,mid=<008b01c6ad38$52a114e0$c000a8c0 at rbrana.co.id>,autolearn=failed
Jul 24 08:59:55 beta spamd[2358]: spamd: connection from beta.rg.co.id
[127.0.0.1] at port 39352
Jul 24 08:59:55 beta spamd[2358]: spamd: setuid to mail succeeded
Jul 24 08:59:55 beta spamd[2358]: spamd: creating default_prefs:
/var/spool/mail/.spamassassin/user_prefs
Jul 24 08:59:55 beta spamd[2358]: config: cannot write to
/var/spool/mail/.spamassassin/user_prefs: Permission denied
Jul 24 08:59:55 beta spamd[2358]: spamd: failed to create readable
default_prefs: /var/spool/mail/.spamassassin/user_prefs
Jul 24 08:59:55 beta spamd[2358]: spamd: processing message
<200607220320.k6M3JtH9002594 at sigma.rbrana.co.id> for mail:8
Jul 24 09:00:00 beta spamd[2358]: locker: safe_lock: cannot create tmp
lockfile
/var/spool/mail/.spamassassin/auto-whitelist.lock.beta.rg.co.id.2358 for
/var/spool/mail/.spamassassin/auto-whitelist.lock: Permission denied
Jul 24 09:00:00 beta spamd[2358]: auto-whitelist: open of auto-whitelist
file failed: locker: safe_lock: cannot create tmp lockfile
/var/spool/mail/.spamassassin/auto-whitelist.lock.beta.rg.co.id.2358 for
/var/spool/mail/.spamassassin/auto-whitelist.lock: Permission denied
Jul 24 09:00:00 beta spamd[2358]: bayes: locker: safe_lock: cannot
create tmp lockfile
/var/spool/mail/.spamassassin/bayes.lock.beta.rg.co.id.2358 for
/var/spool/mail/.spamassassin/bayes.lock: Permission denied
Jul 24 09:00:00 beta spamd[2358]: spamd: clean message (-0.6/5.0) for
mail:8 in 4.9 seconds, 40771 bytes.
Jul 24 09:00:00 beta spamd[2358]: spamd: result: . 0 -
ADVANCE_FEE_1,ALL_TRUSTED,HTML_MESSAGE,INFO_TLD
scantime=4.9,size=40771,user=mail,uid=8,required_score=5.0,rhost=beta.rg.co.id,raddr=127.0.0.1,rport=39352,mid=<200607220320.k6M3JtH9002594 at sigma.rbrana.co.id>,autolearn=failed
==== /var/log/audit/audit.log
type=AVC msg=audit(1153706398.439:33430): avc: denied { getattr } for
pid=2358 comm="spamd" name="servers.catalogue.lst" dev=dm-0 ino=8800183
scontext=system_u:system_r:spamd_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=file
type=SYSCALL msg=audit(1153706398.439:33430): arch=40000003 syscall=195
success=no exit=-13 a0=9d931f0 a1=8c570c8 a2=c18ff4 a3=9d931f0 items=1
pid=2358 auid=4294967295 uid=0 gid=0 euid=8 suid=0 fsuid=8 egid=12
sgid=0 fsgid=12 tty=(none) comm="spamd" exe="/usr/bin/perl"
subj=system_u:system_r:spamd_t:s0
type=AVC_PATH msg=audit(1153706398.439:33430):
path="/var/spool/mail/.razor/servers.catalogue.lst"
type=CWD msg=audit(1153706398.439:33430): cwd="/"
type=PATH msg=audit(1153706398.439:33430): item=0
name="/var/spool/mail/.razor/servers.catalogue.lst" inode=8800183
dev=fd:00 mode=0100644 ouid=8 ogid=12 rdev=00:00
obj=root:object_r:mail_spool_t:s0
type=AVC msg=audit(1153706398.443:33431): avc: denied { getattr } for
pid=2358 comm="spamd" name="servers.catalogue.lst" dev=dm-0 ino=8800183
scontext=system_u:system_r:spamd_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=file
type=SYSCALL msg=audit(1153706398.443:33431): arch=40000003 syscall=195
success=no exit=-13 a0=9d931f0 a1=8c570c8 a2=c18ff4 a3=9d931f0 items=1
pid=2358 auid=4294967295 uid=0 gid=0 euid=8 suid=0 fsuid=8 egid=12
sgid=0 fsgid=12 tty=(none) comm="spamd" exe="/usr/bin/perl"
subj=system_u:system_r:spamd_t:s0
type=AVC_PATH msg=audit(1153706398.443:33431):
path="/var/spool/mail/.razor/servers.catalogue.lst"
type=CWD msg=audit(1153706398.443:33431): cwd="/"
type=PATH msg=audit(1153706398.443:33431): item=0
name="/var/spool/mail/.razor/servers.catalogue.lst" inode=8800183
dev=fd:00 mode=0100644 ouid=8 ogid=12 rdev=00:00
obj=root:object_r:mail_spool_t:s0
type=AVC msg=audit(1153706399.375:33432): avc: denied { write } for
pid=2358 comm="spamd" name=".razor" dev=dm-0 ino=8800180
scontext=system_u:system_r:spamd_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=dir
type=SYSCALL msg=audit(1153706399.375:33432): arch=40000003 syscall=5
success=no exit=-13 a0=a928610 a1=8241 a2=1b6 a3=8241 items=1 pid=2358
auid=4294967295 uid=0 gid=0 euid=8 suid=0 fsuid=8 egid=12 sgid=0
fsgid=12 tty=(none) comm="spamd" exe="/usr/bin/perl"
subj=system_u:system_r:spamd_t:s0
type=CWD msg=audit(1153706399.375:33432): cwd="/"
type=PATH msg=audit(1153706399.375:33432): item=0
name="/var/spool/mail/.razor/servers.catalogue.lst.lock" parent=8800180
dev=fd:00 mode=040755 ouid=8 ogid=12 rdev=00:00
obj=root:object_r:mail_spool_t:s0
type=AVC msg=audit(1153706399.375:33433): avc: denied { write } for
pid=2358 comm="spamd" name=".razor" dev=dm-0 ino=8800180
scontext=system_u:system_r:spamd_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=dir
type=SYSCALL msg=audit(1153706399.375:33433): arch=40000003 syscall=5
success=no exit=-13 a0=a9285d8 a1=8241 a2=1b6 a3=8241 items=1 pid=2358
auid=4294967295 uid=0 gid=0 euid=8 suid=0 fsuid=8 egid=12 sgid=0
fsgid=12 tty=(none) comm="spamd" exe="/usr/bin/perl"
subj=system_u:system_r:spamd_t:s0
type=CWD msg=audit(1153706399.375:33433): cwd="/"
type=PATH msg=audit(1153706399.375:33433): item=0
name="/var/spool/mail/.razor/servers.nomination.lst.lock" parent=8800180
dev=fd:00 mode=040755 ouid=8 ogid=12 rdev=00:00
obj=root:object_r:mail_spool_t:s0
type=AVC msg=audit(1153706400.439:33434): avc: denied { write } for
pid=2358 comm="spamd" name=".spamassassin" dev=dm-0 ino=7767101
scontext=system_u:system_r:spamd_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=dir
type=SYSCALL msg=audit(1153706400.439:33434): arch=40000003 syscall=5
success=no exit=-13 a0=a884720 a1=8241 a2=1b6 a3=8241 items=1 pid=2358
auid=4294967295 uid=0 gid=0 euid=8 suid=0 fsuid=8 egid=12 sgid=0
fsgid=12 tty=(none) comm="spamd" exe="/usr/bin/perl"
subj=system_u:system_r:spamd_t:s0
type=CWD msg=audit(1153706400.439:33434): cwd="/"
type=PATH msg=audit(1153706400.439:33434): item=0
name="/var/spool/mail/.spamassassin/auto-whitelist.lock.beta.rg.co.id.2358"
parent=7767101 dev=fd:00 mode=040700 ouid=8 ogid=12 rdev=00:00
obj=root:object_r:mail_spool_t:s0
type=AVC msg=audit(1153706400.463:33435): avc: denied { getattr } for
pid=2358 comm="spamd" name="bayes_toks" dev=dm-0 ino=7767186
scontext=system_u:system_r:spamd_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=file
type=SYSCALL msg=audit(1153706400.463:33435): arch=40000003 syscall=195
success=no exit=-13 a0=9d931f0 a1=8c570c8 a2=c18ff4 a3=9d931f0 items=1
pid=2358 auid=4294967295 uid=0 gid=0 euid=8 suid=0 fsuid=8 egid=12
sgid=0 fsgid=12 tty=(none) comm="spamd" exe="/usr/bin/perl"
subj=system_u:system_r:spamd_t:s0
type=AVC_PATH msg=audit(1153706400.463:33435):
path="/var/spool/mail/.spamassassin/bayes_toks"
type=CWD msg=audit(1153706400.463:33435): cwd="/"
type=PATH msg=audit(1153706400.463:33435): item=0
name="/var/spool/mail/.spamassassin/bayes_toks" inode=7767186 dev=fd:00
mode=0100600 ouid=8 ogid=12 rdev=00:00 obj=root:object_r:mail_spool_t:s0
type=AVC msg=audit(1153706400.463:33436): avc: denied { write } for
pid=2358 comm="spamd" name=".spamassassin" dev=dm-0 ino=7767101
scontext=system_u:system_r:spamd_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=dir
type=SYSCALL msg=audit(1153706400.463:33436): arch=40000003 syscall=5
success=no exit=-13 a0=a79f970 a1=8241 a2=1b6 a3=8241 items=1 pid=2358
auid=4294967295 uid=0 gid=0 euid=8 suid=0 fsuid=8 egid=12 sgid=0
fsgid=12 tty=(none) comm="spamd" exe="/usr/bin/perl"
subj=system_u:system_r:spamd_t:s0
type=CWD msg=audit(1153706400.463:33436): cwd="/"
type=PATH msg=audit(1153706400.463:33436): item=0
name="/var/spool/mail/.spamassassin/bayes.lock.beta.rg.co.id.2358"
parent=7767101 dev=fd:00 mode=040700 ouid=8 ogid=12 rdev=00:00
obj=root:object_r:mail_spool_t:s0
More information about the fedora-selinux-list
mailing list