[Mimedefang] clamd is not responding?

Jason Englander jason at englanders.cc
Mon Oct 28 15:17:01 EST 2002


On Wed, 23 Oct 2002, Douglas J Hunley wrote:

> why? pid files go in /var/run, IIRC.

Some do, yes - but when you're dropping privs to user 'defang' you want it
to go into a directory that 'defang' can read/write to.  Like your MD
spool directory.  The socket goes there for the same reason.

> > Here you want the user that MD runs as, probably 'defang'.  If you run
> > MIMEDefang as user 'smmsp', I'd suggest that you change it.
>
> David said this too. Why?

If someone is able to exploit something acting as smmsp they can do
anything that smmsp can do, they can read/write to files and dirs that
smmsp can.  Why broaden that to include anything more than (parts of)
sendmail?  You could run MIMEDefang as user nobody, but if someone breaks
in through a hole in Apache - now they can mess with both.

> I got that part.. just wondering why it doesn't respond

It was the limit of threads you had set, right?  (for those that don't
read the clamav mailing list)

  Jason

-- 
Jason Englander <jason at englanders.cc>
394F 7E02 C105 7268 777A  3F5A 0AC0 C618 0675 80CA






More information about the MIMEDefang mailing list