Re: [Exim] Exiscan and Clam Antivirus (SOLVED)

Top Page
Delete this message
Reply to this message
Author: Patrick Boutilier
Date:  
To: Tom Kistner
CC: exim-users
Subject: Re: [Exim] Exiscan and Clam Antivirus (SOLVED)
I went as far as using this:

exiscan_scanner_path = /usr/local/exim-scan/bin/clamscan.sh


where clamscan.sh was just this:

#!/bin/sh
echo FOUND



Once again running in the foreground worked (rejected every mail of
course) but not in the background. The problem is with this:


exiscan: calling scanner as '/usr/local/exim-scan/bin/clamscan.sh
/var/spool/exim-scan/scan/17FHuo-0005WQ-00 2>&1 >
/var/spool/exim-scan/scan/17FHuo-0005WQ-00/17FHuo-0005WQ-00-scanner_output'


The 2>&1 is in the wrong spot. It should read:

exiscan: calling scanner as '/usr/local/exim-scan/bin/clamscan.sh
/var/spool/exim-scan/scan/17FI4m-0006zX-00 >
/var/spool/exim-scan/scan/17FI4m-0006zX-00/17FI4m-0006zX-00-scanner_output
2>&1'



So I changed line 813 of the patch from:


sprintf(miscfilepath,"%s 2>&1 >
%s/%s-scanner_output",miscfilepath,unpackdir,id);


to:

sprintf(miscfilepath,"%s > %s/%s-scanner_output
2>&1",miscfilepath,unpackdir,id);



Now it works in the background as well. Any reason why the 2>&1 is where
it is?






Tom Kistner wrote:
> On Mon, Jun 03, 2002 at 09:16:45PM -0300, boutilpj (boutilpj@???) wrote:
>
>
>>2002-06-03 21:07:59 17F1rj-0005tt-00 temporarily rejected by
>>local_scan(): exiscan: unable to open scanner output file for reading:
>>/var/spool/exim-scan/scan/17F1rj-0005tt-00/17F1rj-0005tt-00-scanner_output
>
>
> This looks like a permission problem. What user does exim run as in daemon
> mode ? Is the scanner installed setuid ? It looks like exim is not allowed
> to read the file produced by the scanner.
>
> /tom
>