Re: [exim] Virus/Malware errors: extra odd behavior

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Cyborg
Datum:  
To: exim-users
Betreff: Re: [exim] Virus/Malware errors: extra odd behavior
Am 19.01.21 um 08:32 schrieb Dan Egli via Exim-users:
> While testing, I noticed something else completely bizzare. If I run
> the malware test as root and place the test file in /root (i.e. # exim
> -bmalware ~/eicar.com.txt) get the error I mentioned.


Exim runs als none privileged user "exim". Ergo: no access to /root/ .

best read in the exim manpage or docs :

-bmalware <filename>
                 This debugging option causes Exim to scan the given
file or directory (depending on the used scanner
                 interface),  using the malware scanning framework. The
option of av_scanner influences this option,
                 so if av_scanner's value is dependent upon an
expansion then  the  expansion  should  have  defaults
                 which  apply  to this invocation.  ACLs are not
invoked, so if av_scanner references an ACL variable
                 then that variable will never be populated and
-bmalware will fail.

                 Exim will have changed working directory before
resolving the filename,  so  using  fully  qualified
                 pathnames  is  advisable. *Exim  will  be running as
the Exim user when it tries to open the file,**
**                 rather than as the invoking user.*  This option
requires admin privileges.


Best regards,
Marius