Package: amavisd-new
Version: 1:2.4.2-1
Severity: wishlist
Please forward upstream as you see appropriate.
p0f has the ability to run as a daemon and support queries via a unix
named pipe interface into the cache. Before p0f 2.0.7, this interface
wasn't useful to amavis because queries required a source port and
address for the inbound smtp connection and all amavis knew was the
source address.
This was fixed in 2.0.7 and later with the '-0' option.
The p0f analyze script is a tad complex and yet another piece of software
that needs to be debugged and maintained for security issues. There is
no clean and good way to run p0f and the analyze script as daemons under
the debian start stop daemon process. However, p0f-analyze really serves
no purpose if amavis can make direct queries of the p0f daemon.
Please fix amavis to make direct queries of the p0f daemon. Here's an
example code fragment that shows how easy this actually is:
Start p0f with something like:
p0f -i any -u amavis -Q /var/run/amavis/amavis_p0f.sock -0 -MVT10 -qKU \
'dst port 25'
Query p0f with code that looks like this:
http://www.tuxland.pl/misc/os-greylist.pl
This file is a postfix plugin, but the query code is obvious and it should
be fairly easy to replace the os fingerprint code in amavis right now.
Paul
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (650, 'testing'), (600, 'unstable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.16-2-686-smp
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Versions of packages amavisd-new depends on:
ii adduser 3.97 Add and remove users and groups
ii debconf [debconf-2.0] 1.5.3 Debian configuration management sy
ii file 4.17-3 Determines file type using "magic"
ii libarchive-tar-perl 1.30-1 Archive::Tar - manipulate tar file
ii libarchive-zip-perl 1.16-1 Module for manipulation of ZIP arc
ii libberkeleydb-perl 0.29-1 use Berkeley DB 4 databases from P
ii libcompress-zlib-perl 1.42-1 Perl module for creation and manip
ii libconvert-tnef-perl 0.17-5 Perl module to read TNEF files
ii libconvert-uulib-perl 1.06-1 Perl interface to the uulib librar
pn libdigest-md5-perl <none> (no description available)
ii libio-stringy-perl 2.110-1 Perl5 modules for IO from scalars
ii libmailtools-perl 1.74-0.1 Manipulate email in perl programs
pn libmime-base64-perl <none> (no description available)
ii libmime-perl 5.420-0.1 Perl5 modules for MIME-compliant m
ii libnet-perl 1:1.19-3 Implementation of Internet protoco
ii libnet-server-perl 0.90-1 An extensible, general perl server
ii libunix-syslog-perl 0.100-5 Perl interface to the UNIX syslog(
ii perl [libtime-hires-perl] 5.8.8-6.1 Larry Wall's Practical Extraction
ii perl-modules [libnet-perl] 5.8.8-6.1 Core Perl modules
amavisd-new recommends no packages.
-- debconf information:
amavisd-new/outdated_config_style_warning:
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
