Le 21/09/2011 20:35, Florian Hubold a écrit :
Hello,
during validation of validation of msec/sectool update candidates,
a problem showed up: https://bugs.mageia.org/show_bug.cgi?id=1621
...
But if we want security reports to be sent to local users if they
specify so, how to proceed further?
msec can work very well without sending these reports by email; all the
security's reports are available in /var/log/security, and msec notifies
the user about this at each time it runs, so sendmail is absolutely not
mandatory.
So I think that msec shouldn't have a Requires on sendmail-command,
eventually it can be a Suggest.
But perhaps we could/should change the configuration of msec to not send
email by default, by adding MAIL_WARN=no in
/etc/security/msec/security.conf.
--
Luc Menut
