correction: was: WARNING CENTOS USERS! BEWARE AUTO YUM INSTALL OF 3.3.1!
On Wed, 24 Mar 2010, Charles Gregory wrote: Had a nice HEART-STOPPING moment this morning! Logged in and found my mailbox had no new mail! WTF!?? Checked the logs and discovered that my nightly automatic updates via YUM had pulled in the new SA 3.3.1-3. WARNING: Centos does NOT run the required sa-update to get all the files into shape to run with the new SA engine! SA will ERROR. rather: ... some third-party repository packagings, oriented to be used on CentOS, do not ... The CentOS provided packages are fine -- the independent packager aftermarket has the unexpected behaviour -- Russ herrold herr...@centos.org
RE: Upgrading to SpamAssassin 3.3
On Wed, 17 Mar 2010, Kaleb Hosie wrote: I do have a test VM so I thought I would go ahead and try out 3.3.0 for now. I ran into a bit of an issue with the NetAddr::IP module. I've installed it but when I try to install the built RPM file it gives me this error: error: Failed dependencies: perl(NetAddr::IP) >= 4.000 is needed by perl-Mail-SpamAssassin-3.3.0-1.i386 [r...@mailgate i386]# perl -le 'use NetAddr::IP; print NetAddr::IP->VERSION' 4.027 I've searched google and it seems that I'm not the first to have this problem but I can't seem to find a solution. Have any of you run into this problem? I gather all dependencies for the latest and greatest. The SPPM package for that comes from EPEL a bit ago and will build under CentOS 5 -- see: ftp://ftp.owlriver.com/pub/mirror/ORC/spamassassin/ I see Red Hat bleeding have moved on: ./mirror/redhat/rawhide/SRPMS/perl-NetAddr-IP-4.027-2.fc13.src.rpm I note this banner during the rebuild of the latter: Versions before 3.25 recognized by default IP addresses as returned by inet_aton. This is no longer the default. To enable this behavior again, the module must be use()d as use NetAddr::IP ':aton'; Versions before 4.08 recognized the above syntax. This behavior is fundamentally broken, is DEPRECATED and WILL BE REMOVED in version 5.0 Use this method to create new objects from 'aton's $ip = new_from_aton NetAddr::IP(inet_aton('1.2.3.4')) Checking if your kit is complete... ... --- quote ends I'll rebuilt under CentOS 5 to remove the SRPM md5sum incompatability, and have pushed that perl-NetAddr-IP-4.027-2 ou. The later version will appear on my mirror tomorrow in that same directory. -- Russ herrold
SA 3.3.0 spamassassin taint issue
I have not gotten this into the bugzilla, but ... as it appeas a 3.3 release is imminent, I though I should mention seeing this in my log files: I am getting this: Jan 20 18:17:40 vm049244181 spamd[14023]: spamd: Insecure dependency in chown while running with -T switch at /usr/lib/perl5/vendor_perl/5.8.8/Mail/SpamAssassin.pm line 1934, line 2. which is: if (($< == 0) && ($> == 0) && defined($user)) { # chown it my ($uid,$gid) = (getpwnam($user))[2,3]; unless (chown($uid, $gid, $fname)) { warn "config: couldn't chown $fname to $uid:$gid for $user: $!\n"; } sort of a sketchy test for 'root' here also I searched the bugzilla, but nothing relevant found with: https://issues.apache.org/SpamAssassin/buglist.cgi?quicksearch=spamassassin+taint --- it looks like a prior similar fix here: http://mail-archives.apache.org/mod_mbox/spamassassin-commits/200909.mbox/%3c20090917234411.9d6e22388...@eris.apache.org%3e # # If vpopmail config enabled then set $userdir to virtual homedir # - no re 'taint'; - my $username_untainted = ( $username =~ /^([-:,.=+a-za-z0...@~]+)$/ ? $1 : undef ); - use re 'taint'; + my $username_untainted; + $username_untainted = +untaint_var($username) if $username =~ /^[-:,.=+a-za-z0-...@~]+\z/; -- Russ herrold
Re: How to tell if sa-update is actually running
On Fri, 8 Jan 2010, mouss wrote: you can query DNS to get the "version" of the rules. for example: $ host -t txt "*.2.3.updates.spamassassin.org" *.2.3.updates.spamassassin.org descriptive text "895075" (2.3 is the "reverse" of 3.2, which corresponds to the SA version you use). Looks like 3.3 is not so behaving [herr...@new .procmail]$ host -t txt "*.2.3.updates.spamassassin.org" *.2.3.updates.spamassassin.org descriptive text "895075" [herr...@new .procmail]$ host -t txt "*.3.3.updates.spamassassin.org" Host *.3.3.updates.spamassassin.org not found: 3(NXDOMAIN) [herr...@new .procmail]$ rpm -q spamassassin spamassassin-3.3.0-0.29.rc1 [herr...@new .procmail]$ -- Russ herrold
Re: Apache SpamAssassin 3.2.0 using older version of ImageInfo
On 2 May 2007 at 15:32, Rose, Bobby wrote: > The ImageInfo packaged with 3.2.0 isn't the latest version from SARE as > it's missing the image_name_regex method. > > -=B > > I can not even get the 3.2 to run cleanly due to ImageInfo. When I leave the ImageInfo in the init.pre and in the plugin directory I get: warn: Subroutine new redefined at /etc/mail/spamassassin/ImageInfo.pm line 68. [10997] warn: Subroutine _get_images redefined at /etc/mail/spamassassin/ImageInfo.pm line 193. [10997] warn: Subroutine image_named redefined at /etc/mail/spamassassin/ImageInfo.pm line 230. [10997] warn: Subroutine image_count redefined at /etc/mail/spamassassin/ImageInfo.pm line 246. [10997] warn: Subroutine pixel_coverage redefined at /etc/mail/spamassassin/ImageInfo.pm line 262. [10997] warn: Subroutine image_to_text_ratio redefined at /etc/mail/spamassassin/ImageInfo.pm line 278. [10997] warn: Subroutine image_size_exact redefined at /etc/mail/spamassassin/ImageInfo.pm line 300. [10997] warn: Subroutine image_size_range redefined at /etc/mail/spamassassin/ImageInfo.pm line 316. [10997] warn: Subroutine result_check redefined at /etc/mail/spamassassin/ImageInfo.pm line 344. If I take the ImageInfo out , I get: warn: plugin: failed to parse plugin /etc/mail/spamassassin/ImageInfo.pm: Can't locate /etc/mail/spamassassin/ImageInfo.pm in @INC (@INC contains: /usr/lib/perl5/vendor_perl/5.8.0/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.0 /usr/lib/perl5/5.8.0/i386-linux-thread-multi /usr/lib/perl5/5.8.0 /usr/lib/perl5/site_perl/5.8.0/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.0 /usr/lib/perl5/site_perl /usr/lib/perl5/vendor_perl) at /usr/lib/perl5/vendor_perl/5.8.0/Mail/SpamAssassin/PluginHandler.pm line 97. Running sendmail 8.13 and spamassassin via procmail.