[Esd-l] recipiant not recieving notification
Chris Freeman
cfree at ardec.com.au
Tue Feb 10 22:18:51 PST 2004
Hi all,
I am having trouble getting the sanitiser to notify the recipient when
they have a message quarantined. From what I can see it should simply be
a matter of adding the line SECURITY_NOTIFY_RECIPIENT=YES to my
procmailrc file, but this does not work.
If I edit the line --echo "To: <$LOGNAME>";\-- in the --*
SECURITY_NOTIFY_RECIPIENT ?? [^ ]-- section of
html-trap.procmail.nomacroscan file to point to an address than
everything works ie: --echo "To: cfree at ardec.com.au";\-- then cfree gets
the notification.
So the problem seems to be with the $LOGNAME variable. But I can't trace
the problem back futher than that.
Does anyone have any suggestions on where I should look next. I am
running out of ideas.
Thanks in advance for any help offered.
We are running this with qmail on solaris.
my procmailrc includes:
SECURITY_NOTIFY="antivirus"
SECURITY_NOTIFY_RECIPIENT=YES
SECURITY_STRIP_MSTNEF=YES
SECRET="srlsakdjflaksjdf"
DEBUG=YES
DEBUG_VERBOSE=YES
SECURITY_QUARANTINE=/mail/shared/.quarantine/
INCLUDERC=/usr/local/procmail/etc/procmail/local-rules.procmail
INCLUDERC=/usr/local/procmail/etc/procmail/html-trap.procmail.nomacroscan
INCLUDERC=/usr/local/procmail/etc/spamassassin.procmail
The procmail.log output includes
--snip---
Procmail: Assigning "LOG=
NOTIFY RECIPIENT
"
NOTIFY RECIPIENT
procmail: Executing " ( \
echo "To: <$LOGNAME>";\
echo 'From: "Procmail Security daemon"'
"<${SECURITY_LOCAL_POSTMASTER}>";\
echo 'Subject: SECURITY WARNING - email quarantined';\
echo ;\
if [ -f "$SECURITY_NOTIFY_RECIPIENT" -a -s
"$SECURITY_NOTIFY_RECIPIENT" -a -r "$SECURITY_NOTIFY_RECIPIENT" ] ;\
then \
cat $SECURITY_NOTIFY_RECIPIENT; \
else \
echo '*** SECURITY WARNING ***';\
echo 'Our email gateway has detected that a message sent
to you';\
echo 'MAY contain hazardous embedded scripting or
attachments.';\
echo 'The message has been quarantined or discarded per
our site security policy.';\
echo 'Please contact your system administrator for
further details.';\
echo ;\
fi ;\
echo ;\
echo "$REPORT";\
echo "$SCORE";\
echo "$STATUS_PUBLIC";\
echo ;\
echo 'Headers from message:';\
echo ;\
sed -e 's/^/> /' ;\
echo ;\
echo '--';\
echo 'Message sanitized on' $HOST;\
echo 'See
http://www.impsec.org/email-tools/sanitizer-intro.html for details.';\
echo ;\
) | $SENDMAIL $MTA_FLAGS_HDRS"
procmail: Assigning "LASTFOLDER= ( \
echo "To: <$LOGNAME>";\
echo 'From: "Procmail Security daemon"'
"<${SECURITY_LOCAL_POSTMASTER}>";\
echo 'Subject: SECURITY WARNING - email quarantined';\
echo ;\
if [ -f "$SECURITY_NOTIFY_RECIPIENT" -a -s
"$SECURITY_NOTIFY_RECIPIENT" -a -r "$SECURITY_NOTIFY_RECIPIENT" ] ;\
then \
cat $SECURITY_NOTIFY_RECIPIENT; \
else \
echo ;\
fi ;\
echo ;\
echo "$REPORT";\
echo "$SCORE";\
echo "$STATUS_PUBLIC";\
echo ;\
echo 'Headers from message:';\
echo ;\
sed -e 's/^/> /' ;\
echo ;\
echo '--';\
echo 'Message sanitized on' $HOST;\
echo 'See
http://www.impsec.org/email-tools/sanitizer-intro.html for details.';\
echo ;\
) | $SENDMAIL $MTA_FLAGS_HDRS"
procmail: Assigning
"LASTFOLDER=/mail/shared/.quarantine/new/1076471718.24169_1.monkey"
procmail: Unlocking "/mail/shared/.quarantine/.lock"
procmail: Notified comsat:
"cfree at 0:/mail/shared/.quarantine/new/1076471718.24169_1.monkey"
From cfree6223 at hotmail.com Wed Feb 11 03:55:18 2004
Subject: test ZZZ
Folder:
/mail/shared/.quarantine/new/1076471718.24169_1.monkey 10258
More information about the esd-l
mailing list