amavis user login shell needed?
Dominic Raferd
dominic at timedicer.co.uk
Thu Feb 18 08:23:24 CET 2021
On 17/02/2021 18:18, Alexander Dalloz wrote:
> Am 17.02.2021 um 12:44 schrieb Dominic Raferd:
>> On Linux, is it necessary that the amavis user have a valid login
>> shell such as /bin/sh? For security I would prefer it to use a null
>> shell.
>>
>> If it makes a difference, our amavis calls clamdscan with --fdpass
>> (the 'modern' way). And of course amavis uses SA in the normal way.
>
> /sbin/nologin is valid and sufficient.
>
> Alexander
Thanks that is helpful, I have implemented it now. In my case:
# usermod --shell /usr/sbin/nologin amavis
# usermod --shell /usr/sbin/nologin debian-spamd
More information about the amavis-users
mailing list