amavis user login shell needed?

Dominic Raferd dominic at
Thu Feb 18 08:23:24 CET 2021

On 17/02/2021 18:18, Alexander Dalloz wrote:
> Am 17.02.2021 um 12:44 schrieb Dominic Raferd:
>> On Linux, is it necessary that the amavis user have a valid login 
>> shell such as /bin/sh? For security I would prefer it to use a null 
>> shell.
>> If it makes a difference, our amavis calls clamdscan with --fdpass 
>> (the 'modern' way). And of course amavis uses SA in the normal way.
> /sbin/nologin is valid and sufficient.
> Alexander

Thanks that is helpful, I have implemented it now. In my case:

# usermod --shell /usr/sbin/nologin amavis
# usermod --shell /usr/sbin/nologin debian-spamd

More information about the amavis-users mailing list