[Avcheck] avcheck & unknown user

[Michael Tokarev]

sergey akifiev wrote:
[]
> I've using sendmail 8.11.6 + avcheck 0.8, configured according to the
> README.Sendmail (with small fixes :-) )

No avcheck authors uses Sendmail.  Settings for Sendmail was contributed
by a friend of mine.  He updated his configs since that, I'll ask him about
his mods (and thank you for your diff, I'll update README (but I can't test
that)).  Author of sendmail stuff is at vacation now, so I don't expect he
will answer very soon (that is unfortunate because I want to make new release).

>    And I faced a problem: when
> avcheck trying to inject checked mail back to sendmail system and if
> mail is directed to unknown local user, then this letter get stuck in
> mail queue with message 'AVCHECK mailer fails with EX_TEMPFAIL' (or
> something like that).
> I've managed to solve this problem by adding `-ODeliveryMode=d' swith
> to sendmail command line. but this method adds additional delay (in my
> case - 10 minutes). May be there is another, more elegant method?
> Except avcheck hacking?

There should be no avcheck hacking required.  The problem, as I see it, is
that sendmail will accept mail to ANY user with the modification described
in README.Sendmail.  The same is true for setup recommended for sendmail
by KAV folks, and by several other antivirus vendors (when not using milter).

The solution you found is a solution.  The best IMHO is to try to refuse
mail for unknown users at SMTP port (in a combination with something as you
did above).  I need a consultation with a "sendmail guru" for that -- I
stopped using Sendmail more than 4 years back.  I hope that friend of mine
who contributed README.Sendmail will be able to answer our questions.
Or maybe amavis folks?

Other than that, I'm sorry I can't help.

Hm.. Maybe it is worth an effort to "teach" avcheck to work with milter API?

Regards,
 Michael.