[opendmarc-users] opendmarc.dat owned by root

[A. Schulze]

Am 10.10.19 um 20:22 schrieb Dino Edwards:
> Hopefully someone can shed some light on this. Over the last couple of days, two of our servers have been exhibiting a weird issue where the /var/run/opendmarc.dat file's ownership has changed to root instead of the opendmarc user. The fix is to change the ownership back to the opendmarc user, restart opendmarc and everything is okay until it happens again, which happens once a day from what I can tell. The servers have been working with no issues for many months, this just started yesterday.

Hello Dino,

(added opendmarc-users at trusteddomain.org)

anyway: check, your opendmarc process is running with a non root uid.
That will exclude opendmarc process it self as reason for changed ownership.

opendmarc.dat is used to store validation results for DMARC reporting.
OpenDMARC only append data to that file. Some external scripts must read and flush the data.
Otherwise the file would grow continuously.

You may search for changes in that direction. Search for remote logins, inspect cronjobs and log rotation.

Andreas