Maild does no longer work after upgrade to 3.4.0 #1781
Description
Hey,
first of all thanks for this project and for all the hard work put into this.
After upgrading to Gossec hids (local install) 3.4.0 on archlinux (all other packages up-to-date) with a manual installation mails are no longer sent.
I did not change anything at the systemd service or any other file or config.
I use msmtp for sending the mails from the root account and tested its functionality. msmtp is working fine.
This is my global section from the config file.
<global>
<email_notification>yes</email_notification>
<email_to>[email protected]</email_to>
<smtp_server>/usr/bin/msmtp --from="ossec_`hostname`" -t</smtp_server>
<email_from>[email protected]</email_from>
<email_maxperhour>100</email_maxperhour>
</global>
Producing an event that leads to sending an e-mail results in
ossec-maild: DEBUG: Running OS_Sendmail()
ossec-maild: ERROR: No socket.
sendmail: no sender found
When changing the smtp_server line to
<smtp_server>/usr/bin/msmtp --from="ossec_hostname" -t [email protected]</smtp_server>
the error output changes to
ossec-maild: DEBUG: Running OS_Sendmail()
ossec-maild: ERROR: No socket.
It has always worked with the exact same settings before and a downgrade to 3.3 solves the issue. Thanks for any help and looking into this in advance.
Kind regards,
Tom