I recently discovered that spamassasin added the following line to my passwd file:
debian-spamd:x:115:122::/var/lib/spamassassin:/bin/sh
. Why does spamassasin need shell access? Is it safe to disable shell access (f.e. set shell to /usr/sbin/nologin
).
I am running Ubuntu 16.04 LTS + Plesk.