Amavisd-new and clamav user/group permissions conflictions?
Haulmark, Chris
chris at sigd.net
Sat Oct 16 13:44:43 PDT 2004
I installed security/amavisd-new (2.1.2,1) and chose security/clamav (0.80.r4)
as my antivirus solution.
In the /usr/local/etc/clamd.conf, it had clamav as the default user for clamd
to be running under. /usr/local/etc/amavisd.conf shows vscan as the default
user.
-----------------
%ls -alh /var/amavis/
total 12
drwxr-x--- 5 vscan vscan 512B Oct 16 15:23 .
drwxr-xr-x 24 root wheel 512B Oct 16 14:02 ..
drwx------ 2 vscan vscan 512B Oct 16 16:10 .spamassassin
-rw-r----- 1 vscan vscan 0B Oct 16 16:10 amavisd-24661.lock
-rw-r----- 1 vscan vscan 6B Oct 16 15:23 amavisd.pid
drwxr-x--- 2 vscan vscan 512B Oct 16 15:23 db
drwxr-x--- 4 vscan vscan 512B Oct 16 16:10 tmp
%
-----------------
%ls -alh /var/run | grep clamav
drwxr-xr-x 2 clamav clamav 512B Oct 16 16:09 clamav
%
-----------------
%ps -aux | grep clamd
clamav 24914 0.0 1.2 6808 6348 ?? Ss 4:29PM 0:00.00 /usr/local/sbin/clamd
-----------------
%ps -aux | grep amavisd
vscan 24664 0.0 6.2 33856 32128 ?? I 3:23PM 0:00.50 amavisd (ch2-avail) (perl)
vscan 24663 0.0 6.2 34012 32192 ?? I 3:23PM 0:00.86 amavisd (ch2-avail) (perl)
vscan 24662 0.0 6.2 32952 31852 ?? Ss 3:23PM 0:01.19 amavisd (master) (perl)
-----------------
%cat /var/log/maillog | grep ClamAV | grep denied
Oct 16 16:02:03 xxxxxxxx amavis[24664]: (24664-02) ask_av (ClamAV-clamd) FAILED - unexpected result: /var/amavis/tmp/amavis-20041016T160203-24664/parts: Access denied. ERROR\n
%
-----------------
I could solve this by changing the default user of clamd.conf to vscan then change the
ownership of /var/run/clamav/ to vscan.
I am still not sure if this is by design or actual a confliction and if I should submit
a fix for the first time myself.
--
Chris Haulmark
System Admin. Freelancer
"In market for IT corrections for a salary."
More information about the freebsd-ports
mailing list