As promised before, I spent time to play with it.Jim Maul wrote:
user qscand andI just upgraded my clamav RPMs from 0.70rc to 0.70 (from http://crash.fce.vutbr.cz/crash-hat/1/clamav/)
Since i am running qmail with qmail-scanner, i run clamav as
have to change /var/run/clamav, /var/log/clamav and /var/lib/clamav to bethree of these
owned by qscand. While upgrading to 0.70 i noticed that all
Hello Jim,directories have changed back to clamav.clamav. Would it be possible to NOT change ownership back to clamav during an upgrade?
Its not that big of a deal, just sorta annoying.
thanks for feedback.
RPM has ability to enforce file/directory permissions and owners. This is usualy used for security reason on critical directories/files as a protection against inexperienced admins.
But your request is valid.
I will try to change package behaviour to - first instance of package on system will install these directories with clamav user - all next pieces will respect the actual setting, so if you changed owner, your setting will be untouched.
Does it meet your needing?
Petr
Sounds very good to me. The only time i see this behavior being a problem is if someone wants to reinstall the rpm to fix a permission problem. In that case i suppose they would have to delete the directories and then reinstall so even that wouldnt be too bad.
Rpm always install files with root ownership until you name explicit user in spec file. No way to ignore file owner or leave it untouched.
Only solution is to make %post install script and run it after each upgrade to check actual clamav user and turn it back - look at code below.
There is new package at
http://crash.fce.vutbr.cz/crash-hat/testing/1/clamav/
%changelog * Mon May 10 2004 Petr Kriïtof <Petr|Kristof_CZ> 0.70-2 - Update to clamav-logwatch 0.30 - Add %post check for non clamav user file ownership - Add freshclam cron script by Milan Kerïlïger <kerslage|linux_cz> - Remove --noreject option to clamav-milter
Test it and let me know.
Petr
Post install script is:
# Change back file owner for systems with non clamav user
CLAMUSER=`grep ^User /etc/clamav.conf | cut -d ' ' -f2`
if [ -z $CLAMUSER ] ; then
CLAMUSER="clamav"
fi
if [ $CLAMUSER != "clamav" -a `/usr/bin/id $CLAMUSER > /dev/null 2>&1 ; echo $?` = 0 ] ; then
chown root:$CLAMUSER %{_sysconfdir}/clamav.conf
chown root:$CLAMUSER %{_sysconfdir}/freshclam.conf
chown -R $CLAMUSER:$CLAMUSER %{_localstatedir}/lib/clamav/
chown -R $CLAMUSER:$CLAMUSER %{_localstatedir}/log/clamav/
chown -R $CLAMUSER:$CLAMUSER %{_localstatedir}/run/clamav/
fi
#
-------------------------------------------------------
This SF.Net email is sponsored by Sleepycat Software
Learn developer strategies Cisco, Motorola, Ericsson & Lucent use to deliver higher performing products faster, at low TCO.
http://www.sleepycat.com/telcomwpreg.php?From=osdnemail3
_______________________________________________
Clamav-users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/clamav-users
