On Sat, 29 May 2004 14:47:00 +0200 "Jerome Loyet" <[EMAIL PROTECTED]> wrote:
> > > Kevin Spicer wrote: > > > > On Thu, 2004-05-27 at 09:21, Mr Mailing List wrote: > > > > > > > >>Just noticed that scanning files with clamdscan does not scan > > > >>filesthat are not world readable. > > > > > > > > > > > > Perhaps it would be better if clamd could implement some kind of > > > > > > > > privilege separation, so that a minimal process running as root > > > > reads the files, but an unpriviledged process could > > actually do all > > > > the processing? > > > > > > > Good point. > > > > Please remember that clamd is a multithreaded application and > > such a separation is not possible because it will affect the > > main thread. A simpler (but slower) solution is to implement > > a workaround in clamdscan > > - verify if clamd is able to scan a file and if it isn't send > > it to a socket (STREAM) or (even better) create a copy with > > proper permissions in /tmp and pass it to clamd. > > And a unprivileged user could have access to root files. This is > unthinkable. If there's a bug in the main thread anyone could access > to any files. Yes, that's why the solution I proposed although not very efficient is far less problematic. -- oo ..... Tomasz Kojm <[EMAIL PROTECTED]> (\/)\......... http://www.ClamAV.net/gpg/tkojm.gpg \..........._ 0DCA5A08407D5288279DB43454822DC8985A444B //\ /\ Sat May 29 14:55:48 CEST 2004
pgpQ8fnE9yNyW.pgp
Description: PGP signature
