Re: [Clamav-users] 0.85 & 0.81.1 tha same troubles with milter

[Krištof Petr]

Tomasz Kojm wrote:
On Tue, 17 May 2005 12:55:36 +0200
Krištof Petr <[EMAIL PROTECTED]> wrote:
 

Sergey is right. This bug is not fixed.
May 17 12:36:41 server clamd: clamd startup succeeded
May 17 12:36:41 server clamd[27991]: HTML support enabled.
May 17 12:36:41 server clamd[27991]: Self checking every 1800 seconds.
May 17 12:36:54 server clamav-milter: /var/log/clamav/clamd.log: 
Permission denied
   

The original bug was related to /dev/console. The above seems like
a standard permission problem.
 

I reported this bug one week before. But once again:
# uname -mpio
i686 i686 i386 GNU/Linux
# clamd -V
ClamAV 0.85.1/882/Tue May 17 08:48:03 2005
# clamav-milter -V
ClamAV version 0.85.1, clamav-milter version 0.85
# ll /var/log
total 42860
drwxr-xr-x  14 root    root       4096 May 17 12:36 .
drwxr-xr-x  23 root    root       4096 Jan  7 14:52 ..
-rw-------   1 root    root      21573 Feb  1 04:02 boot.log.4
drwxr-xr-x   2 clamav  clamav     4096 May 17 13:05 clamav
-rw-r--r--   1 root    root     183414 May 17 13:01 cron
# ll /var/log/clamav/
total 16
drwxr-xr-x   2 clamav clamav 4096 May 17 13:08 .
drwxr-xr-x  14 root   root   4096 May 17 12:36 ..
-rw-r-----   1 clamav clamav  474 May 17 13:05 freshclam.log
# service clamd start
Starting Clam AV daemon:                                   [  OK  ]
# ll /var/log/clamav/
total 20
drwxr-xr-x   2 clamav clamav 4096 May 17 13:09 .
drwxr-xr-x  14 root   root   4096 May 17 12:36 ..
-rw-r-----   1 root   root   1417 May 17 13:09 clamd.log
-rw-r-----   1 clamav clamav  474 May 17 13:05 freshclam.log
# service clamav-milter start
Starting clamav-milter:                                    [FAILED]
# tail -f /var/log/messages
May 17 13:13:42 server clamav-milter: /var/log/clamav/clamd.log: 
Permission denied

and clamav-milter is not running.
# grep User /etc/clamd.conf
User clamav
My observation is: clamav creates log file with root permission,
so user clamav cannt write to log.
Are there some developers who believes that non-priviledged user clamav
can write to logfile with bad permissions (0640 root.root clamd.log)?
This assumption is wrong on some unix like OSes, Im affraid.
Clamav should create log file with same owner as defined in clamd.conf
to work it properly.
Petr
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html