Quỳnh H Nguyễn wrote:
> Dear Edwin,
>
> I think you are right. When I turn off SELinux temporary (permissive mode)
> or permanent (disable), and reboot the system, clamd service start ok. I
> tried the command "sudo -i:3310", there is an clamd process listenning at
> that port.
>
> Oh, that means the config of SELinux is wrong? How can I still use SELinux
> but the clamd has right to run in SELinux enforcing mode? I'm newbie, so too
> hard to have a deep understand about SELinux and config it.
>
It could be a new feature of clamav that is not allowed by the SELinux
policy.
What Linux distribution are you using (is it Fedora 8?)
It would be useful to show us the SELinux error messages, so we know
whats wrong.
Look for them in /var/log/messages, or /var/log/audit/audit.log (they
should be logged even in permissive mode).
Also the output of ls -lRZ /var/clamav that i have asked for in my
previous mail.
Those messages look like this (but of course with exe=/usr/sbin/clamd):
|avc: denied { search } for pid=8753 exe=/usr/bin/nmap name=nmap dev=dm-4
ino=100533 scontext=root:sysadm_r:traceroute_t tcontext=system_u:
object_r:traceroute_t tclass=dir|
Best regards,
--Edwin
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://lurker.clamav.net/list/clamav-users.html
