Hello again,
To try to make some sense of it I've taken some of this out of order.
On Oct 4, 2020, Matthew Campbell via clamav-users wrote:
On Oct 3, 2020, 4:42 PM, G.W. Haywood via clamav-users wrote:
On Oct 3, 2020, Matthew Campbell via clamav-users wrote:
I've had this problem since I started using Debian Linux months
ago. I'm using Debian Linux 10.6.
/var/local/clamav # freshclam -v --debug -F --user clamav
ERROR: Can't open /var/local/clamav/freshclam.log in append mode (check
permissions!).
...
Directory permisions for /var/local/clamav are 06770 owned by clamav:clamav.
...
I get my copies of ClamAV as a Debian package. I used apt install
clamav. I just upgraded everything to Debian 10.6 two days ago.
Is there any particular reason for using the /var/local/ directory?
I thought Debian maintainers tended to use /var/lib/ more often.
I use a separate file system to keep private data away from the root
Well I'd hardly call ClamAV databases "private data", since they are
available to anyone at the cost of an HTTP request. The authors of
ClamAV do things one way. Debian maintainers do it a different way.
You've done it yet another way. If you began your journey into Linux
with an attempt at a non-standard Debian installation then you likely
bit off more than you could chew and you're making things a lot more
difficult than necessary.
Do you have SELinux or AppArmor installed? You haven't mounted the
partition read-only have you? We'd better see your freshclam.conf.
What do you plan to use ClamAV for?
I use ClamAV for general malware scanning.
Given that you say you've had the problems you're describing since you
started using Linux I wonder if it's never found anything. But if it
did, how do you think it got there and what did you do about it? What
security precautions are you taking to prevent compromises?
You could remove all the clamav packages (there's more than one)
and purge them, then reinstall.
Try it. But don't try anything clever, just let the package manager
do what it wants to do and let it install things where it wants to.
That way at least we'll have a reasonable idea of what you've done.
When you become more familiar with the system you can adjust things
to your needs if it's really necessary. But only if it's necessary.
Please could you paste the output of
ls -l /var/local/
These are the permission in /var/local/
...
drwsrws--- 3 clamav clamav 4096 Oct 3 12:53 clamav
...
Why the setuid/setgid bits? Quoting the 'info coreutils':
"These mechanisms let users share files more easily, by lessening the
need to use ‘chmod’ or ‘chown’ to share new files."
which seems to be the exact opposite of what you're trying to do...
Do the ClamAV daemons run as user clamav? Can we be clear that the
system which is showing us the user and group names is the same one
that's telling you which user and group run the ClamAV daemons? The
reason for asking is that different systems can have a different
mapping of user and group numerical IDs to user and group names, and
there seems to be a lot that you haven't told us yet.
Unfortunately my email app insists on quoting previous
replies. Sorry about that.
You might want to try a different mail client for correspondence on
mailing lists, where patience is often at a premium.
--
73,
Ged.
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
