On Thu, 2009-05-14 at 14:18 +0200, Micha Lenk wrote: > Did you try to run the script clamav-unofficial-sigs with a different > user than root? I believe this would be a benefit regarding security. As > far as I have found out the script should run just fine as a > non-privileged user if the files it needs to write in /var/lib/clamav/ > are owned by the same user running the script.
I haven't tried yet, but I agree it is a good idea. I guess I'd have to run it as the clamav user since that is the owner of /var/lib/clamav/. I've modified the permissions and cron job on my laptop to test it out and will upload a fixed version to NEW & people.d.o if it works OK. -- bye, pabs http://wiki.debian.org/PaulWise
signature.asc
Description: This is a digitally signed message part
