Dave,
Now that you mention it, James Ralston put in a request to get the policy
updated awhile back.
Did a bit of searching and here's the bug report detailing the root of the
problem and a local policy fix which should resolve the policy issue for
everyone in the interim: https://bugzilla.redhat
Mickey,
Do you know what needs to be updated in the policies?
Best regards,
Dave
On Thu, 14 Feb 2019 at 15:59, Mickey Sola wrote:
> Hi all,
>
> I couldn't get this issue to reproduce on my test system, but I've put
> together a very quick and dirty patch that *should* allow for clamd to
> reco
Hi all,
I couldn't get this issue to reproduce on my test system, but I've put
together a very quick and dirty patch that *should* allow for clamd to
recover from an unexpected SELinux denial. It's not an ideal fix, but I'm
hoping it'll work as intended and will fit your needs until the policy is
Hi,
We are also seeing the same issue. Did anyone make any progress with this?
The odd thing is, we aren't even seeing any denials in the audit log for
SELinux, and we have the SELinux booleans set for ClamAV.
When we try to do exclusions, we are also seeing things like this:
"Permission denied
is problem?
Best regards,
Jens
-Original Message-
From: Rob Fulton
Sent: Friday, December 14, 2018 4:55 PM
To: clamav-users@lists.clamav.net
Subject: [clamav-users] Using OnAccess scanning with Selinux
Hi,
I'm trying to run clamav with ScanOnAccess on the / mount on a box running
Hi,
I'm trying to run clamav with ScanOnAccess on the / mount on a box
running selinux. I've enabled antivirus_can_scan_system in selinux but
shortly after startup clamav stops scanning reporting the following :
ERROR: ScanOnAccess: Internal error (failed to read data) ... Permission
denied
