[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-25 Thread Launchpad Bug Tracker
This bug was fixed in the package clamav - 0.97.2+dfsg-1ubuntu2 --- clamav (0.97.2+dfsg-1ubuntu2) oneiric; urgency=low [ Imre Gergely ] * Fix clamd apparmor profile to work with mimedefang (LP: #829089) * Stop samba related log spamming from freshclam apparmor profile (LP: #

[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-25 Thread Scott Kitterman
** Changed in: clamav (Ubuntu) Status: Confirmed => In Progress ** Changed in: clamav (Ubuntu) Assignee: (unassigned) => Scott Kitterman (kitterman) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in Ubuntu. https://

[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-20 Thread Brian Murray
** Tags added: patch -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in Ubuntu. https://bugs.launchpad.net/bugs/829089 Title: clamd scanning mimedefang temp files blocked by apparmor To manage notifications about this bug go

[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-19 Thread Imre Gergely
Tested and working with your more restrictive version root@utest-oos32:/etc/mail# cat /etc/apparmor.d/usr.sbin.clamd | grep -i mimedefang # For mimedefang integration /var/spool/MIMEDefang/mdefang-*/Work/ r, /var/spool/MIMEDefang/mdefang-*/Work/** r, Aug 19 22:29:29 utest-oos32 kernel: [ 9

[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-19 Thread Imre Gergely
This is what it looks like: root@utest-nns32:/var/spool/MIMEDefang/mdefang-p7JIVdIk002047# ls -la total 32 drwxr-x--- 4 defang defang 4096 2011-08-19 21:31 . drwxr-x--- 4 defang defang 4096 2011-08-19 21:31 .. -rw-r- 1 defang defang 513 2011-08-19 21:31 COMMANDS -rw-r- 1 defang defang 56

[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-19 Thread Jamie Strandboge
'/var/spool/MIMEDefang/** r,' looks good. It is similar for what we are doing with all the others (amavis, havp, etc). -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in Ubuntu. https://bugs.launchpad.net/bugs/829089 Title: cl

[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-19 Thread Jamie Strandboge
I'm not up on current mimedefang, but doing something like this would be even better: /var/spool/MIMEDefang/mdefang-*/Work/ r, /var/spool/MIMEDefang/mdefang-*/Work/** r, If mimedefang's spool directory only contains the files to be scanned, then the easier to maintain '/var/spool/MIMEDefang/*

[Bug 829089] Re: clamd scanning mimedefang temp files blocked by apparmor

2011-08-18 Thread Imre Gergely
Adding the following rule to /etc/apparmor.d/usr.sbin.clamd resolves the problem apparently /var/spool/MIMEDefang/** r, Scanning works: Aug 19 02:04:31 utest-nns32 mimedefang.pl[4544]: MDLOG,p7IN4UXO005515,virus,Eicar-Test-Signature,172.16.21.1,,,[TESTMAIL] eicar test mail Aug 19 02:04:31 utes