2017-06-29 14:40 GMT+02:00 Alex <[email protected]>: > Hi, > > On Thu, Jun 29, 2017 at 3:55 AM, Juan Orti Alcaine > <[email protected]> wrote: > > 2017-06-29 3:17 GMT+02:00 Alex <[email protected]>: > >> > >> However, it still doesn't work. It still reports > >> > >> (!)Avira SAVAPI av-scanner FAILED: run_av error: All attempts (1) > >> failed connecting to savapi:/var/tmp/.savapi3\n > >> > >> The savapi process is listening on that socket: > >> # lsof > >> /var/tmp/.savapi3 > >> COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE > NAME > >> savapi 17290 amavis 9u unix 0xffff9268134efc00 0t0 6897894 > >> /var/tmp/.savapi3 type=STREAM > >> > >> I'm running savapi as the amavis user with the following: > >> > >> $ ./savapi --no-spv -N --config=savapi.conf --key-file=MYKEY.KEY > >> > >> Is this how you're starting yours as well? > >> > >> When I run status, I get the following: > >> > >> # ./savapi --status > >> SAVAPI service, running on the interface '/var/tmp/.savapi3:0', status > >> check successful. > >> > >> Any other ideas of what else I might be doing wrong? > >> > >> Thanks, > >> Alex > > > > > > Is SELinux enforcing? > > > > # getenforce > > > > Please, show us "ls -lZ /var/tmp/.savapi3" > > > > Creating the socket in /var/run/amavisd with the SELinux label > > antivirus_var_run_t will probably fix your issue. > > No, selinux disabled (security=0) > > # cat /proc/cmdline > BOOT_IMAGE=/vmlinuz-4.11.5-200.fc25.x86_64 > root=/dev/mapper/fedora--server_honeynet-root ro > rd.lvm.lv=fedora-server_honeynet/swap > rd.lvm.lv=fedora-server_honeynet/root security=0 LANG=en_US.UTF-8 > > # ls -lZ /var/tmp/.sav* > srw-rw-rw- 1 amavis amavis ? 0 Jun 28 21:16 /var/tmp/.savapi3 > -rw------- 1 amavis amavis ? 0 Jun 28 21:16 /var/tmp/.savapi3.lock > > /var/tmp/.savapi3.0: > total 0 > prw-r--r-- 1 amavis amavis ? 0 Jun 28 21:16 wpipe > -rw------- 1 amavis amavis ? 0 Jun 28 21:16 wpipe.lock > > # egrep -v '^$|^#' /usr/local/savapi-sdk-linux_ > glibc24_x86_64/bin/savapi.conf > User amavis > Group amavis > KeyFile /usr/local/savapi-sdk-linux_glibc24_x86_64/bin/MYKEY.KEY > AveDir /usr/local/savapi-sdk-linux_glibc24_x86_64/bin > VdfDir /usr/local/savapi-sdk-linux_glibc24_x86_64/bin > ModulesDir /usr/local/savapi-sdk-linux_glibc24_x86_64/modules > DuplicateModules 1 > SocketPermissions 0666 > ListenAddress=unix:/var/tmp/.savapi3 > ArchiveScan 1 > MailboxScan 1 > HeurLevel 2 > LogFileName /var/log/savapi.log > ReportLevel 3 > SyslogFacility mail > > ./savapi -N --config=savapi.conf --key-file=MYKEY.KEY > > Jun 29 08:30:08 catchme amavis[25066]: (25066-01) (!)connect to > /var/tmp/.savapi3 failed, attempt #1: Can't connect to a UN > IX socket /var/tmp/.savapi3: No such file or directory > Jun 29 08:30:08 catchme amavis[25066]: (25066-01) (!)Avira-SAVAPI > av-scanner FAILED: run_av error: All attempts (1) failed > connecting to savapi:/var/tmp/.savapi3\n > > # lsof /var/tmp/.savapi3 > COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME > savapi 18823 amavis 9u unix 0xffff926673dd0400 0t0 6992460 > /var/tmp/.savapi3 type=STREAM > > Thanks, > Alex >
​Check the PrivateTmp directive in amavisd.service
