Stephen Gran wrote:
On Mon, Jan 15, 2007 at 11:59:21AM -0800, Dennis Peterson said:
Stephen Gran wrote:
./clamscan/manager.c:
if(!geteuid()) {
I guess I never lit off clamscan where I didn't have a UID. I don't even
know how I could. Clamscan always runs as the executing in all of my
scripts.
That actually doesn't mean "doesn't have a UID". geteuid returns a
number, and the test in this case is to see whether the number is 0,
which is root.
Sorry, I'd inverted the logic of the if (!geteuid()) { statement. The
rest now makes sense.
It required a visit to the Makefile to see where the user was being
defined and you're right. I did not know this about clamscan and don't
yet understand the rationale, but it does have an impact on systems
where clamscan is intended to be used but not clamd nor clamdscan -
stand alone systems, in other words. I'll have to tweek my Cfengine
configs some.
Does anyone know what this code is supposed to protect?
dp
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://lurker.clamav.net/list/clamav-users.html
