On Mon, 2007-04-23 at 22:13 +0100, Stephen Constantinou wrote: > Thanks for your lengthy reply I appreciate that you went to a lot of > effort to explain things to me. I am sorry to say I understood very > little of it. However, I took the hint and worked on and learnt a bit. > I worked on the aspect of permission to enter the database directory > and permission to read and write to the log file. As a user I can scan > but I must be root to update the database.
See below on permissions... > I need to know if this limitation to updating the database is normal and > OK for when I install the “clamtk-2.31-1.centos.noarch.rpm” gui front > end (I think I have used the right terminology). Given the owners and permissions you mentioned below, this seems quite normal to me. The signature database should not be writable by users, hence a user can't update it. As for ClamTk: never used it. However, there is no way anyone can help you without knowing details and what exactly you did. In your previous mail you told us how you built ClamAV from source, installing into a custom (user owned) prefix. The files shown below don't match this. So you installed ClamAV some other way. Since you are running Mandriva... I believe the default dir for log files to be /var/log/clamav/ on this distribution. Again, this doesn't match with what you show below. Also, you installed a CentOS RPM, which doesn't match your distro. > However I have a new situation. During the database update I am told to > get the latest version: > [EMAIL PROTECTED] bin]# ./freshclam > ClamAV update process started at Mon Apr 23 19:48:41 2007 > SECURITY WARNING: NO SUPPORT FOR DIGITAL SIGNATURES > See the FAQ at http://www.clamav.net/support/faq for an explanation. > WARNING: Your ClamAV installation is OUTDATED! > WARNING: Local version: 0.90.1 Recommended version: 0.90.2 > DON'T PANIC! Read http://www.clamav.net/support/faq > main.cvd is up to date (version: 43, sigs: 104500, f-level: 14, builder: > sven) > daily.inc is up to date (version: 3151, sigs: 6896, f-level: 15, > builder: ccordes) > [EMAIL PROTECTED] bin]#” > > I go to the website http://www.clamav.net/support/faq and it is > explained that I need the latest version of the scanner to detect the > latest virus'. To do this I am presented with a question about having > installed from Packages or Sources. I do not know the answer to this > nor have I managed to find this out. If you don't know how you installed ClamAV, we sure don't either. See above for a brief explanation of the various oddities. > I have no objections to scrapping everything I have done so far in > favour of an easier installation method, if there is one. To do so, you'd need to know how you installed... Anyway, without repeating all the details from my previous post: Why aren't you just installing the RPM packages provided (as an update) by your distro? It comes with an init script to automatically update the signatures, too. > Here is a summery of the permission of the relevant file/directories > Path/File/Direc' User Grp User Group Other > -------------------------------------------------------------------- > /var/log/freshclam.log Root Admin RW- R-- RW- This log file definitely should not be world writable. > /var/lib/clamav/ clamav clamav RW- RW- R-- Directories need to be executable to cd into them. > /usr/local/etc/freshclam.conf Root Root RW- R-- R-- > /usr/local/etc/clamd.conf Root Root RW- R-- R-- guenther -- char *t="[EMAIL PROTECTED]"; main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1: (c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}} _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
