Dennis Peterson wrote the following on 9/22/2007 12:40 PM -0800: > Bill Landry wrote: > > >> Thoughts anyone...? >> >> I would also still like to know if there is a way to determine the >> uid/gid set during ./configure after clamav has been installed at the >> original build directory deleted. >> >> Thanks, >> >> Bill >> > > Unless you are running clamscan as root the owner will be who ever > started the process running regardless of the defined uid/gid. > > ./configure --help offers: > > --with-user=uid name of the clamav user (default=clamav) > --with-group=gid name of the clamav group (default=clamav) > --disable-clamav disable test for clamav user/group > > It is possible that the default user is undefined in the case where you > disable the test and allow using a non-existing account name. >
I have 2 script users that created a unique a uid/gid pair for clamav, then used the non-default uid/gid pair to build clamav and for clamd to run under. However, these same 2 users are the only ones that I know of that are experiencing the "ERROR: Can't write to temporary directory" issue when running the script without first creating a temp directory, setting the access permissions to the same uid/gid clamav was configured to use, and then adding the "--tempdir=" to the clamscan directive in the script. Also, both users are executing the script via cron under the root account. So, what appears to be happening is that if someone uses a unique uid/gid pair when configuring clamav, clamav is not setting that uid/gid pair everywhere in the clamscan code, which is why I was attempting to save the temp files to see what clamav was setting the access permissions to. But alias, no such luck, as clamscan deletes the temp file even when the "--leave-temps" flag is used... :-( Bill _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
