Public bug reported:
Testing MIMEDefang with sendmail and clamav-daemon I've found a problem.
It seems that clamav-daemon's apparmor denies read access to
mimedefang's temporary files, as seen in the logs:
/var/log/mail.log:
Aug 19 01:50:44 utest-nns32 mimedefang.pl[4544]: p7IMohM5005045: Clamd returned
error: lstat() failed: Permission denied.
Aug 19 01:50:44 utest-nns32 mimedefang.pl[4544]: Problem running virus scanner:
code=999, category=swerr, action=tempfail
Aug 19 01:50:44 utest-nns32 mimedefang.pl[4544]: filter: p7IMohM5005045:
tempfail=1
Aug 19 01:50:44 utest-nns32 mimedefang[4543]: p7IMohM5005045: Tempfailing
because filter instructed us to
Aug 19 01:50:44 utest-nns32 sm-mta[5045]: p7IMohM5005045: Milter: data,
reject=451 4.3.0 Problem running virus-scanner
Aug 19 01:50:44 utest-nns32 sm-mta[5045]: p7IMohM5005045:
to=<gi...@utest-nns32.narancs.net>, delay=00:00:00, pri=31210, stat=Problem
running virus-scanner
/var/log/syslog:
Aug 19 01:44:11 utest-nns32 kernel: [ 404.626907] type=1400
audit(1313707451.283:11): apparmor="DENIED" operation="open" parent=1
profile="/usr/sbin/clamd" name="/var/spool/MIMEDefang/mdefang-
p7IMi9Be005007/Work/" pid=5008 comm="clamd" requested_mask="r"
denied_mask="r" fsuid=111 ouid=104
This should be fixed in Oneiric before we SRU/backport clamav 0.97.2
back to Natty/Lucid/etc.
** Affects: clamav (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to clamav in Ubuntu.
https://bugs.launchpad.net/bugs/829089
Title:
clamd scanning mimedefang temp files blocked by apparmor
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/829089/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
