The clamd package ships a default service (clamd@scan) with the
following configuration:
/usr/lib/tmpfiles.d/clamd.scan.conf:
d /run/clamd.scan 0710 clamscan virusgroup
%files -n clamd
%ghost %dir %attr(0710,clamscan,virusgroup) /run/clamd.scan
%ghost /run/clamd.scan/clamd.sock
Now, a user might want to change the mode and group of the
/run/clamd.scan directory to suit their purposes. They can do this by
creating an /etc/tmpfiles.d/clamd.scan.conf file. But the next time a
clamd update comes along rpm will reset the permissions of
/run/clamd.scan until the next reboot.
Any suggestions for how to avoid this? Can the /run/clamd.scan
directory be marked %config(noreplace) or some such so that rpm will not
modify the existing permissions? Could systemd-tmpfiles be run in such
a way as to honor any user overrides in place?
Thanks,
Orion
--
Orion Poplawski
Manager of NWRA Technical Systems 720-772-5637
NWRA, Boulder/CoRA Office FAX: 303-415-9702
3380 Mitchell Lane orion(a)nwra.com
Boulder, CO 80301
https://www.nwra.com/