Freshclam problems
Anne Wilson
cannewilson at googlemail.com
Tue Nov 22 09:45:13 UTC 2011
On Monday 21 November 2011 20:33:33 Anne Wilson wrote:
> Am 21.11.2011 21:16, schrieb Anne Wilson:
> [...]
>
> >>> You mean
> >>>
> >>> ls -l /var/log/clamav/freshclam.log
> >>> -rw-r--r--+ 1 clamav clamav 0 Nov 13 03:34
> >>> /var/log/clamav/freshclam.log ?
> >>
> >> Not entirely. Check ACL (getfacl or similar program). The + sign
> >> indicates that there is an aditional ACL set for this file. At least my
> >> log files does not have extra ACLs set.
> >
> > If this means what I think it means, it explains the problem -
> >
> > getfacl /var/log/clamav/freshclam.log
> > getfacl: Removing leading '/' from absolute path names
> > # file: var/log/clamav/freshclam.log
> > # owner: clamav
> > # group: clamav
> > user::rw-
> > user:anne:rwx #effective:r--
> > group::rw- #effective:r--
> > mask::r--
> > other::r--
>
> As the mask is set to read-only all extra users and groups are set to
> read only as well. The owner should be able to write to the file.
>
And the owner, in this case is? I read that as anne being the user, but I'm
confused abouth it giving perms as rwx, effective as r-only. Can you explain
please?
> >> Try to remove the file as well (or move it to another place).
> >
> > If it's running as anne, is there any reason why the logfile can't be in
> > anne's tree?
>
> Sorry I don't know what you mean by this. Which tree?
>
I meant somewhere under /home/anne/, to guarantee write permission. In fact I
tried that. creating the logfile path to /home/anne/Temp/freshclam.log, then
tried again. This time the message is somewhat different:
[anne at borg2 ~]$ freshclam
ERROR: Can't create temporary directory
/var/lib/clamav/clamav-7b05adbd855d6cdcfe5c431a30c484ab
Hint: The database directory must be writable for UID 500 or GID 100
I have made sure that I'm in the groups clam, clam-update and clamav, but I
don't see what else I can do to get access to that directory (500=anne,
100=users).
> >> and run 'lsof | grep freshclam' to see if any other program is locking
> >> the file.
> >
> > Nothing there.
>
> So it is only a permission problem. clean all ACLs from the log file and
> all should be OK (setfacl -b).
>
Unfortunately it wasn't enough. Does this new message give you more ideas?
Anne
More information about the kde
mailing list