[Bug 784060] Re: freshclam fails in DNS query due to apparmor
Imre Gergely
784060 at bugs.launchpad.net
Mon Aug 15 16:07:14 UTC 2011
Can I ask how you can reproduce this exactly? Running freshclam as root,
or as clamav user is working fine for me, and I don't have any DNS
recursor running on 127.0.0.1 .
Also, I'm no apparmor expert but there is a line in
/etc/apparmor.d/usr.bin.freshclam, like this:
root at utest-mms32:~# cat /etc/apparmor.d/usr.bin.freshclam |grep nameser
#include <abstractions/nameservice>
This includes some other basic rules which do allow read-only access to
/etc/resolv.conf:
root at utest-mms32:~# cat /etc/apparmor.d/abstractions/nameservice |grep resolv.conf
/etc/resolv.conf r,
At least this is what I have in the default usr.bin.freshclam on
Maverick.
** Changed in: clamav (Ubuntu)
Status: Confirmed => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to clamav in Ubuntu.
https://bugs.launchpad.net/bugs/784060
Title:
freshclam fails in DNS query due to apparmor
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/784060/+subscriptions
More information about the Ubuntu-server-bugs
mailing list