store | blogs | forums | twitter | facebook | wiki | downloads | support portal
Atomic Secure Linux
It is currently Fri Oct 18, 2019 10:05 am

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]




Post new topic Reply to topic  [ 4 posts ] 
Author Message
 Post subject: bugette in ASL clamd.conf in Centos 7
Unread postPosted: Sat Jan 23, 2016 1:42 pm 
Offline
Long Time Forum Regular
Long Time Forum Regular

Joined: Thu Dec 09, 2004 11:19 am
Posts: 2321
I think I found a minor bug in the clamav rpm from the ASL repo for Centos 7

Once installed, in /etc/clamd.conf the path to the pid file is wrong (or the install script is missing a line to create the require directory)

Original, as installed:
# This option allows you to save a process identifier of the listening
# daemon (main thread).
# Default: disabled
PidFile /var/run/clamav/clamd.pid

But there is no /var/run/clamav directory.

So either that has to be created, or the config needs to be changed to
PidFile /var/run/clamd.pid


Without the fix, systemctl status clamd shows an error about the pid not being written

*****

In addition, something strange is going on with the socket file. The default is /tmp/clamd.socket but it never shows up.
If you change it to /var/run/clamd.socket it appears.
I don't quite know what's going on there. This may be system configuration specific.

_________________
--------------------------------
<advert>
If you want to rent a UK-based VPS that comes with friendly advice and support from a fellow ART fan, please get in touch.
</advert>


Top
 Profile  
Reply with quote  
 Post subject: Re: bugette in ASL clamd.conf in Centos 7
Unread postPosted: Fri Feb 12, 2016 8:31 am 
Offline
Long Time Forum Regular
Long Time Forum Regular

Joined: Thu Dec 09, 2004 11:19 am
Posts: 2321
Errr... there's more to this than meets the eye, it seems.

It looks as though /var/run is ephemeral on the particular configuration of Centos 7 that I am testing with.

Thus anything that creates /var/run/whatever at application install time but does not re-create at boot/restart is going to stop working if it needs to write a .pid file or whatever to a directory under /var/run/
So that's psa-proftpd, clamd and a few other things.

From what I can figure out, this is not something that should necessarily be happening.

_________________
--------------------------------
<advert>
If you want to rent a UK-based VPS that comes with friendly advice and support from a fellow ART fan, please get in touch.
</advert>


Top
 Profile  
Reply with quote  
 Post subject: Re: bugette in ASL clamd.conf in Centos 7
Unread postPosted: Fri Feb 12, 2016 11:39 am 
Offline
Long Time Forum Regular
Long Time Forum Regular

Joined: Thu Dec 09, 2004 11:19 am
Posts: 2321
And in fact I was wrong about it being atypical.

From what I'm seeing online, /run (/var/run) is mounted on tempfs in Centos 7 / RH7 as standard, so it will get wiped on reboot.

So any application that is configured to create /var/run/specific-directory/ during installation but not to re-create it if required during startup/restart will throw errors after a reboot.

This specifically includes clamd from the ASL repo, and psa-proftp from the Atomic/ASL repo.

There may be others.

IN ADDITION, I'm seeing gosh darned weird stuff happening with rsyslogd not logging as expected. This may be related to a timing bug mentioned somewhere or other, because following the instructions to fix it certainly makes logging burst into life.

_________________
--------------------------------
<advert>
If you want to rent a UK-based VPS that comes with friendly advice and support from a fellow ART fan, please get in touch.
</advert>


Top
 Profile  
Reply with quote  
 Post subject: Re: bugette in ASL clamd.conf in Centos 7
Unread postPosted: Mon Feb 15, 2016 7:17 am 
Offline
Forum Regular
Forum Regular

Joined: Tue Aug 01, 2006 2:45 pm
Posts: 573
Location: Netherlands
This is a bug in the package from Atomic.

A package should never manually create files or directories in /run (or /var/run, which is a symlink to /run) on installation. Systemd with tmpfiles is the way to go, see "man tmpfiles.d".

_________________
Lemonbit Internet Dedicated Server Management


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 4 posts ] 

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group