Upgrade security/clamav-devel port, add a few switches for spooldir and user The clamav-user doesn't get deinstalled by default (easy when upgrading), after deinstall a message is presented to remove the clamav-user if neccesary.
Responsible Changed From-To: freebsd-ports-bugs->dinoex I will take care of it.
State Changed From-To: open->closed committed, thanks.
It seems that setting CLAMAVUSER=otheruser, SPOOLDIR=/something/else does not impress pkg-install... how about a having a fixed user clamav and registering a user id at: http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-handbook/dads-uid.html and what is the SPOOLDIR good for in the first place, /nonexistent seemed to work fine?
Oliver Eikemeier wrote: > It seems that setting CLAMAVUSER=otheruser, SPOOLDIR=/something/else > does not impress pkg-install... > True, I'll have to look into it > how about a having a fixed user clamav and registering a user id at: > The CLAMAVUSER knob is easy if you want clamav to install under another user (setup for amavisd-new or other content-scanners) > http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-handbook/dads-uid.html > > > and what is the SPOOLDIR good for in the first place, /nonexistent > seemed to > work fine? > > Clamd log and pid file can be kept in SPOOLDIR (maybe not the best name), these shouldn't be accessible by others than clamav and it's 'neighbour' processess (like amavisd-new). The new setup secures a 'SPOOLDIR' by default, (patches for the clamav.conf are in the make) And using the clamav-users home dir as SPOOLDIR offers the benefit of easy removing the contents by rm -y CLAMAVUSER Of course, patches or improvements are always welcome Rob Evers
> Clamd log and pid file can be kept in SPOOLDIR (maybe not the best > name), these shouldn't be accessible by others than clamav and it's > 'neighbour' processess (like amavisd-new). => /var/log/clamav & /var/run/clamav ?? > The new setup secures a 'SPOOLDIR' by default, (patches for the > clamav.conf are in the make) Please, have a look at: http://www.freebsd.org/cgi/cvsweb.cgi/ports/mail/exim/files/POST-INSTALL-NOTES.clamd it's not that bad ;) > And using the clamav-users home dir as SPOOLDIR offers the benefit > of easy removing the contents by rm -y CLAMAVUSER Please don't. Removing log files shouldn't be automatic. > Of course, patches or improvements are always welcome I can donate a rc.subr start/stop script if you like.