ports/126069: [PATCH] security/clamav: Allow setting owner/group on milter socket
Matthew D. Fuller
fullermd at over-yonder.net
Tue Jul 29 07:50:03 UTC 2008
>Number: 126069
>Category: ports
>Synopsis: [PATCH] security/clamav: Allow setting owner/group on milter socket
>Confidential: no
>Severity: non-critical
>Priority: medium
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Tue Jul 29 07:50:02 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator: Matthew D. Fuller
>Release: FreeBSD 7.0-BETA4 i386
>Organization:
>Environment:
System: FreeBSD draco.over-yonder.net 7.0-BETA4 FreeBSD 7.0-BETA4 #0: Sun Dec 9 18:37:58 CST 2007 root at draco.over-yonder.net:/bsd/obj/bsd/src/sys/DRACO i386
>Description:
Recent changes to the clamav-milter.in rc script allow setting the
mode on the socket, but not the ownership. This adds that
capability.
This is probably applicable to clamav-devel as well.
>How-To-Repeat:
>Fix:
--- clamav-milter.in.orig 2008-07-29 02:13:54.000000000 -0500
+++ clamav-milter.in 2008-07-29 02:15:12.000000000 -0500
@@ -84,6 +84,9 @@
echo "There is no clamav-milter socket (${clamav_clamd_socket})!"
exit 1
fi
+ /usr/sbin/chown \
+ ${clamav_milter_socket_owner}:${clamav_milter_socket_group} \
+ ${clamav_milter_socket}
/bin/chmod ${clamav_milter_socket_mode} ${clamav_milter_socket}
fi
}
@@ -94,6 +97,8 @@
: ${clamav_milter_socket="%%CLAMAV_MILTER_SOCKET%%"}
: ${clamav_milter_flags="--postmaster-only --local --outgoing --timeout=0 --max-children=50"}
: ${clamav_milter_socktimeout="60"}
+: ${clamav_milter_socket_owner="clamav"}
+: ${clamav_milter_socket_group="clamav"}
: ${clamav_milter_socket_mode="755"}
: ${clamav_clamd_socket="%%CLAMAV_CLAMD_SOCKET%%"}
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list