Date: Tue, 29 Jul 2008 02:31:05 -0500 (CDT) From: "Matthew D. Fuller" <fullermd@over-yonder.net> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/126069: [PATCH] security/clamav: Allow setting owner/group on milter socket Message-ID: <20080729073105.77A1F61C42@draco.over-yonder.net> Resent-Message-ID: <200807290750.m6T7o2tr025583@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 126069 >Category: ports >Synopsis: [PATCH] security/clamav: Allow setting owner/group on milter socket >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Tue Jul 29 07:50:02 UTC 2008 >Closed-Date: >Last-Modified: >Originator: Matthew D. Fuller >Release: FreeBSD 7.0-BETA4 i386 >Organization: >Environment: System: FreeBSD draco.over-yonder.net 7.0-BETA4 FreeBSD 7.0-BETA4 #0: Sun Dec 9 18:37:58 CST 2007 root@draco.over-yonder.net:/bsd/obj/bsd/src/sys/DRACO i386 >Description: Recent changes to the clamav-milter.in rc script allow setting the mode on the socket, but not the ownership. This adds that capability. This is probably applicable to clamav-devel as well. >How-To-Repeat: >Fix: --- clamav-milter.in.orig 2008-07-29 02:13:54.000000000 -0500 +++ clamav-milter.in 2008-07-29 02:15:12.000000000 -0500 @@ -84,6 +84,9 @@ echo "There is no clamav-milter socket (${clamav_clamd_socket})!" exit 1 fi + /usr/sbin/chown \ + ${clamav_milter_socket_owner}:${clamav_milter_socket_group} \ + ${clamav_milter_socket} /bin/chmod ${clamav_milter_socket_mode} ${clamav_milter_socket} fi } @@ -94,6 +97,8 @@ : ${clamav_milter_socket="%%CLAMAV_MILTER_SOCKET%%"} : ${clamav_milter_flags="--postmaster-only --local --outgoing --timeout=0 --max-children=50"} : ${clamav_milter_socktimeout="60"} +: ${clamav_milter_socket_owner="clamav"} +: ${clamav_milter_socket_group="clamav"} : ${clamav_milter_socket_mode="755"} : ${clamav_clamd_socket="%%CLAMAV_CLAMD_SOCKET%%"} >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080729073105.77A1F61C42>