[Pkg-clamav-devel] Bug#775400: Bug#775400: clamav-freshclam: freshclam cant download virus definitions

Andreas Cadhalpun andreas.cadhalpun at googlemail.com
Thu Jan 15 22:50:02 UTC 2015 

Control: severity -1 important

Hi,

On 15.01.2015 22:31, Sebastian Andrzej Siewior wrote:
> On Thu, Jan 15, 2015 at 10:13:27AM +0100, Ulrich Schmidt wrote:
>> Package: clamav-freshclam
>> Version: 0.98.5+dfsg-3
>> Severity: grave
>> Tags: newcomer
> Why newcommer?

Good question. This tag is supposed to be added to bugs that can be 
fixed by newcomers. (By chance this might even be true here.)

>> Justification: renders package unusable
> Not unter normal circumstances. Atleast I hope so :)

Indeed, it works for most, so I'm reducing the severity.

>> I did a fresh Jessie install yesterday and installed clamav-daemon+clamav-
>> freshclam, clamav+clamav-freshclam, deinstalled those packages, reinstalled,
>> removed, deleted clamav subfolders many many times, to find something i did
>> wromg.
>
> I am under the impression that atleast 2 should work on Jessie. But I will try
> to re-test.

I can reproduce the second problem, but not the first.

>> Finally i found 2 things that stops freshclam working:
>>
>> 1) /etc/clamav/freshclam.conf has a bad HTTPProxyServer line so freshclam cant
>> connect.
>>    I commented out the HTTPProxyServer line and freshclam was able to connect.
>
> How did that line get in there? Did you enter something or did it get there on
> its own?

The clamav-freshclam package doesn't add a HTTPProxyServer line by default.
Can you elaborate what exactly you did to get this bad line there?

>> 2) folder /var/lib/clamav was root:root and freshclam cant create files in this
>> folder.
>>    I did a "chown clamav:clamav /var/lib/clamav" and clamav and freshclam starts
>> running fine. (At least it seems so :) ).
> If I recall correctly then clamav-base should do this chown in its postinst.
> It is also the one that adds the clamav user to /etc/passwd and so on… This
> should have happen since otherwise "chown clamav:clamav" would not work.

I can reproduce this in a minimal jessie chroot with:
# apt install clamav-base
# apt remove clamav-base
# apt install clamav-base

This can be worked around with:
# apt purge clamav-base
# apt install clamav-base

The problem is that clamav-base.postinst calls chown only on fresh 
installations. This should be easy to fix by moving the chown calls out 
of the 'if [ -z "$2" ]'.

>> -- debconf information:
>>    clamav-freshclam/http_proxy: �
> this looks strange. But it is not your doing, right?

It seems the debconf setting is corrupted, which is really strange.

Best regards,
Andreas

More information about the Pkg-clamav-devel mailing list