[Pkg-clamav-devel] Bug#988605: logrotate config creates log file with wrong group

Adam L Jacobs alj at boxyfrog.com
Sun May 16 21:11:44 BST 2021

Package: clamav-daemon
Version: 0.103.2

postinst creates a logrotate config that creates new log files with group "adm".  That used to be fine, but newer versions of clam
seem to update the group of the log file to the clam process' group whenever clam restarts.  That group is usually "clamav" and
almost always isn't "adm".

the result is that the log file gets created with one group by logrotate, but then gets changed when clam restarts.  this
confuses IDS tools like AIDE.

postinst should be changed so that the newly created logfile has the user and group of the user that clam runs as.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-clamav-devel/attachments/20210516/896ce693/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4484 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-clamav-devel/attachments/20210516/896ce693/attachment.bin>

More information about the Pkg-clamav-devel mailing list