X-Git-Url: http://git.pld-linux.org/?a=blobdiff_plain;f=clamav-pld_config.patch;h=025a69b0907b486d31eb74a283e42631d8339011;hb=01e85c7c4ffd324a4218341de225a8a50242885a;hp=ce2e392c3743286c5928a7540e4e346269e1861e;hpb=5664ab1930676a06aec8c06e8bac319f8702416e;p=packages%2Fclamav.git diff --git a/clamav-pld_config.patch b/clamav-pld_config.patch index ce2e392..025a69b 100644 --- a/clamav-pld_config.patch +++ b/clamav-pld_config.patch @@ -1,129 +1,182 @@ -diff -urN clamav-0.66.org/etc/clamav.conf clamav-0.66/etc/clamav.conf ---- clamav-0.66.org/etc/clamav.conf Wed Feb 11 11:51:14 2004 -+++ clamav-0.66/etc/clamav.conf Wed Feb 11 11:52:00 2004 -@@ -5,12 +5,12 @@ +diff -urNp -x '*.orig' clamav-0.103.0.org/etc/clamav-milter.conf.sample clamav-0.103.0/etc/clamav-milter.conf.sample +--- clamav-0.103.0.org/etc/clamav-milter.conf.sample 2020-09-13 02:27:09.000000000 +0200 ++++ clamav-0.103.0/etc/clamav-milter.conf.sample 2021-04-06 16:38:59.095023292 +0200 +@@ -3,7 +3,7 @@ + ## + + # Comment or remove the line below. +-Example ++#Example + + + ## +@@ -17,12 +17,12 @@ Example + # inet6:port@[hostname|ip-address] - to specify an ipv6 socket + # + # Default: no default +-#MilterSocket /tmp/clamav-milter.socket ++MilterSocket /var/lib/clamav/clamav-milter.socket + #MilterSocket inet:7357 + + # Define the group ownership for the (unix) milter socket. + # Default: disabled (the primary group of the user running clamd) +-#MilterSocketGroup virusgroup ++#MilterSocketGroup clamav + + # Sets the permissions on the (unix) milter socket to the specified mode. + # Default: disabled (obey umask) +@@ -64,7 +64,7 @@ Example + # also owned by root to keep other users from tampering with it. + # + # Default: disabled +-#PidFile /var/run/clamav-milter.pid ++PidFile /var/run/clamav/clamav-milter.pid + + # Optional path to the global temporary directory. + # Default: system specific (usually /tmp or /var/tmp). +@@ -91,7 +91,7 @@ Example + # fashion. + # + # Default: no default +-#ClamdSocket tcp:scanner.mydomain:7357 ++ClamdSocket unix:/var/lib/clamav/clamd.socket + + + ## +@@ -241,13 +241,13 @@ Example + # Use system logger (can work together with LogFile). + # + # Default: no +-#LogSyslog yes ++LogSyslog yes + + # Specify the type of syslog messages - please refer to 'man syslog' + # for facility names. + # + # Default: LOG_LOCAL6 +-#LogFacility LOG_MAIL ++LogFacility LOG_MAIL + + # Enable verbose logging. + # +diff -urNp -x '*.orig' clamav-0.103.0.org/etc/clamd.conf.sample clamav-0.103.0/etc/clamd.conf.sample +--- clamav-0.103.0.org/etc/clamd.conf.sample 2020-09-13 02:27:09.000000000 +0200 ++++ clamav-0.103.0/etc/clamd.conf.sample 2021-04-06 16:38:59.095023292 +0200 +@@ -5,13 +5,13 @@ # Comment or remove the line below. -Example -+# Example ++#Example # Uncomment this option to enable logging. - # LogFile must be writable for the user running the daemon. - # Full path is required. + # LogFile must be writable for the user running daemon. + # A full path is required. + # Default: disabled -#LogFile /tmp/clamd.log -+# LogFile /var/log/clamd.log ++#LogFile /var/log/clamd.log # By default the log file is locked for writing - the lock protects against # running clamd multiple times (if want to run another clamd, please -@@ -34,14 +34,14 @@ - #LogClean +@@ -41,12 +41,12 @@ Example # Use system logger (can work together with LogFile). --#LogSyslog -+LogSyslog + # Default: no +-#LogSyslog yes ++LogSyslog yes - # Enable verbose logging. - #LogVerbose + # Specify the type of syslog messages - please refer to 'man syslog' + # for facility names. + # Default: LOG_LOCAL6 +-#LogFacility LOG_MAIL ++LogFacility LOG_MAIL - # This option allows you to save the process identifier of the listening - # daemon (main thread). + # Enable verbose logging. + # Default: no +@@ -74,7 +74,7 @@ Example + # It is recommended that the directory where this file is stored is + # also owned by root to keep other users from tampering with it. + # Default: disabled -#PidFile /var/run/clamd.pid +PidFile /var/run/clamav/clamd.pid # Optional path to the global temporary directory. - # Default is system specific - usually /var/tmp or /tmp. -@@ -58,10 +58,10 @@ - # Path to the local socket. The daemon doesn't change the mode of the - # created file (portability reasons). You may want to create it in a directory - # which is only accessible for a user running daemon. --LocalSocket /tmp/clamd + # Default: system specific (usually /tmp or /var/tmp). +@@ -93,11 +93,11 @@ Example + + # Path to a local socket file the daemon will listen on. + # Default: disabled (must be specified by a user) +-#LocalSocket /tmp/clamd.socket +LocalSocket /var/lib/clamav/clamd.socket - # Remove stale socket after unclean shutdown. --#FixStaleSocket -+FixStaleSocket - - # TCP port address. - #TCPSocket 3310 -@@ -86,7 +86,7 @@ - # Maximal number of a threads running at the same time. - # Default is 5, and it should be sufficient for a typical workstation. - # You may need to increase threads number for a server machine. --#MaxThreads 10 -+MaxThreads 10 - - # Thread (scanner - single task) will be stopped after this time (seconds). - # Default is 180. Value of 0 disables the timeout. SECURITY HINT: Increase the -@@ -119,11 +119,11 @@ - - # Run as selected user (clamd must be started by root). - # By default it doesn't drop privileges. + # Sets the group ownership on the unix socket. + # Default: disabled (the primary group of the user running clamd) +-#LocalSocketGroup virusgroup ++#LocalSocketGroup clamav + + # Sets the permissions on the unix socket to the specified mode. + # Default: disabled (socket is world accessible) +@@ -216,7 +216,7 @@ Example + + # Run as another user (clamd must be started by root for this option to work) + # Default: don't drop privileges -#User clamav +User clamav - # Initialize the supplementary group access (for all groups in /etc/group - # user is added in. clamd must be started by root). --#AllowSupplementaryGroups -+AllowSupplementaryGroups - - # Don't fork into background. Useful in debugging. - #Foreground -@@ -136,7 +136,7 @@ + # Stop daemon when libclamav reports out of memory condition. + #ExitOnOOM yes +diff -urNp -x '*.orig' clamav-0.103.0.org/etc/freshclam.conf.sample clamav-0.103.0/etc/freshclam.conf.sample +--- clamav-0.103.0.org/etc/freshclam.conf.sample 2020-09-13 02:27:09.000000000 +0200 ++++ clamav-0.103.0/etc/freshclam.conf.sample 2021-04-06 16:38:59.095023292 +0200 +@@ -3,9 +3,14 @@ + ## Please read the freshclam.conf(5) manual before editing this file. ## - # Uncomment this option if you are planning to scan mail files. --#ScanMail -+ScanMail - - ## - ## Archive support -diff -urN clamav-0.66.org/etc/freshclam.conf clamav-0.66/etc/freshclam.conf ---- clamav-0.66.org/etc/freshclam.conf Wed Feb 11 11:51:14 2004 -+++ clamav-0.66/etc/freshclam.conf Wed Feb 11 12:47:55 2004 -@@ -3,20 +3,24 @@ - ## Please read the clamav.conf(5) manual before editing this file. - ## This file may be optionally merged with clamav.conf. - ## -- +## PLD NOTE: Note that freshclam is called periodically via cron +## Check /etc/sysconfig/clamd for details +## Seems better to run task once per period than keep daemon running -+## only for that. ++## only for that. +## But if you have arguments please tell us. - # You can change the default database directory here. - #DatabaseDirectory /var/lib/clamav - - # Path to the config file (make sure it has proper permissions) --#UpdateLogFile /var/log/freshclam.log -+UpdateLogFile /var/log/freshclam.log - - # Enable verbose logging. --#LogVerbose -+LogVerbose - - # By default when freshclam is started by root it drops privileges and - # switches to the "clamav" user. You can change this behaviour here. + # Comment or remove the line below. +-Example ++#Example + + # Path to the database directory. + # WARNING: It must match clamd.conf's directive! +@@ -35,7 +40,7 @@ Example + + # Use system logger (can work together with UpdateLogFile). + # Default: no +-#LogSyslog yes ++LogSyslog yes + + # Specify the type of syslog messages - please refer to 'man syslog' + # for facility names. +@@ -61,7 +61,7 @@ LogSyslog yes + # By default when started freshclam drops privileges and switches to the + # "clamav" user. This directive allows you to change the database owner. + # Default: clamav (may depend on installation options) -#DatabaseOwner clamav +DatabaseOwner clamav - # The main database mirror is database.clamav.net (this is a round-robin - # DNS that points to many mirrors on the world) and in most cases you -@@ -28,7 +32,7 @@ + # Use DNS to verify virus database version. FreshClam uses DNS TXT records + # to verify database and software versions. With this directive you can change +@@ -115,7 +120,7 @@ DatabaseMirror database.clamav.net - # How often check for a new database. We suggest checking for it every - # two hours. --Checks 12 + # Number of database checks per day. + # Default: 12 (every two hours) +-#Checks 24 +Checks 2 # Proxy settings - #HTTPProxyServer myproxy.com -@@ -38,6 +42,7 @@ + # The HTTPProxyServer may be prefixed with [scheme]:// to specify which kind +@@ -150,7 +150,7 @@ Checks 2 # Send the RELOAD command to clamd. - #NotifyClamd [/optional/config/file/path] -+NotifyClamd /etc/rc.d/init.d/clamd reload + # Default: no +-#NotifyClamd /path/to/clamd.conf ++#NotifyClamd /etc/clamd.conf - # Run command after database update. - #OnUpdateExecute command + # Run command after successful database update. + # Use EXIT_1 to return 1 after successful database update.