Bug 37340

Summary: Broken ClamAV configuration - unclean environment - TMPDIR
Product: UCS Reporter: Philipp Hahn <hahn>
Component: DansguardianAssignee: UCS maintainers <ucs-maintainers>
Status: RESOLVED WONTFIX QA Contact:
Severity: normal    
Priority: P5 CC: gohmann, troeder
Version: UCS 4.0   
Target Milestone: UCS 4.0-x   
Hardware: Other   
OS: Linux   
URL: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=720163
See Also: https://forge.univention.org/bugzilla/show_bug.cgi?id=37031
What kind of report is it?: Bug Report What type of bug is this?: 3: Simply Wrong: The implementation doesn't match the docu
Who will be affected by this bug?: 2: Will only affect a few installed domains How will those affected feel about the bug?: 1: Nuisance – not a big deal but noticeable
User Pain: 0.034 Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional):
Max CVSS v3 score:

Description Philipp Hahn univentionstaff 2014-12-15 11:52:58 CET 
# http_proxy=http://localhost:3128 wget -q -S -O /tmp/x http://updates.software-univention.de/4.0/maintained/4.0-0/all/Packages.gz && file /tmp/x
# tail /var/log/syslog
Dec 15 11:33:15 h70 dansguardian[28510]: Started sucessfully.
Dec 15 11:33:42 h70 dansguardian[28513]: ClamAV error: Can't create new file
Dec 15 11:33:42 h70 dansguardian[28513]: scanFile/Memory returned error: -1
Dec 15 11:33:45 h70 dansguardian[28513]: ClamAV error: Can't create temporary directory
Dec 15 11:33:45 h70 dansguardian[28513]: scanFile/Memory returned error: -1
Dec 15 11:34:27 h70 dansguardian[28513]: ClamAV error: Can't create new file
Dec 15 11:34:27 h70 dansguardian[28513]: scanFile/Memory returned error: -1

This happens because TMPDIR was set to /tmp/root/=0700, but DansGuardian (and the called ClamAV) run as uid=113.

/etc/init.d/dansguardian cloud use "env -i".
Comment 1 Daniel Tröder univentionstaff 2017-06-14 13:50:07 CEST 

*** This bug has been marked as a duplicate of bug 32387 ***
Comment 2 Daniel Tröder univentionstaff 2017-06-14 13:51:26 CEST 
Wrong browser tab -> Bug #37329
Comment 3 Stefan Gohmann univentionstaff 2019-01-03 07:16:51 CET 
This issue has been filled against UCS 4.0. The maintenance with bug and security fixes for UCS 4.0 has ended on 31st of May 2016.

Customers still on UCS 4.0 are encouraged to update to UCS 4.3. Please contact
your partner or Univention for any questions.

If this issue still occurs in newer UCS versions, please use "Clone this bug" or simply reopen the issue. In this case please provide detailed information on how this issue is affecting you.