Closed jemrobinson closed 1 month ago
Note that this stops subsequent steps from running, and desired-state.sh
needs to be run manually complete the process. On our deployments for pentesting, this meant that smoke tests were not copied to the appropriate locations.
What's the best fix for this? My first guesses would be either:
ignore_errors: true
What do you think @JimMadge @craddm?
I think we should be able to wait until the file is created.
What's the best fix for this? My first guesses would be either:
- disable on-access virus scanning (I'm not sure this is a requirement of DSPT and it does add a lot of compute overhead)
- allow this ansible task to fail with
ignore_errors: true
What do you think @JimMadge @craddm?
On-access virus scanning is a DSPT requirement -
"Antivirus/anti-malware software scans files automatically upon access. This includes when files are downloaded and opened, and when they are accessed from a network folder."
But in Linux, everything is a file :scream:.
I wonder what happens if you try to on access scan /dev/random
🤔.
Waiting for the file times out.
I think the actual problem might be clamd.ctl
is the default socket file, but we have changed that.
clamd might need reloading/restarting after we write the config file.
Is there any problem with just using the default socket file?
Is there any problem with just using the default socket file?
Sort of, the local socket is disabled by default so we would need to specify it and ensure clamd has been reloaded/restarted whatever it is called.
I'm not really sure where clamd.ctl
comes from but I think clamd.socket
is a better name.
Closed by #2108
:white_check_mark: Checklist
:computer: System information
:package: Packages
List of packages
```none Paste list of packages here ```:no_entry_sign: Describe the problem
The
clamav-daemon
service is not creating/var/run/clamav/clamd.ctl
. This causes theclamav-clamonacc
service to timeout waiting for this file to exist.:steam_locomotive: Workarounds or solutions
See this StackOverflow thread