UJP - 技術情報1

Life is fun and easy!
不正IP報告数

Okan Sensor
Home Information Service Tech(Free) Tech(Member) Blog FAQ
 
メイン
ログイン

ユーザー名:


パスワード:





パスワード再発行手続き  |無料会員入会手続へ...
ブログ カテゴリ一覧
freshclamのERROR: chdir_tmp: Can't create directoryが出ない様に修正する

freshclamのERROR: chdir_tmp: Can't create directoryが出ない様に修正する

0.改訂履歴

  • 2010.04.02 新規作成

1.はじめに

 このドキュメントでは,フリーのアンチウイルスソフトであるclamXavで,パターンファイルのアップデートを行うfreshclamが動作し た際にコンソールや実行ログにエラーがでているが,これの原因を探り,対処を行う手順を説明する.
 このエラーは,実際には発生していても挙動に問題ないが,別のエラーを探す時に無駄なログがでているとノイズになるので,エラーを解消する.

2.エラーの確認と現象を探る

  • ターミナルを起動すると,次の様にメールが来ていることが分かる.
Last login: Wed Mar 31 14:01:51 on ttys001
You have new mail.
macbook:~ ujpadmin$
  • mailコマンドでメール一覧を取り出してみる.
macbook:~ ujpadmin$ mail
Mail version 8.1 6/6/93.  Type ? for help.
"/var/mail/ujpadmin": 9 messages 9 new
>N  1 ujpadmin@macbook.local   Tue Mar 23 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  2 ujpadmin@macbook.local   Wed Mar 24 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  3 ujpadmin@macbook.local   Thu Mar 25 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  4 ujpadmin@macbook.local   Fri Mar 26 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  5 ujpadmin@macbook.local   Mon Mar 29 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  6 ujpadmin@macbook.local   Tue Mar 30 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  7 ujpadmin@macbook.local   Wed Mar 31 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  8 ujpadmin@macbook.local   Thu Apr  1 00:45  19/825   "Cron <ujpadmin@macbook> "
 N  9 ujpadmin@macbook.local   Fri Apr  2 00:45  19/825   "Cron <ujpadmin@macbook> "
?
  • メールの中身を確認する.
Message 1:
From ujpadmin@macbook.local  Tue Mar 23 00:45:11 2010
X-Original-To: ujpadmin
Delivered-To: ujpadmin@macbook.local
From: ujpadmin@macbook.local (Cron Daemon)
To: ujpadmin@macbook.local
Subject: Cron <ujpadmin@macbook> /usr/local/clamXav/bin/freshclam --quiet --log=/
usr/local/clamXav/share/clamav/freshclam.log; open /usr/local/clamXav/share/
clamav/freshclam.log
X-Cron-Env: <SHELL=/bin/sh>
X-Cron-Env: <PATH=/usr/bin:/bin>
X-Cron-Env: <LOGNAME=ujpadmin>
X-Cron-Env: <USER=ujpadmin>
X-Cron-Env: <HOME=/Users/ujpadmin>
Date: Tue, 23 Mar 2010 00:45:02 +0900 (JST)

ERROR: chdir_tmp: Can't create directory ./clamav-7756d2e08bc8315cddc6fec28cce28
08

?
  • crontabからエラーがでていることが分かる.
macbook:~ ujpadmin$ crontab -l
45      00      *       *       1,2,3,4,5       /usr/local/clamXav/bin/freshclam 
--quiet --log=/usr/local/clamXav/share/clamav/freshclam.log; open /usr/local/
clamXav/share/clamav/freshclam.log
macbook:~ ujpadmin$
  • 手動で実行してみる.
  • 実行する際に,デバッグ用オプションを付けてみる.
  • 利用できるオプションを確認する.
macbook:~ ujpadmin$ /usr/local/clamXav/bin/freshclam -h

                   Clam AntiVirus: freshclam  0.95.3
           By The ClamAV Team: http://www.clamav.net/team
           (C) 2007-2009 Sourcefire, Inc. et al.

    --help               -h              show help
    --version            -V              print version number and exit
    --verbose            -v              be verbose
    --debug                              enable debug messages
    --quiet                              only output error messages
    --no-warnings                        don't print and log warnings
    --stdout                             write to stdout instead of stderr

    --config-file=FILE                   read configuration from FILE.
    --log=FILE           -l FILE         log into FILE
    --daemon             -d              run in daemon mode
    --pid=FILE           -p FILE         save daemon's pid in FILE
    --user=USER          -u USER         run as USER
    --no-dns                             force old non-DNS verification method
    --checks=#n          -c #n           number of checks per day, 1 <= n <= 50
    --datadir=DIRECTORY                  download new databases into DIRECTORY
    --daemon-notify[=/path/clamd.conf]   send RELOAD command to clamd
    --local-address=IP   -a IP           bind to IP for HTTP downloads
    --on-update-execute=COMMAND          execute COMMAND after successful update
    --on-error-execute=COMMAND           execute COMMAND if errors occured
    --on-outdated-execute=COMMAND        execute COMMAND when software is outdated
    --list-mirrors                       print mirrors from mirrors.dat
    --submit-stats[=/path/clamd.conf]    only submit detection statistics

macbook:~ ujpadmin$
  • verboseモードで実行してみる.
macbook:~ ujpadmin$ /usr/local/clamXav/bin/freshclam --verbose
Current working dir is /usr/local/clamXav/share/clamav
Max retries == 3
ClamAV update process started at Fri Apr  2 18:07:50 2010
Using IPv6 aware code
Querying current.cvd.clamav.net
TTL: 783
Software version from DNS: 0.96
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.95.3 Recommended version: 0.96
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cvd version from DNS: 52
main.cld is up to date (version: 52, sigs: 704727, f-level: 44, builder: sven)
daily.cvd version from DNS: 10691
Retrieving http://database.clamav.net/daily-10690.cdiff
Trying host database.clamav.net (130.59.10.36)...
Trying to download http://database.clamav.net/daily-10690.cdiff (IP: 130.59.10.3
6)
Downloading daily-10690.cdiff [100%]
cdiff_apply: Parsed 11 lines and executed 11 commands
ERROR: chdir_tmp: Can't create directory ./clamav-0a94239e13acd2066e0bbe2fb92b0b
65
WARNING: Incremental update failed, trying to download daily.cvd
Whitelisting short-term blacklisted mirrors
Retrieving http://database.clamav.net/daily.cvd
Trying to download http://database.clamav.net/daily.cvd (IP: 130.59.10.36)
Downloading daily.cvd [100%]
daily.cvd updated (version: 10691, sigs: 49537, f-level: 44, builder: neo)
Database updated (754264 signatures) from database.clamav.net (IP: 130.59.10.36)
Clamd successfully notified about the update.
macbook:~ ujpadmin$
  • エラーがでているが,パターンファイルのdaily.cvdはダウンロードできている事が確認できる.
  • もう一度実行してみる.
macbook:tmp ujpadmin$ /usr/local/clamXav/bin/freshclam --verbose
Current working dir is /usr/local/clamXav/share/clamav
Max retries == 3
ClamAV update process started at Sat Apr  3 01:36:28 2010
Using IPv6 aware code
Querying current.cvd.clamav.net
TTL: 239
Software version from DNS: 0.96
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.95.3 Recommended version: 0.96
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cvd version from DNS: 52
main.cld is up to date (version: 52, sigs: 704727, f-level: 44, builder: sven)
daily.cvd version from DNS: 10695
daily.cvd is up to date (version: 10695, sigs: 49556, f-level: 44, builder: ccordes)
macbook:tmp ujpadmin$
  • up to dateとでているので,1回目の実行でダウンロードできている事が確認できた.
  • このエラーは,ダウンロード時に利用するディレクトリに,パーミッションが無いためにでるエラーであるが,実質問題ない.
  • ただし,エラーがでているのは気持ち悪いので,修正する.

3.ディレクトリのパーミッションを変更する

  • freshclamのログをよく見ると,ワーキングディレクトリが記載されている.
macbook:tmp ujpadmin$ /usr/local/clamXav/bin/freshclam --verbose
Current working dir is /usr/local/clamXav/share/clamav
Max retries == 3
ClamAV update process started at Sat Apr  3 13:25:49 2010
Using IPv6 aware code
Querying current.cvd.clamav.net
TTL: 294
Software version from DNS: 0.96
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.95.3 Recommended version: 0.96
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cvd version from DNS: 52
main.cld is up to date (version: 52, sigs: 704727, f-level: 44, builder: sven)
daily.cvd version from DNS: 10699
daily.cvd is up to date (version: 10699, sigs: 49678, f-level: 44, builder: 
guitar)
macbook:tmp ujpadmin$
  • ワーキングディレクトリを確認する.
macbook:tmp ujpadmin$ ls -la /usr/local/clamXav/share/clamav
total 114504
drwxrwxr-x  7 _clamav  _clamav       238  4  3 13:10 .
drwxr-xr-x  4 root     wheel         136 11  8 00:53 ..
-rw-r--r--  1 _clamav  _clamav    755066  1  7 14:30 clamav-137326c601747a2c25
dcd1bf5b7cdfab
-rw-r--r--  1 _clamav  _clamav   1166406  4  3 13:10 daily.cvd
-rw-rw-rw-  1 _clamav  _clamav     24096  4  3 13:13 freshclam.log
-rw-r--r--  1 _clamav  _clamav  56671744  2 18 00:45 main.cld
-rw-------  1 _clamav  _clamav       780  4  3 13:25 mirrors.dat
macbook:tmp ujpadmin$
  • ログファイルが格納されていることが分かる.
  • ファイル名clamav-〜で始まるファイルが古いことが確認できる.つまり,更新されていない.
macbook:tmp ujpadmin$ ls -la /usr/local/clamXav/share/
total 0
drwxr-xr-x  4 root     wheel    136 11  8 00:53 .
drwxr-xr-x  8 root     wheel    272  1 12 17:18 ..
drwxrwxr-x  7 _clamav  _clamav  238  4  3 13:10 clamav
drwxr-xr-x  5 root     wheel    170 11  8 00:53 man
macbook:tmp ujpadmin$
  • clamavディレクトリに,その他のユーザからの書き込み権限が無い.
  • 現在はujpadminユーザでcronを実行しており,clamavディレクトリに権限が無いという事になる.
  • その他のユーザからの書き込み権限を付与し,確認する.
macbook:tmp ujpadmin$ sudo chmod o+w /usr/local/clamXav/share/clamav
Password: 
macbook:tmp ujpadmin$ ls -la /usr/local/clamXav/share/
total 0
drwxr-xr-x  4 root     wheel    136 11  8 00:53 .
drwxr-xr-x  8 root     wheel    272  1 12 17:18 ..
drwxrwxrwx  7 _clamav  _clamav  238  4  3 13:10 clamav
drwxr-xr-x  5 root     wheel    170 11  8 00:53 man
macbook:tmp ujpadmin$
  • これで他のユーザから書き込みできる様になった.

4.freshclamを使いエラーが出ない か,確認する

  • パーミッションを変更したので,freshclamを使って更新し,エラーが無いか確認する.
  • なお,freshclamではパターンファイルが更新されてないとダウンロードされないので,しばらく時間が経過した後に行う.
  • また,土日はパターンファイルが更新されない事が多いようなので,タイミングに気をつける.
macbook:tmp ujpadmin$ /usr/local/clamXav/bin/freshclam --verbose
Current working dir is /usr/local/clamXav/share/clamav
Max retries == 3
ClamAV update process started at Mon Apr  5 16:53:36 2010
Using IPv6 aware code
Querying current.cvd.clamav.net
TTL: 386
Software version from DNS: 0.96
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.95.3 Recommended version: 0.96
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cvd version from DNS: 52
main.cld is up to date (version: 52, sigs: 704727, f-level: 44, builder: sven)
daily.cvd version from DNS: 10700
Retrieving http://database.clamav.net/daily-10700.cdiff
Trying host database.clamav.net (219.106.242.51)...
Trying to download http://database.clamav.net/daily-10700.cdiff (IP: 219.106.242.
51)
Downloading daily-10700.cdiff [100%]
cdiff_apply: Parsed 13 lines and executed 13 commands
daily.cld updated (version: 10700, sigs: 49681, f-level: 44, builder: guitar)
Database updated (754408 signatures) from database.clamav.net (IP: 219.106.242.5
1)
Clamd successfully notified about the update.
macbook:tmp ujpadmin$
  • エラーが出ない事が確認できた.
広告スペース
Google