FAQ: ClamAV Virus Scanning Fails with 'Access Denied' with Sentry on Linux

When enabling ClamAV on-board AV scanning with Sentry running on a Linux OS, the scan may fail with an error similar to:

" Clam AV daemon responds: /tmp/clam172379119.tmp: Access denied. ERROR "

 

This is a permissions problem that is resolved by modifying or disabling the SELinux security mechanism within the host OS.

 

For instance, changing SELinux from "enforcing" to "permissive" will resolve the problem. However, disabling SELinux is not advised if the system is available on the internet. Please check with your network security team before making this modification. A better solution may be to continue to use SELinux but to target specific network daemons or configure SELinux accordingly.

 

For more information see:

http://wiki.centos.org/HowTos/SELinux

http://www.how2centos.com/disable-selinux-centos-6/

http://en.wikipedia.org/wiki/Security-Enhanced_Linux

0 Comments

Article is closed for comments.