eTrust Virus Scanner
Hancock, Scott
HancockS at MORGANCO.COM
Tue Sep 16 18:43:11 IST 2003
I think you did it! The environment variable script worked.
I hesitate to edit etrust-wrapper because of the environment var
settings in there. Could you have a look for me?
Thanks a lot that was quite a lesson. Could you recommend a reference
for the specifics of UID's and EUID's? I was thinking about getting
Learning the Bash Shell, 2nd Edition Cameron Newham, Bill Rosenblatt
O'Reilly & Associates,
And Learning Perl, 3rd Edition; Randal L. Schwartz, et al,
Do you have a favorite?
-Scott
-
bambam:~# su mail
bambam:/root$ sudo /home/scott/scripts/EtrustSudo /home/scott/eicar.com
File /home/scott/eicar.com is infected by virus: EICAR test file
Total Files Scanned: 1
Total Viruses Found: 1
Total Infected Files Found: 1
Scan Mode: Secure
*** End Of Summary ***
Where env is:
bambam:/root$ less /home/scott/env
LD_LIBRARY_PATH=/opt/eTrustAntivirus/secu/lib:/opt/eTrustAntivirus/ino/c
onfig:/opt/eTrustAntivirus/ino/lib;
export LD_LIBRARY_PATH
CAIGLBL0002=CACRITMON; export CAIGLBL0002
CAIGLBL0000=/opt/eTrustAntivirus; export CAIGLBL0000
CAIUNIDB=caiunidb; export CAIUNIDB
CAIGLBL0006=CASNMPMGR; export CAIGLBL0006
CA_CAILANGUAGE=enu; export CA_CAILANGUAGE
CAI_CAMSGF_OPRDIRECT=; export CAI_CAMSGF_OPRDIRECT
CAI_DATEFMT=MMM-DD-YYYY; export CAI_DATEFMT
CA_REPORT=/opt/eTrustAntivirus/report; export CA_REPORT
CAPB_PATH=/opt/eTrustAntivirus/prb/config; export CAPB_PATH
CA_CAIMESSAGE=/opt/eTrustAntivirus/messages/american; export
CA_CAIMESSAGE
/opt/eTrustAntivirus/ino/bin/inocmd32 $*
*****************************************************
I also had to change sudoers to:
# This file MUST be edited with the 'visudo' command as root.
#
# See the man page for details on how to write a sudoers file.
#
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root ALL=(ALL) ALL
scott ALL=(ALL) ALL
User_Alias MAIL = mail
Runas_Alias ROOT = root
Host_Alias LOCALHOST = bambam.morganco.com
#Cmnd_Alias ETRUST = /opt/eTrustAntivirus/ino/bin/inocmd32
Cmnd_Alias ETRUST = /home/scott/scripts/EtrustSudo
Defaults mailto = you at yourdomain.com
MAIL LOCALHOST = (ROOT) NOPASSWD: ETRUST
>-----Original Message-----
>From: Kevin Spicer [mailto:kevins at BMRB.CO.UK]
>Sent: Tuesday, September 16, 2003 11:15 AM
>To: MAILSCANNER at JISCMAIL.AC.UK
>Subject: Re: eTrust Virus Scanner
>
>On Tue, 2003-09-16 at 15:18, Hancock, Scott wrote:
>
>>bambam:/opt/eTrustAntivirus# su mail
>>bambam:/opt/eTrustAntivirus$ sudo
/opt/eTrustAntivirus/ino/bin/inocmd32
>>Unable to load message from string resource file.
>
>
>Okay, doesn't look like sudo wants to play ball! Looking at the
output
>of printenv theres quite a few CAI related settings in there
>
>Maybe env_reset is on by default, try adding
>
>Defaults env_reset=false
>
>to sudoers and trying again.
>
>If that fails....
>
>This is an ugly kludge, but it might just work... Create a script...
>
>#!/bin/bash
>
># include a pair of lines like the following for all the environment
># variables beginning CA
>VARIABLE=value
>export VARIABLE
>
>/opt/eTrustAntivirus/bin/inocmd32 $*
>
>##End script
>
>then use sudo to call this script (the idea is to set the environment
up
>after sudo strips it down and before calling inocmd32)
>
>
>
>
>
>
>BMRB International
>http://www.bmrb.co.uk
>+44 (0)20 8566 5000
>_________________________________________________________________
>This message (and any attachment) is intended only for the
>recipient and may contain confidential and/or privileged
>material. If you have received this in error, please contact the
>sender and delete this message immediately. Disclosure, copying
>or other action taken in respect of this email or in
>reliance on it is prohibited. BMRB International Limited
>accepts no liability in relation to any personal emails, or
>content of any email which does not directly relate to our
>business.
More information about the MailScanner
mailing list