Unable to scan within a container that has access to an immutable OS #465
Description
Hello, I am probably not making a mistake in thinking that the use of this program is not incompatible within an OCI-type container that has access to an immutable OS host.
Immutable OS host
$ hostnamectl | sed -n '8p;10p' | awk '$1=$1'
Operating System: Fedora Linux 43.20260224.0 (Silverblue)
OS Support End: Wed 2026-12-02
Container
OCI-image from which the container was created
$ podman images --format '{{.Names}} {{.Size}} | {{.IsReadOnly}}' | grep toolbox
[registry.fedoraproject.org/fedora-toolbox:latest] 2.11 GB | false
Entering the container with toolbox enter fedora-toolbox:latest.
Commands executed within the container
⬢ [...@toolbx ...]$ stat /bin/init | head -n 1
File: /bin/init -> ../lib/systemd/systemd
⬢ [...@toolbx ...]$ git clone --single-branch -b 2.0.1 https://github.com/rfxn/linux-malware-detect.git \
&& cd linux-malware-detect/
⬢ [...@toolbx ...]$ LANG=C sudo ./install.sh
Failed to connect to system scope bus via local transport: No such file or directory
Linux Malware Detect v2.0.1
[...]
installation completed to /usr/local/maldetect
config file: /usr/local/maldetect/conf.maldet
[...]
imported config options from /usr/local/maldetect.last/conf.maldet
maldet(13582): {sigup} performing signature update check...
maldet(13582): {sigup} could not determine signature version
maldet(13582): {sigup} signature files missing or corrupted, forcing update...
[...]
cp: cannot stat '/usr/local/maldetect/tmp/.sigup.69Hnwc/clean/*': No such file or directory
maldet(13582): {sigup} unpacked and installed maldet-clean.tgz
maldet(13582): {sigup} signature set update completed
maldet(13582): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA(cav) | 0 USER)
That would be the root of the following
non-existing paths. Waiting more than ten minutes does not affect the operation successfully.
⬢ [...@toolbx ...]$ maldet -a /home/$USER | sed '1,5d'
public scanning is enabled (scan_user_access=1) but paths do not exist, please contact your system administrator to run '/usr/local/bin/maldet --mkpubpaths' or wait for cron.pub to execute in ~10 minutes.