> On Dec 10, 2020, at 6:06 AM, G.W. Haywood via clamav-users > <clamav-users@lists.clamav.net> wrote: > > Hi there, > > On Wed, 9 Dec 2020, Micah Snyder (micasnyd) via clamav-users wrote: > >> This message: >> “*The daily.cvd database downloaded from https://database.clamav.net >> is one version older than advertised in the DNS TXT record.” >> is a verbose-level message from freshclam but is not an error to >> worry about. It indicates a known issue with CloudFlare caching >> that our team has been unable to resolve. You can safely ignore the >> message. Update again in an hour or two and you should get the >> latest database. > > But...but...I thought Joel said that this was fixed in February! [*] > > Shouldn't this be documented? > > At least in the error message itself, and preferably the manual and Bugzilla. > > [*] https://marc.info/?l=clamav-announce&m=158092409813720&w=2 >
By “unable to resolve” Micah means: “There’s nothing more we can do to solve the problem”. When we generate a new cvd/cld, etc, we push it to our local mirrors. We then force Cloudflare to fetch the files through purging the cache for the files updated, and then requesting them through cloudflare (which causes the CF PoP (Point of Presence) to fetch the file from our mirror). Then we update the TXT record in DNS. So, there are occasions where one PoP from Cloudflare is behind and hasn’t yet fetched the file from the other PoP or from our mirror directly. This might be the case that you’re the first one that’s asked for it from your PoP location in the world, or its just not caught up yet. Waiting a bit ensures that the PoP will fetch the file, and when you try again, it’s there (as you can see). I think the way to fix this is, freshclam, if it receives an “I’m behind” error from the PoP, to do a sleep for awhile and then try again. If the second attempt still fails then give the error to the user. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ clamav-users mailing list clamav-users@lists.clamav.net https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
