RE: [Clamav-users] clamav rpm package
Hi all, anybody knows where I can get an rpm package for clamav 0.87 for redhat 9? I would rather install an rpm than build one from source...(which I already have but can't seem to run the daemon properly..i.e. /usr/local/sbin/clamd start doesnt give an ok nor an error message but when I list down the processes it doesnt seem to be running... thanks! http://dag.wieers.com/packages/clamav/ http://www200.pair.com/mecham/spam/clamav-redhat-amavis.html _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] clamav rpm package
Hi all, anybody knows where I can get an rpm package for clamav 0.87 for redhat 9? I would rather install an rpm than build one from source...(which I already have but can't seem to run the daemon properly..i.e. /usr/local/sbin/clamd start doesnt give an ok nor an error message but when I list down the processes it doesnt seem to be running... thanks! http://dag.wieers.com/packages/clamav/ http://www200.pair.com/mecham/spam/clamav-redhat-amavis.html The second link may not apply to your situation, sorry. _ On the road to retirement? Check out MSN Life Events for advice on how to get there! http://lifeevents.msn.com/category.aspx?cid=Retirement ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] Two new Bagles out
I wrote: Both caught by Bitdefender as [EMAIL PROTECTED] ClamAV daily update 1085 catches one of them as Worm.Bagle.BO (McAfee also picks it up as generic malware) but not the later one. I've submitted samples of both to clamav.net, virusscan.jotti.org, virustotal.com, malwareupload.com, and webimmune.net. Make that three variants. I've sent the ClamAV team have a sample of the latest one (which only McAfee detected). Cheers, Phil I just submitted one that jotti.org shows BitDefender calls [EMAIL PROTECTED] but my copy of BitDefender actually did not detect it. D.J. Fan _ Dont just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] Keeping Trend Micro and Symantec fed
Thanks again ClamAV developers and maintainers. Today will be the fourth time I submit a virus caught by ClamAV and missed by both Trend Micro and Symantec to them. Obviously yet another new Bagle variant caught by an older ClamAV signature: A virus was found: Worm.Bagle.BB-gen A banned name was found: multipart/mixed | application/octet-stream,.zip,new__price.zip | .dll,price.cpl Scanner detecting a virus: ClamAV-clamd D.J. Fan _ Dont just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] Keeping Trend Micro and Symantec fed
Thanks again ClamAV developers and maintainers. Today will be the fourth time I submit a virus caught by ClamAV and missed by both Trend Micro and Symantec to them. Obviously yet another new Bagle variant caught by an older ClamAV signature: A virus was found: Worm.Bagle.BB-gen A banned name was found: multipart/mixed | application/octet-stream,.zip,new__price.zip | .dll,price.cpl Scanner detecting a virus: ClamAV-clamd D.J. Fan Sep 12th, 12:24 Mountain Daylight Time http://virusscan.jotti.org/ AntiVir Found DR/Bagle.P ArcaVir Found Worm.Beagle.AV Avast Found Win32:Mitglieder-BK AVG Antivirus Found nothing BitDefender Found Dropped:[EMAIL PROTECTED] ClamAV Found Worm.Bagle.BB-gen Dr.Web Found nothing F-Prot AntivirusFound W32/Mitglieder.FB FortinetFound nothing Kaspersky Anti-VirusFound Email-Worm.Win32.Bagle.ct NOD32 Found nothing Norman Virus ControlFound nothing UNA Found nothing VBA32 Found nothing Do you know where you viruses are today? ;) _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] Amavis error with clamd
I just finished trying to upgrade ports on this FreeBSD system, and am getting an unusual error in the logs for Amavisd-new. Clam Antivirus-clamd: Error reading from /var/run/clamav/clamd: Resource temporarily unavailable at (eval 53) line 253, GEN8 line 1., retrying (2) Any ideas? Help? Appears to be the usual problem with file permissions. See if this link provides insight and a possible solution: http://www200.pair.com/mecham/spam/clamav-amavisd-new.html BTW, I have found that even after my Debian system is set up correctly and I have restarted the clamd and amavisd-new daemons, I still get an access denied error that only seems to solve itself with a reboot. D.J. Fan _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] Clamav 0.86 and APT-GET
This is my first post to list. I have problems to get the new version using APT on Debian based system, I make an apt-get update, next apt-get install clamav says that I'm up to date, looking on my cache (apt-cache showpkg clamav) they say package version 0.85.1. Hmm, I installed from unstable today around 2:00pm. Try 'apt-cache policy clamav' Have you included unstable sources in /etc/apt/sources.list ? and given usnstable low priority in /etc/apt/preferences ? See: http://jaqque.sbih.org/kplug/apt-pinning.html ClamAV is the one and only thing I install from unstable. So, you have publically shamed me into getting my act back together :) 0.86.1 is up on people.debian.org/~sgran. voltile may take some time longer. -- I think you do a great job, I don't think there is an easier way to install clamav than the Debian way. D.J. Fan _ FREE pop-up blocking with the new MSN Toolbar get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] Kudos to the ClamAV team
Just wanted to toss out a kudos to the ClamAV team. ClamAV has caught every variant of Mytob thrown at it so far as W32/Mytob.AS, while most other AV scanners struggle to keep their signatures up to date and end up being a day or more late in detecting variants. Some, such as Symantec still don't detect most of the variants. Great work getting it right the first time. And thank you for all the work and effort all of you guys put into this project. Ryan I'll second that. My BitDefender caught the very first few before ClamAV did but then I use cron for updates and it may have just been a timing issue. Trend Micro and Symantec both continue to not detect 40 or so a day for my small site. What the heck would I do without you saviors? The giants are ponderous sloths. You guys are nimble Ninjas. Gary _ On the road to retirement? Check out MSN Life Events for advice on how to get there! http://lifeevents.msn.com/category.aspx?cid=Retirement ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] Re: FW: 553 5.5.4 [EMAIL PROTECTED]...Real domain name required for sender address
bonar wrote: And this is the email that I got, A message sent from [EMAIL PROTECTED] to [EMAIL PROTECTED] contained Eicar-Test-Signature and has not been delivered. The message in question has been quarantined as /usr/local/clamav-0.85.1/quarantine/050603/j534nVeE008497.Eicar-Test-Sig nature The message was received by mydomain.com from [EMAIL PROTECTED] via uealpha [192.168.1.10] For your information, the original message headers were: Received: from 192.168.1.10 (SquirrelMail authenticated user bonar) by webmail. mydomain.com with HTTP; Fri, 3 Jun 2005 12:50:03 +0800 (MYT) Message-ID: 55890. [EMAIL PROTECTED] mydomain.com Date: Fri, 3 Jun 2005 12:50:03 +0800 (MYT) Subject: [Fwd: test virus] From: Bonar bonar@ mydomain.com ---^ What's this space doing here? [snip] But I still have this problem ctladdr=[EMAIL PROTECTED] (501/501). It's not been change to [EMAIL PROTECTED] Still need your advice. If your hosts file looks something like this: 127.0.0.1 myhostname localhost.localdomain localhost 192.168.1.27myhostname.example.com myhostname get rid of the myhostname on the 127.0.0.1 line DJ Fan _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] mail delay
does that socket file exist? does whatever user clamd is running as have write access to it? On Mon, 2005-04-04 at 16:29 +0200, Souza Simbota wrote: Hello, I have noticed there is a delay in my mail server operations . I tried to send a test mail to myself an hour ago but I haven't got it yet. I was checking at mail logs and came across the line below: Apr 4 10:15:33 glory amavis[29973]: (29973-02) Clam Antivirus-clamd: Can't connect to UNIX socket /var/lib/clamav/clamd: Connection refused, retrying (3) What could be the solutions to this? Souza Simbota It looks like you run are running amavisd-new as user 'amavis'. If this is true, try adding user 'clamav' to the amavis group: gpasswd -a clamav amavis then stop and restart amavisd-new see http://www200.pair.com/mecham/spam/clamav-amavisd-new.html for more details. _ Dont just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] mail delay
Actually, the other way around, add amavis to the clamav group, usermod -G clamav amavis then add: AllowSupplementaryGroups to the clamd.conf file, and restart both clamd and amavis-new. gpasswd works differently, and is safer to use in this case than usermod. If someone does not capitalize the G it can lead to problems. gpasswd -a user group But let me be more succinct. They easiest way to solve file permission issues when trying to get amavisd-new and clamd working together is to make the clamav user a member of your amavisd-new group. For example, if your clamav user is 'clamav' and your amavisd-new group is 'vscan', you can easily accomplish this by running: # gpasswd -a clamav vscan to verify, run # groups clamav There are at least a few other things that MUST be done. 1) Verify the value after CONTSCAN in amavisd.conf matches the LocalSocket setting in clamd.conf. Change it in amavisd.conf if it does not match. 2) Make sure LocalSocket is enabled and TCPSocket is disabled in clamd.conf. 3) Make sure AllowSupplementaryGroups is enabled in clamd.conf and restart both clamd and amavis-new. _ Is your PC infected? Get a FREE online computer virus scan from McAfee® Security. http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] mail delay
Actually, the other way around, add amavis to the clamav group, usermod -G clamav amavis then add: AllowSupplementaryGroups to the clamd.conf file, and restart both clamd and amavis-new. Daniel J McDonald, CCIE # 2495, CNX Austin Energy I apoligize, I misunderstood. It probably works either way. I know it works the way I do it and I have no reason to believe it would not work the other way around. I don't know if there is an advantage either way. _ Dont just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/ ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] clamd problems
I'm having a problem getting clamd to start. I'm using the clamav09.80rc3-1 rpm. I tried setting up the clamav milter and I enabled LocalSocket /var/run/clamav/clamd.sock. When I try starting it, I get this error: Why is this happening? I'm not sure how to turn off the local mode. I don't know if this is your problem, but: Don't use both LocalSocket and TCPSocket, choose one. I use LocalSocket This may possibly help: http://www.xmission.com/~jmcrc/clamav-amavisd-new.html _ Check out Election 2004 for up-to-date election news, plus voter tools and more! http://special.msn.com/msn/election2004.armx ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] clamav on debian stable
From: agenteo I've installed the clamav (clamav clamav-base clamav-deamon clamav-freshclean alibclamav1) debian packages taken from www.clamav.net/binary.html Are you also using amavisd-new? _ FREE pop-up blocking with the new MSN Toolbar get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ --- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
RE: [Clamav-users] amavis+clamd+postfix question
From: Crucificator [EMAIL PROTECTED] I have an install as posted in subject. The problem is that although BANNED response find sender: Subject: BANNED IN MAIL TO YOU (from [EMAIL PROTECTED]) Our content checker found banned name: P=p002,M=application/x-msdownload,T=dat,N=KaHT.exe in an email to you from: [EMAIL PROTECTED] the VIRUS response doesn't find the sender: Subject: VIRUS (Trojan.Prorat.O) FROM [EMAIL PROTECTED] The mail originated from: [EMAIL PROTECTED] According to the 'Received:' trace, the message originated at: ... (notice - if not already :) - the ? mark instead of the address). Can anyone help me on this matter? 10ks in advance This is an amavisd-new issue, you need to ask on that list. I can tell you however, that the [EMAIL PROTECTED] is an attempt to provide you with the IP address of the sender as opposed to the sender's email address which is usually faked. It is therefore more useful if you wanted to know where the mail actually came from. _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ --- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] Scan time limits?
Sean Hafeez wrote: I have a 384k line and someone is trying to send me a 100mb pdf. Can I set the time line higher or set it to just let the file thru? :-O Have them burn it to a CD and send it to you. _ Dont just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/ --- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 13. Go here: http://sf.net/ppc_contest.php ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] Upgrade clamav on Debian and now service creates error when starting
Jim wrote: After I upgraded clamav via apt-get I now get an error during restart of /etc/init.d/clamav-daemon. This is on a debian system and the error created is: /etc/init.d/clamav-daemon restart Restarting clamav daemon: clamdERROR: Parse error at line 10: Unknown option ThreadTimeout. ERROR: Can't open/parse the config file /etc/clamav/clamav.conf While checking permissions I changed the persmissions on /etc/clamav/clamav.conf Here is the output on /etc/clamav/clamav.conf ls -alt /etc/clamav/clamav.conf -rwxrwxrwx 1 amavis root 434 Jul 21 10:47 /etc/clamav/clamav.conf The version now installed on the Debian system is 0.75.1-4 Jim This is an old option, which is no longer used by clamav. Just remove that line from /etc/clamav/clamav.conf and it should work. What was your old version? Please file a detailed bug report at bugs.debian.org. Thank you Thomas I would guess that when you upgrade and you choose to keep your old configuration file, and that file has stuff in it that is no longer used, it only makes sense that you would get an error. Take a peek at http://www.xmission.com/~jmcrc/clamav-amavisd-new.html and look at the configuration for that box. Maybe it will give you ideas on how to change some of the settings in the config files to bring them more up to date. _ On the road to retirement? Check out MSN Life Events for advice on how to get there! http://lifeevents.msn.com/category.aspx?cid=Retirement --- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 13. Go here: http://sf.net/ppc_contest.php ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] Can I submit a file if I'm not sure it's a virus?
D.J. Fan wrote: I just received 3 emails with a subject of 'foto' or 'fotos' and a zip attachment named 'foto.zip' with 'calc.exe' and 'foto.htm' contained therein that passed through 3 different scanners undetected. This is Trojan.Dropper.Small-11 added in ClamAV update 475 just in the last hour. I got a couple that slipped through just before the update, but they are being caught now. My other virus scanners still don't detect it. James Lick It was Trojan.Dropper.Small-11 that Symantec calls Download.Ject.C It was discovered August 28th, and it infected a computer on my network on that day, but for some reason, no anti-virus vendor that I am aware of put it in their pattern file until August 31st. It disables descktop anti-virus programs. This allowed the same computer to get infected with a Beagle virus. I have 4 scanners on our network, ClamAV, Panda, Symantec and Trend Micro. It just goes to show you how easy it is for a blended threat to occur. New rule: quarantine all zip attachments. (I do this on my main network but have no control over a few machines that need to use a different email provider.) _ FREE pop-up blocking with the new MSN Toolbar get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ --- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=5047alloc_id=10808op=click ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
[Clamav-users] Can I submit a file if I'm not sure it's a virus?
I just received 3 emails with a subject of 'foto' or 'fotos' and a zip attachment named 'foto.zip' with 'calc.exe' and 'foto.htm' contained therein that passed through 3 different scanners undetected. I don't want to infect my own machine by opening it. Can I forward it to someone to check it out? _ On the road to retirement? Check out MSN Life Events for advice on how to get there! http://lifeevents.msn.com/category.aspx?cid=Retirement --- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=5047alloc_id=10808op=click ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] daily.db.clamav.or.id : clamav db update via DNS
At 08:06 21.08.2004 -0600, you wrote: Thats why the new method of using DNS to cache the version number will be a much better solution and I think it will allow more frequent checks without burdening the mirrors and shifting the load to the DNS infrastructure. I am not a DNS expert by any means and I may be way off in left field here but you may want consider that there are many a server behind gateway appliances or proxies that cache DNS for a fixed length of time. I really have no idea if there are devices that do not obey refresh values but the bigger question is: do you? There are Without knowing for sure how these devices handle the DNS refresh I would be cautious. It may not be an issue if the server were configured to use a real a DNS server to obtain records, but I would think many internal servers are configured to obtain records from gateway proxies/routers/appliances and if configured to do so, and these devices do not obey rules, the records they see may be 12 hours old or older. Just something to consider. I could be wrong. You can choose the DNS server you want to use for your virus scanner, can't you? Yes DNS is definitely the method of choice to distribute such information. It has been designed for fast distribution of small information chunks, and TTL has been there forever, so any implementation not respecting these values should be scheduled for deletion anyway. I have no evidence that this problem actually exists so the point may be moot, but if there are gateway devices that ignore TTL in favor of their own proprietory cache mechanism then at least the user should be informed of this possibility and asked to reconfigure their resolver to point to a real DNS server. Questions are: Is this in fact a potential issue? If it is, how will the end user be notified that they may need to reconfigure their resolver? _ On the road to retirement? Check out MSN Life Events for advice on how to get there! http://lifeevents.msn.com/category.aspx?cid=Retirement --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] Downloading clam virus definition files automatically
sudo crontab -e add at the end */10 * * * * /path/to/freshclam --quiet NO! Once an hour is reasonable, but not 6 times an hour! I agree, I think a better way is to add a file to the /etc/cron.d directory with the contents of the file: # m h dom mon dow user command 11 */2 * * * clamav /path/to/freshclam --quiet with clamav being the user the program is configured to run under. (pick a random number between 1 and 59 for the time - don't use the digit zero) This will run every two hours. For a system with 500+ users, run it every hour. I use this setup on Debian. Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users _ FREE pop-up blocking with the new MSN Toolbar get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] Downloading clam virus definition files automatically
But i have a problem here. Assume that clam updates are published at 6:10 Pm. I check for new updates at 6:05 so the next time i gonna check is at 7:05 it just means that after 55 mins i got the updates. And within this 55 minutes thousands and thousands of say ..a worm which is in wild arrives to my mailserver and clam does not detect it it passes out what do i do ? As far as viruses go, we all have a problem. You could get a virus hours before ANY anti-virus software provider is aware of it. That's just the way it is. I use a total of three different scanners - Trend Micro, Clamav and Norton on the desktop. Do I feel safe? - never. _ Dont just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/ --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
RE: [Clamav-users] clam newbie
also, where can i configure clamav to send a notification if when a virus is detected? You configure amavisd to send notification. Uncomment and edit to meet your needs: # $virus_admin = [EMAIL PROTECTED]; You may also want to configure and enable: #$mailfrom_notify_admin = [EMAIL PROTECTED]; #$mailfrom_notify_recip = [EMAIL PROTECTED]; #$mailfrom_notify_spamadmin = [EMAIL PROTECTED]; _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
RE: [Clamav-users] freshclam --quiet warnings/bugs
It should tell you that it's trying again. Yes, it does that in the syslog, and the --quiet tells it to be less noisy, but for those of us running cronjobs, the *only* output we want is failure notices, and any corrective action it might take. I think it should be a simple change to have the Trying again...\n line come out even with --quiet set. As a corrolary to the above, it might be nice if it said that a retry was successful. (But ONLY a retry... I don't want to get emailed on the normal case.) That would ease the stress on admins seeing these warnings, since we otherwise have to search syslogs or dig through source code to see whether these errors were fatal. I would love to get emailed a notice when the virus database has been updated, and when it tried but failed. _ Express yourself instantly with MSN Messenger! Download today - it's FREE! hthttp://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] HOWTO chroot clamav
Nigel Horne wanted us to know: Should, I presume, read --disable-clamav and why have you used with-user twice? Sounds right (fix spelling and only one with-user). It seems to be Linux specific. Definitely is. maybe should be ./configure --disable-clamav --with-user=amavis --with-group=amavis _ FREE pop-up blocking with the new MSN Toolbar get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
[Clamav-users] clamd cannot connect to Unix socket
Aug 9 08:51:12 mail amavis[22421]: (22421-05) Clam Antivirus-clamd: Cant connect to UNIX socket /var/run/amavis/clamd.ctl: No such file or directory, retrying (3) This may help you: Configuring ClamAV (clamd) for use with amavisd-new HOWTO http://www.xmission.com/~jmcrc/clamav-amavisd-new.html _ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/ --- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users