[Clamav-users] clamav with postfix
Hey Friends, I have configured a Mail Server on FC3(Fedora Core 3) a Redhat Product.The Mail Server MTA is Postfix and Pop Server is Dovecot.I have few questions. a) I have installed clamav.083 on FC3 I will make sure that I update it soon.As the Mail Server is running on FC3 how do I make clamav work with postfix.I read the documentation of clamav but there is nothing given for Postfix as compared to Sendmail.For Sendmail we can give direct entries in the sendmail.mc for clamav-milter.I have downloaded and installed clamav-milter also but i am not getting the lines which i need to make it run with postfix.I know that there are few utilities like MailScanner ,Amavis but I am interested in putting the codes for clamav in Postfix to make it run with Postfix. b) On the Same Machine on which Mail Server is running ,Samba Server is also configured .I want to protect samba shares from viruses and trojans.Is it possible to protect the Mails and Samba Shares on the same machine through Clamav antirvirus.If yes which rpm i have to download for that. c)I ran the clamscan on the FC3 and clamav says there are 8 infected files.I don't know how to delete those files.Clamav does not deletes the infected files by itself . I will be very grateful if you can reply to my queries.May be few of the questions i have asked might be answered before also . Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] error while scanning with clamscan on Fedora Core with clamav.084
Hey friends, I upgraded the earlier version of clamav .83 to clamav.84 on Fedora Core 3.I did not find any problem while uninstalling earlier version and installing the latest version. I have created one scan script ,what this script does is it daily scans my Fedora Core 3 server for any virus or trojans. The contents of the script are * #!/bin/sh ### A simple update script for the clamav virus database. ### This could as well be replaced by a SysV script. ### fix log file if needed LOG_FILE="/var/log/clamav/scan.log" if [ ! -f "$LOG_FILE" ]; then touch "$LOG_FILE" chmod 644 "$LOG_FILE" chown clamav.clamav "$LOG_FILE" fi /usr/bin/clamscan -r /root /usr /var /home /tmp \ --quiet \ --log="$LOG_FILE" \ --log-verbose \ --move=/var/log/infected \ *** Everytime the script is run these messages are displayed on the standard ouput. "LibClamAV Error: cli_untar: only standard TAR files are currently supported LibClamAV Warning: Multipart MIME message contains no boundaries" Is there any problem with this script or clamav. Moreover another latest version of clamav is available now as shown in the logs ClamAV update process started at Thu May 12 04:02:08 2005 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.84 Recommended version: 0.85 DON'T PANIC! Read http://www.clamav.net/faq.html main.cvd is up to date (version: 31, sigs: 33079, f-level: 4, builder: tkojm) daily.cvd is up to date (version: 875, sigs: 1218, f-level: 4, builder: diego) Please guide me. Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] error while scanning with clamscan on Fedora Core with clamav.084-second time post
Hey friends, I upgraded the earlier version of clamav .83 to clamav.84 on Fedora Core 3.I did not find any problem while uninstalling earlier version and installing the latest version. I have created one scan script ,what this script does is it daily scans my Fedora Core 3 server for any virus or trojans. The contents of the script are * #!/bin/sh ### A simple update script for the clamav virus database. ### This could as well be replaced by a SysV script. ### fix log file if needed LOG_FILE="/var/log/clamav/scan.log" if [ ! -f "$LOG_FILE" ]; then touch "$LOG_FILE" chmod 644 "$LOG_FILE" chown clamav.clamav "$LOG_FILE" fi /usr/bin/clamscan -r /root /usr /var /home /tmp \ --quiet \ --log="$LOG_FILE" \ --log-verbose \ --move=/var/log/infected \ *** Everytime the script is run these messages are displayed on the standard ouput. "LibClamAV Error: cli_untar: only standard TAR files are currently supported LibClamAV Warning: Multipart MIME message contains no boundaries" Is there any problem with this script or clamav. Moreover another latest version of clamav is available now as shown in the logs ClamAV update process started at Thu May 12 04:02:08 2005 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.84 Recommended version: 0.85 DON'T PANIC! Read http://www.clamav.net/faq.html main.cvd is up to date (version: 31, sigs: 33079, f-level: 4, builder: tkojm) daily.cvd is up to date (version: 875, sigs: 1218, f-level: 4, builder: diego) Please guide me. Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] problem after upgarding from 0.84 to 0.85
hey friends, I upgraded the clamav antivirus from 0.84 to 0.85 on FC3 linux.I think there is some problem while installing it asks for sendmail .I choose the option rpm -ivh --nodeps clamav-* for installation. Starting clamav-milter: ERROR: Please edit the example config file /etc/clamd.d/milter.conf. /usr/sbin/clamav-milter: Can't parse the config file /etc/clamd.d/milter.conf [FAILED] Even the freshclam is not working. ERROR: Please edit the example config file /etc/freshclam.conf. ERROR: Can't parse the config file /etc/clamd.conf this service is also not running service lamd-wrapper start clamd-wrapper: unrecognized service Can anybody guide what wrong is going on my side. Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] problem after upgarding from 0.84 to 0.85
> > You need to edit the milter.conf, clamd.conf and freshclam.conf files just > like > it says. Before you do that you should read about and understand the purpose > of > the options in those files. There is no shortcut for this learning step and if > you fail at this you will never be certain your installation is working > correctly. There is no conflict with previous version.But there is no clamd.conf file in /etc. I copied the sample clamd.conf file given with the clamav docs. I will make the correct changes in the above files. Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] problem after upgarding from 0.84 to 0.85
O
> >
> > You need to edit the milter.conf, clamd.conf and freshclam.conf files just
> > like
> > it says.
I edited the respective files.But few problems
a) I am getting this "Please activate the clamav update in
/etc/cron.d/clamav-update"
I edited the /etc/cron.d/clamav-update file and uncommented the following
MIN HOUR/3 * * * root /usr/bin/freshclam --quiet && { test -x
/usr/sbin/clamav-notify-servers && exec
/usr/sbin/clamav-notify-servers || :; }
I replaced MIN with 3 and HOUR with 24 .
Then i commented the following line
1 8 * * * clamav /bin/sh -c 'echo "Please activate the clamav update
in /etc/cron.d/clamav-update" >&2'
I have done the right thing or not?
Will the clamav will automatically update itself or I have to do some
more changes to make it work?
2) There is a script under /etc/init.d
"clamd-wrapper"
I tried to start this script/service but it says "unrecognized service".
Is there any problem with this service means it is not installed correctly?
What is the use or purpose of clamd-wrapper.
3) I am using Postfix as MTA , I am not using any other utility or
tool like Mail Scanner to scan mails, but I can see that in the mail
headers there are entries for "f-prot ".It means the clamav is
scanning the mails also.
Still do I need to install and configure utilities like Mail Scanner
or clamav-milter is enough to scan all the mails.
Thanks & Regards
Ankush Grover
___
http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] clamd-wrapper problem on fc3
hey friends, today i downloaded the recent version of clamav-0.86.2-3 from the fedora site. clamav-0.86.2-3.fc3.i386.rpm clamav-data-0.86.2-3.fc3.i386.rpm clamav-devel-0.86.2-3.fc3.i386.rpm clamav-lib-0.86.2-3.fc3.i386.rpm clamav-milter-1.86.2-3.fc3.i386.rpm- clamav-server-0.86.2-3.fc3.i386.rpm clamav-update-0.86.2-3.fc3.i386.rpm First I faced the problem of timeout with clamav-milter and now I am facing problem in starting clamd-wrapper.Clamav-milter problem is not solve ,I had to put --timeout=5 in /etc/sysconfig/clamav-milter file and also need to copy clamd.conf file into /etc directory. Whenever I try to start clamd-wrapper it says unrecognized service. I can see clamd-wrapper service in /etc/init.d/ but it is not working.Where can i check for the problem . Moreover I have configured MailScanner with postfix. The url for MailScanner http://www.hughesjr.com/content/view/12/2/Site_News I downloaded few samples Antivirus testing files from a site like eicar.com & eicarcom2.zip But I can see MailScanner is letting them pass through these sample files. Please help me as I need to update my running version of postfix in few days time.I want to upgrade clamav 0.85 to 0.86 and also want to configure MailScanner. Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] LibClamav errors with clamscan on FC3 with clamav 0.87
hey, I am using clamav 0.87 on Fedora Core3.Since I have updated to 0.87 I am getting this error.Actually I have set a cron job for scanning whole system at midnight through clamscan. LibClamAV Error: cli_untar: only standard TAR files are currently supported LibClamAV Warning: Multipart MIME message contains no boundaries LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Error: cli_untar: only standard TAR files are currently supported LibClamAV Error: cli_untar: only standard TAR files are currently supported Any pointers why these errors are generated ? Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] LibClamav warning & errors on FC3 with 0.87 version
hey, I am using clamav 0.87 on Fedora Core3.Since I have updated to 0.87 I am getting this error.Actually I have set a cron job for scanning whole system at midnight through clamscan. LibClamAV Error: cli_untar: only standard TAR files are currently supported LibClamAV Warning: Multipart MIME message contains no boundaries LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Warning: Unknown VBA version signature 6c 0 0 1 LibClamAV Warning: Guessing little-endian LibClamAV Error: cli_untar: only standard TAR files are currently supported LibClamAV Error: cli_untar: only standard TAR files are currently supported Any pointers why these warnings & errors are generated ? Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] LibClamav warning & errors on FC3 with 0.87 version
On 11/14/05, Tomasz Papszun <[EMAIL PROTECTED]> wrote: > > On Mon, 14 Nov 2005 at 14:22:47 +0100, Richard Pijnenburg wrote: > > Have you also tried to update to version 0.87.1 ? > > > > ankush grover wrote: > [...] > > >___ > > hey, I will update it to version 0.87.1 . Thanks & Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] MailScanner/ClamAV config
On 5/5/06, Odhiambo Washington <[EMAIL PROTECTED]> wrote: * On 05/05/06 17:53 +0100, Robert Isaac wrote: | I installed ClamAV from rpms from dag.wieers.com. The file | /opt/MailScanner/etc/virus.scanners.conf needs the location of the virus | scanner and is set by default at: | | clamav/opt/MailScanner/lib/clamav-wrapper /usr/local | | I don't have any clam files in /usr/local, so what file(s) do I need to find | to enter the correct path. Is it /usr/bin for the file clamscan? hey, It is mentioned in the file itself that don't edit this file May be you need Monitors for ClamAV Updates = /var/clamav/*.cvd for this edit Mailscanner.conf Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] Clam newbie - how to schedule scans, cron job?
On 5/28/06, Chuck Bunn <[EMAIL PROTECTED]> wrote: Hi, What is the difference between clamd, clamdscan and clamscan and which one should be used on a file server. (Centos 4.3) Hey Chuck, I don't know what to you but I am using clamscan and the script I am using for scanning my filesystem everyday at nite is below: schedule this script with cron #!/bin/sh ### fix log file if needed LOG_FILE="/var/log/clamav/scan.log" if [ ! -f "$LOG_FILE" ]; then touch "$LOG_FILE" chmod 644 "$LOG_FILE" chown clamav.clamav "$LOG_FILE" fi /usr/bin/clamscan -r /root /usr /var /home /tmp \ --quiet \ --log="$LOG_FILE" \ --log-verbose \ --move=/var/log/infected \ Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] Re: [LinCVS Users] how to add ssh port in LinCVS on FC3
On 7/13/06, Tilo Riemer <[EMAIL PROTECTED]> wrote: Hello, > Thanks for the reply. I removed the "=" signs from the config file but > still the error is persisting. > What happens if you try ssh [EMAIL PROTECTED] ? (without port nb) hey, ssh [EMAIL PROTECTED] ssh test1 192.168.2.13 ssh: connect to host 192.168.2.13 port 22: Connection refused Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] Allow .exe files.
On 9/26/06, Jamshid KP <[EMAIL PROTECTED]> wrote: Hi, In my post fix mail server I have installed clamv and mail scanner for scaning. But .exe files are unable to sent. Please help me to unblock the same. I need to sent and recive .exe extenstion file. Where will i change ? Thx in advance. hey, As you have mentioned you are using MailScanner. Blocking or allowing of files is done by MailScanner. Go to the MailScanner directory I am using it in /etc/ /etc/MailScanner/ you will see 2 files called filename.rules.conf filetype.rules.conf These 2 files control which filestypes need to block which needs to be allowed. Read the documentation in those file and change as per your requirement. I can't guide you further more as I had never changed any settings in these 2 files. For more information you can go to mailscanner site www.mailscanner.info. Regards Ankush Grover ___ http://lurker.clamav.net/list/clamav-users.html
