> Try adding "-v" option. Maybe it'll show some important details.
>
> I suspect that your proxy (or settings concerning it) is the
> culprit.
Tomasz,
I should have added that the script which I use to run freshclam
checks the return value of freshclam - see extract below.
RETVAL=-1
um
On Wed, 28 Jan 2004 19:26:14 +0200
Nigel Kukard <[EMAIL PROTECTED]> wrote:
> I have LOTS of samples, whre can i send them to?
Please send some smaller one to [EMAIL PROTECTED]
Best regards,
Tomasz Kojm
--
oo. [EMAIL PROTECTED] www.ClamAV.net
(\/)\. h
Doc Schneider wrote:
I'm getting a mitler socket error from sendmail.
Jan 31 18:01:01 newmail sendmail[15576]: i11011I6015576: Milter
(clamav): local socket name /var/run/clamd/clamav.sock unsafe
Jan 31 18:01:01 newmail sendmail[15576]: i11011I6015576: Milter
(clamav): to error state
Jan 31 18
I am fairly new to Unix and am not as familiar with it as I would like
to be. We have a OS X 10.2.8 server that we would like to install
ClamAV on. We are running Communigate Pro as our mail server software.
Can anyone point me in the direction of some easy to follow
instructions for install
Hi,
I'd like to know if VirusEvent accept now (clamd 0.66j) more parameters
than %f and %v (like sender, message-id, receiver and so on) ? They should
be very usefull for doing a more detailed report...
Thanks...
Best Regards,
Gianmarco Giovannelli , "Unix expert since yesterday"
http://www.
> But, I
> posit that clamav-milter shouldn't *crash* because of it.
The bug has been fixed and will in included in the 0.66 release.
Orion Poplawski
-Nigel
---
The SF.Net email is sponsored by EclipseCon 2004
Premiere Conference on Open To
I'm getting a mitler socket error from sendmail.
Jan 31 18:01:01 newmail sendmail[15576]: i11011I6015576: Milter
(clamav): local socket name /var/run/clamd/clamav.sock unsafe
Jan 31 18:01:01 newmail sendmail[15576]: i11011I6015576: Milter
(clamav): to error state
Jan 31 18:01:01 newmail sendmail
On Fri, 30 Jan 2004 at 17:03:05 -0500, Jason Frisvold wrote:
> Hi all,
>
> How does everyone handle the clamav quarantine? I'm running clamav w/
> qmail-scanner and every virus laden email gets put into the quarantine
> folder... Is it even worth it to quarantine at all?
>
Yes, it is wor
On Thu, 2004-01-29 at 05:05, Randal, Phil wrote:
> ClamAV was picking up the original version here 6 hours before McAfee had
> their 4319 DATs out, and detected the "B" variant here yesterday at least 4
> hours before McAfee's 4320 DATs were released.
>
> You guys deserve medals.
>
> A big heartf
I have looked in archives and can't find the answer to this.
When starting clamd I get
Fri Jan 30 15:06:13 2004 -> RAR support disabled.
I read in the docs that it is disabled by default. How do you enable it.
I have installed rarbsd-3.3.0.tar.gz and reloaded amavisd and clamd.
Still I get thi
I guess this is my problem?
http://sourceforge.net/mailarchive/message.php?msg_id=6609507
--
Jeff
> I have looked in archives and can't find the answer to this.
>
> When starting clamd I get
> Fri Jan 30 15:06:13 2004 -> RAR support disabled.
>
> I read in the docs that it is disabled by default.
On Fri, 30 Jan 2004 16:15:18 -0700 (MST)
"Jeff Gojkovich" <[EMAIL PROTECTED]> wrote:
> I have looked in archives and can't find the answer to this.
>
> When starting clamd I get
> Fri Jan 30 15:06:13 2004 -> RAR support disabled.
Enable ScanRAR in clamav.conf
Best regards,
Tomasz Kojm
--
On Thu, 29 Jan 2004 09:58:00 +
Jo Mills <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I'm not have a good time with the latest cvs snapshots so please bear
> with me. Platform is a Debian (Woody) box - AMD Duron processor.
>
> I have downloaded and built ClamAV version devel-20040129 from the
> tarb
You should be able to use the clamav-milter for that -- no extra
sendmail processes required. I had that running for a while... and
then ran into problems when perodically a huge number of clamav-milter
processes would fire up and tie up the system. I replaced that setup
with one using MailS
I'm trying to accomplish something that seems like it should be *very*
easy but so far has been impossible with all of the packages that I've
looked at.
I've already got clamav installed and it's working fine for scanning
files, etc.
What I want to do now is set it up to integrate with my mail se
Tomasz
My Senior Management is VERY happy with ClamAv and the recent SCO.A
outbreak. I thank you, Our 50K customer thank you. My Chief Financial
Officer personally thanked me and in turn I mentioned that it was you
and your team that made it all possible.
So there's a whole lot of love flowing
On Saturday 31 January 2004 3:32 pm, Matthew Trent wrote:
> A hearty "me too" on this. I was just going to report it as well since both
> my mail servers simultaneously died due to clamd eating all available
> memory. I saw the OOM killer had been at work, but both systems were pretty
> much locked
On Saturday 31 January 2004 02:16 pm, Ola Thoresen wrote:
>
>
> > typically our mailrelays do run out of memory(1GB physical and 2Gb swap)
> > after a few (maybe 10 to 15) minutes with the snapshots 20040113 and
> > 20040119 under load
>
> We see this problem as well.
> On a couple of servers (Fed
Hi Bill,
The simple solution is to use
Sendmail+Mailscanner+clamav (and spamassassin if
needed)and have more control settings in mailscanner
configuration.
The second is heard to install but is better by speed
of scanning.
,Radu
--- Bill Pitz <[EMAIL PROTECTED]> wrote:
> I'm trying to accom
On Fri, Jan 30, 2004 at 04:43:07PM -0700, Jim Davis <[EMAIL PROTECTED]> wrote:
> You should be able to use the clamav-milter for that -- no extra
> sendmail processes required. I had that running for a while... and
> then ran into problems when perodically a huge number of clamav-milter
> proc
run freshclam
At 10:58 1/29/2004, you wrote:
Hi,
I'm not have a good time with the latest cvs snapshots so please bear
with me. Platform is a Debian (Woody) box - AMD Duron processor.
I have downloaded and built ClamAV version devel-20040129 from the
tarball.
My /usr/local/etc/clamav.conf has the
> typically our mailrelays do run out of memory(1GB physical and 2Gb swap)
> after a few (maybe 10 to 15) minutes with the snapshots 20040113 and
> 20040119 under load
We see this problem as well.
On a couple of servers (Fedora Core 1, kernel 2.4.22-1.2149.nptl) with
reasonably high load - 10 -
Hi,
I'm not have a good time with the latest cvs snapshots so please bear
with me. Platform is a Debian (Woody) box - AMD Duron processor.
I have downloaded and built ClamAV version devel-20040129 from the
tarball.
My /usr/local/etc/clamav.conf has the following entry
# Path to a directory co
Hello,
Can someone help me?
I installed clamscan 0.60-10 on a Linux Debian Woody system. This
deb-package requires ucf 0.26 on my system. Everything seemed fine. I
ran clamscan as root (via su) on my whole system.
Halfway down the scan my normal user account acted strange. I lost
permisions f
I've written a patch to version 0.65 to support
logging to stdout for use with daemontools/multilog.
Is there already a patch for this type of thing?
If not, where could I submit my patch for
consideration in the next release?
It's a fairly simple patch with about 11 new lines of code.
Ken Jon
I have a machine with clamd running as a daemon, plus mail is filterd with
qmailscanner and given to clamd and spamassassin.
I'm getting dozens of virus everyday.
A flesclam in my mail dir says:
Known viruses: 20606
Scanned directories: 2903
Scanned files: 17767
Infected files: 352
Data scanned: 18
On Fri, Jan 30, 2004 at 04:43:07PM -0700, Jim Davis <[EMAIL PROTECTED]> wrote:
> You should be able to use the clamav-milter for that -- no extra
> sendmail processes required. I had that running for a while... and
> then ran into problems when perodically a huge number of clamav-milter
> proc
I've had clamav 0.65 running for a while now, where my qmail-scanner.pl
script was using clamdscan to call clamd. All was working fine
(including catching the recent Worm.SCO business). Last night, in an
attempt to stop the "Virus FOund" messages being sent to falsified
sender addresses, I adde
On Wed, 28 Jan 2004 at 10:09:29 -0500, Jim Maul wrote:
>
> I am running clamav using the setup from www.qmailrocks.org.
> ClamAV 0.65
[...]
> I have a /var/spool/qmailscan/quarantine Maildir with about 50 emails in
> it all containing attachments of some sort. Manually looking at them, i
> can se
Tomasz Kojm wrote:
It would be REALLY slick to put together a restricted (trusted)
ClamAV polling system with select ClamAV users around the world
so we could see a visual map of how these things spread and where
the damage or infection is greatest.
That's a really great idea - we only need to f
Tomasz Kojm <[EMAIL PROTECTED]> wrote:
> Setup a big ThreadTimeout as a temporary work-around.
How big is big? I tried 7200 and still saw lots of:
Milter read(clamav): timeout before data read
Milter (clamav): init failed to open
Milter (clamav): to error state
Thanks,
->Spike
-
Now it works!!! Thanks...
On Thu, 2004-01-29 at 04:05, Thomas Lamy wrote:
> Jose R. Ortiz Ubarri wrote:
>
> > # clamdscan readme.zip
> > /root/readme.zip: Can't access the file ERROR
> >
> > --- SCAN SUMMARY ---
> > Infected files: 0
> > Time: 0.001 sec (0 m 0 s)
> >
> >
> > A
On Sat, 31 Jan 2004 07:55:20 -0600
Alex S Moore <[EMAIL PROTECTED]> wrote:
> However, Tomasz, please see the attached file mymake-sigtool.out. My
> last successful package build was from the Jan 19 source. That is
> what I have been using on my mail server, and with great success, I
> might add.
I believe you need ScanMail in the clamd.conf file.
Regards,
Rick
Erik Bourget wrote:
Hey,
Clam does catch other viruses but is failing to catch this sco.a thing for
some reason. Does anyone have any insight?
The only two kinds of malware caught this morning are Worm.Gibe.F and
Exploit.IFrame.
Notice, the "Sexy" name gets the media attention though
Shawn
On Thu, 29 Jan 2004 12:15:17 +0800 "Fritz Mesedilla"
<[EMAIL PROTECTED]> exclaimed:
> They are the same. AV vendors just have their way of naming the same
> virus.
>
> We call it Worm.SCO.A. McAfee calls it MyDoom. Symantec call
Jim Maul wrote:
I hope that there is someone that can help me with this, i have been going
quite crazy trying to figure it out myself.
I am running clamav using the setup from www.qmailrocks.org.
[...]
I have a /var/spool/qmailscan/quarantine Maildir with about 50 emails in
it all containing att
Tomasz Kojm wrote:
On Fri, 30 Jan 2004 20:21:12 -0500
Rick Macdougall <[EMAIL PROTECTED]> wrote:
I'm willing to work on something like that. I've got a few really
busy servers and a few not so busy servers. You thinking of a C
program or perl (or what ever)?
Perl should be just fine. Do you h
grep "30 Jan" quarantine.log | grep Worm.SCO | wc -l
2478
slowed a little, but not much.
grep -a "30 Jan" quarantine.log | grep Worm.SCO | wc -l
27076
Still going strong here.
Rick
---
The SF.Net email is sponsored by EclipseCon 2004
Prem
Erick Ivaan Lopez Carreon wrote:
El mié, 28-01-2004 a las 06:58, Thomas Lamy escribió:
Andrzej Zawadzki wrote:
Brian Read wrote:
At 14:57 27/01/2004, you wrote:
I am using Amavis-ng, and the amavisd.conf doesn't seem to have that
line in it. However it does seem to know about other ones which sp
At 11:42 PM 1/28/2004, Jeffrey L. Taylor wrote:
Quoting Jeffrey L. Taylor <[EMAIL PROTECTED]>:
> I noticed that the virus count has dropped back to pre-SCO.A levels
> starting around 0330 UTC this morning. I have not seen a single SCO.A
> since then. Has anyone also seen this?
>
> Jeffrey
>
ClamAV
On Sat, 31 Jan 2004 13:13:32 + (GMT)
Trog <[EMAIL PROTECTED]> wrote:
> Quoting Trog <[EMAIL PROTECTED]>:
>
> >
> > > "ole2_extract.c", line 111: identifier redefined: __attribute__
> >
> > The problem is that SunC doesn't have the __attribute__((packed))
> > feature that
> > gcc has. SunC ha
Quoting Bill Pitz <[EMAIL PROTECTED]>:
> I'm trying to accomplish something that seems like it should be *very*
> easy but so far has been impossible with all of the packages that I've
> looked at.
You didn't look close enough at clamv in CVS.
> What I want to do now is set it up to integrate wi
>
> I am running in a Redhat 7.3 environment, using no RPM's, and compiling
> everything from source. Please don't tell me to use an rpm :)
>
why from source?
:)
--
Eduardo Kaftanski
[EMAIL PROTECTED]
Red Hat Certified Engineer/Instructor/Examiner
Gerente Ingenieria LinuxCenter S.A.
Canad
Hello Jim,
Wednesday, January 28, 2004, 10:09:29 PM, you wrote:
> I hope that there is someone that can help me with this, i have been going
> quite crazy trying to figure it out myself.
> I am running clamav using the setup from www.qmailrocks.org.
> ClamAV 0.65
> FreshClam output:
> ClamAV u
Hi,
First, I hope cross-posting this message to both the ClamAV and
qmail-scanner lists doesn't cause problems; I wasn't sure where it should
go.
Many dumb AV scanners out there still reply to incoming viruses generated
by Mydoom, Klez, etc. even though the 'From' address is always bogus.
Usi
Hello, I'm trying to install ClamAV with real-time protection (on open, on close, on
exec) on a
Pentium II with RedHat Linux 9.0.
As far as I could understand, for that I need Dazuko installed and ClamukoScanOnLine
activated.
When I start the clamd service I get the following message in the clamd
Hi,
I like to confirm reports from other users.
clamav cvs version has problem with updates.
Im running clamd, freshclam as daemon.
Freshclam fetches new updates, but clamd ignores them.
No info on clamd.log about database reloading.
Option UseProcessess is enabled.
My config files are below.
On Sat, 31 Jan 2004 09:00:21 + (GMT)
Andy Fiddaman <[EMAIL PROTECTED]> wrote:
>
> I wouldn't normally suggest changing the signature name for a virus
> because it is very common for different virus scanners to call the
> same virus by different names, and sometimes it's nice just to be
> dife
On Fri, 30 Jan 2004 13:32:52 +0100
"Clamav" <[EMAIL PROTECTED]> wrote:
> Hi!
> I'm running sendmail 8.12.10 with
> ClamAV version 'clamd / ClamAV version devel-20040108', clamav-milter
> version '0.66c'
>
> And in gerneral I'm very happy with it. There is only one problem (and
> I reported it alr
On Fri, 30 Jan 2004 20:21:12 -0500
Rick Macdougall <[EMAIL PROTECTED]> wrote:
> I'm willing to work on something like that. I've got a few really
> busy servers and a few not so busy servers. You thinking of a C
> program or perl (or what ever)?
Perl should be just fine. Do you have some idea f
On Fri, 30 Jan 2004 14:29:02 -0300 (ART)
Claudio Alonso <[EMAIL PROTECTED]> wrote:
> So my questions are the following:
> - Must clamd be run as root user in order to enable real-time
> protection?
It must.
> - Is it normal that my computer became so slow? Can this be solved?
> How?
Please li
> i'm using clamdmail 0.13 / ClamAV version 0.60 on mandrake 9.2 and when i
> send an email which has another email attached to it which in turn
> contains a virus attachment, clam doesn't seem to pick it up.
>
> is this a limitation of clam or is my configuration to blame?
I suspect it's because
hi,
clamd doesn't seem to be scanning attachments nested inside attached
emails for me.
i'm using clamdmail 0.13 / ClamAV version 0.60 on mandrake 9.2 and when i
send an email which has another email attached to it which in turn
contains a virus attachment, clam doesn't seem to pick it up.
is t
I wouldn't normally suggest changing the signature name for a virus
because it is very common for different virus scanners to call the same
virus by different names, and sometimes it's nice just to be diferent ;);
however with SCO.A/MyDoom I think there would be some merit in changing
the name rep
> You were absolutely right, the msgs I was refering to were all bounces, my
> mistake. Is there a fix in the works for this?
Already in CVS. It's not a fix though, it's a new feature.
> Shawn
-Nigel
---
The SF.Net email is sponsored by Ecli
I assure you, libmilter is installed.
- Original Message -
From: "Nigel Horne" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, January 28, 2004 11:32 AM
Subject: Re: [Clamav-users] RE: Clamav-milter not installing
> On Wednesday 28 Jan 2004 4:37 pm, james nelson wrote:
>
>
Jim Maul wrote:
Actually, it technically is clamscan, but for the installation i used
(www.qmailrocks.org) a step in there says to copy clamscan to clamdscan so
running clamscan and clamdscan effectively means the same thing. So yes
technically you are correct, but for my setup, my statement is co
On Wed, 28 Jan 2004 at 17:11:23 -0400, Jose R. Ortiz Ubarri wrote:
> # clamdscan readme.zip
> /root/readme.zip: Can't access the file ERROR
>
> --- SCAN SUMMARY ---
> Infected files: 0
> Time: 0.001 sec (0 m 0 s)
>
> And everything I try to scan gives me the same ERROR.
The user
-- On Thursday, January 29, 2004 11:50 AM + Huw Jenkins <[EMAIL PROTECTED]> wrote:
Hi there,
I'm at the point where I need to implement a Virus filter on my mail server.
I'm running CommuniGatePro (4.1.8) on an xServe (running 10.3.2) and I want
to install Clam AV 6.5. Is anyone doing this w
Site not working.
clamav scans the file ...
Clamav-Output:
ERROR: Can't connect to clamd.
---
The SF.Net email is sponsored by EclipseCon 2004
Premiere Conference on Open Tools Development and Integration
See the breadth of Eclipse activity
On Friday 23 Jan 2004 5:05 pm, OpenMacNews wrote:
> i can't say i agree with the suggestion that the developers spend their
> time supporting OSX 10.1.x -- which is no longer supported by Apple
> but, of course, to each their own =)
As I have already said, it has nothing to do with "to each thei
61 matches
Mail list logo
