Joel posted pictures (in one of these update thread) of where the mirrors
are located along with the relative traffic that each one transfers.
Cheers,
Freddie
Typos courtesy of my phone's keyboard.
On Tue, Jul 10, 2018, 6:37 PM Paul Kosinski, wrote:
> I have a question. I presume that there ar
unsynched" messages
in the freshclam.log for the last 8 checks (we do 6 per day).
--
Freddie Cash
fjwc...@gmail.com
___
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
ot; in the devs and demanding everything
be redone from scratch, how about we wait a bit while they work out the
bugs in the new setup.
Are updates completely broken right now? No. Are there occasional
hiccups? Sure. Are things getting better? Yeah, they are. Are they
perfect?
access: Tue Jun 26 15:08:52 2018
Ignore: Yes
-
Mirror #9
IP: 2400:cb00:2048:1::6810:b98a
Successes: 0
Failures: 1
Last access: Tue Jun 26 15:08:52 2018
Ignore: Yes
-
Mirror #10
IP: 2400:cb00:2048:1::6810:ba8a
Successes: 0
Failures: 1
Last access: Tue Jun 2
On Tue, Jun 26, 2018 at 2:41 PM, Freddie Cash wrote:
> On Tue, Jun 26, 2018 at 2:17 PM, Joel Esler (jesler)
> wrote:
>
>> Team --
>>
>> Today we were able to add 100% of the mirror infrastructure to our CDN,
>> Cloudflare. We are currently measuring the load an
t (IP: 2400:cb00:2048:1::6810:b98a)
Tue Jun 26 14:34:33 2018 -> ERROR: Can't download daily.cvd from
db.local.clamav.net
Tue Jun 26 14:34:33 2018 -> Giving up on db.local.clamav.net...
Tue Jun 26 14:34:33 2018 -> Update failed. Your network may be down or none
of the mirrors lis
If you would take the time to actually read the message, you'd see that
freshclam is routing the local version as 0.99.4 and complaining that is
behind the recommended version of 0.99.4.
IOW, it's a spurious error message that's complaining incorrectly.
Something the ClamAV devs will need to fix.
On Mar 26, 2016 6:26 AM, "C.D. Cochrane" wrote:
>
> And I am guessing my Linux distro will not just seamlessly move on to
0.99 by itself with an "apt-get update".
Debian 6 includes ClamAV 0.98. Thus, anything newer than that will have a
newer version of ClamAV. And if you are running anything old
.1
installed, as Lenny is at 0.97.1:
$ aptitude show clamav
Unable to find an archive "squeeze-backports" for the package "clamav"
Package: clamav
State: installed
Automatically installed: no
Version: 0.97.1+dfsg-1~lenny1
The above is from our mail server that was runnin
t; safe_clamd
>
> instead of:
>
> clamd
>
> and get the benefits of a monitoring script without any effort.
I haven't looked at the script yet, but for something simple like
checking if clamd is responding, wouldn't a cronj
So long as you are running 0.95 or newer you don't have to worry about
these errors.
If you want the absolute latest features, then install the latest
version. Otherwise, carry on. 0.95 works perfectly well. These are
just notices, not "you must upgrade or die" messages. :)
--
F
ork. The only apps installed are the ones
required for doing your work, and the only approved activities are those
that pertain to doing your work. It's not your personal PC to do with as
you please. That sounds more like a home computer. :)
--
Freddie Cash
fjwc...@gmail.com
e its way to end-users
> machines, regardless of the vector or attack.
>
That could be, although everything I've seen on this list has been that
ClamAV is geared toward e-mail-based malware.
--
Freddie Cash
fjwc...@gmail.com
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
scanning, repairing, and
recovering Windows systems, ClamAV is not what you want.
--
Freddie Cash
fjwc...@gmail.com
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
On Tue, May 4, 2010 at 5:11 PM, Dennis Peterson wrote:
> On 5/4/10 1:25 PM, Freddie Cash wrote:
>
> Add the volatile repo to /etc/apt/sources.list, if it's not already there.
>>
>> Then it's a simple:
>> aptitude update
>> aptitude install clamav-
ebug symbols for clamav
>
Add the volatile repo to /etc/apt/sources.list, if it's not already there.
Then it's a simple:
aptitude update
aptitude install clamav-daemon clamav-freshclam
aptitude will install everything else automatically.
--
Freddie Cash
fjwc...@gmail.com
___
right now, but I just need to know,
> before upgrade it, what is its version.
>
> Thanks in advance.
>
When in doubt, check the man page. Doing so for freshclam or clamscan
shows:
freshclam --version
clamscan --version
--
Freddie Cash
fjwc...@gmail.com
k with
any previous version, etc.
> Because the open-source idea is
> all based on freedom.
>
Not in the way you think it is.
--
Freddie Cash
fjwc...@gmail.com
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
ke up
>> ClamAV update process started at Fri Apr 16 10:26:14 2010
>> WARNING: Your ClamAV installation is OUTDATED!
>> WARNING: Local version: 0.95.3 Recommended version: 0.96
>> DON'T PANIC! Read http://www.clamav.net/support/faq
>> main.cvd is up to date (version: 5
updates?
>
> It doesn't.
The Checks parameter in freshclam.conf tells the freshclam daemon how often
to poll the update servers to see if there are updated database files to
download.
--
Freddie Cash
fjwc...@gmail.com
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
necessary to run it from cron, I believe.
>
> Where is this documented?
>
There's always been 2 ways to run freshclam:
- manually, either via the CLI or via cron
- as a daemon
If run via cron, the Checks parameter has no meaning.
If run as a daemon, the Checks parameter specifies h
On Thu, Nov 5, 2009 at 11:46 AM, Steve Basford
wrote:
> Freddie Cash wrote:
>>
>> Yes, I still have this directory. If anyone is interested in it, I
>> can tar it up and make it available. Can also tar up the working
>> directory is needed.
>
> Yep, I&#x
p over
700,000, and still the CPU usage is under 20%.
Haven't had any issues since then, so can't really say if it was a corrupted
database, a bad signature, or exactly what the issue was. Don't have any
plans to test the old copies of the database files, as I don't want to mes
ll not change.
Which is fine. But the docs don't match the script. The only reason
I brought it up was that it was mentioned in the release notes.
--
Freddie Cash
fjwc...@gmail.com
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
it all references
/etc/clamav-unofficial-sigs.conf, which is different from the *.cron
file, where everything references
/usr/local/etc/clamav-unofficial-sigs.conf.
And the INSTALL file references both locations.
Perhaps it's time to cook up a Makefile or an install script that uses
sed to alter
On April 1, 2009 8:13 am Mark wrote:
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net
> [mailto:clamav-users-boun...@lists.clamav.net] On Behalf Of Steffan
> Vigano Sent: dinsdag 31 maart 2009 23:01
> To: clamav-users@lists.clamav.net
> Subject: [Clamav-users] 0.95 compile
On February 27, 2009 8:32 am Goodman, William wrote:
> I'm running postfix and amavisd-new, spamassassin and clamav. I have all
> the daemons running and mail is getting
> filtered through amavisd-new (as per the header), I'm trying to get
> spammassassin and clamav configured with
> postfix. I don
about 300,000 are
blocked as spam by amavis/spamassassin/dspam, another 50,000 or so are
tagged as possible spam but still delivered, and maybe 20,000 are
blocked as infected. The rest go through.
So they're still out there. :)
--
Freddie Cash
[EMAIL PROTECTED]
___
with MacOS X and the issue is the same.
Don't blame the OS for people who can't use the correct term. :) We just
need to start beating people with clue bats that there is no such beast
as "Linux" the OS.
--
Freddie Cash, LPIC-2 CCNT CCLP Network Support Technician
Sch
another and uses the same configfile???
In the world of open-source, pre-1.0 version numbers *do not* equal beta
status. There are some projects that have dozens of stable,
production-quality releases, without ever hitting 1.0.
These are stable, production-ready releases.
--
Freddie Cash
[EM
s-army-knife bloatware is a Windows thing. Let's keep it there.
--
Freddie Cash, LPIC-2 CCNT CCLP Network Support Technician
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROTECTED]
___
Help us build a compre
course.. and it's performance in
> terms of detection rates far outstrips most of the competition. We
> really only have the commercial scanners in there because customers
> want to see them for confidence and that may well change in the future
> thanks to Sourcefire.
--
Fred
On August 27, 2007 06:30 am Sergei Lavrov wrote:
> Does this mean ClamAV will become close source
> sometime in the future ?
Read through the mailing list archives for this month, there's a
super-long thread on this subject in there.
--
Freddie Cash, LPIC-2 CCNT CCLP Netw
On August 2, 2007 01:42 pm Steven wrote:
> Freddie Cash wrote:
> > Note: The latest version of the ports tree that will successfully
> > work with FreeBSD 4.x must be cvsupped using tag=FREEBSD_4_EOL and
> > *not* tag=. like normal. After that tag was put on the ports tre
tall newer versions of software than what is in the
FREEBSD_4_EOL ports tree, you will need to either upgrade to FreeBSD 6.x,
or install it manually via source tarballs and
the "standard" './configure; make; make install' method, taking extra
care to get the .
On Friday 13 April 2007 09:25 am, Dennis Peterson wrote:
> Freddie Cash wrote:
> > On Thursday 12 April 2007 06:53 pm, Dennis Peterson wrote:
> >> And just an fyi, be cautious of the MSRBL-Images file. Rechecking it
> >> while I was typing this shows that with it in p
On Friday 13 April 2007 01:35 pm, Bill Landry wrote:
> Freddie Cash wrote the following on 4/13/2007 12:43 PM -0800:
> >> I'm running dual proc Sun Sparc systems, and the cpu usage from
> >> clamd appears to be an unhealthy kind of cpu usage. It sits at 95%,
> >>
On Friday 13 April 2007 09:25 am, Dennis Peterson wrote:
> Freddie Cash wrote:
> > On Thursday 12 April 2007 06:53 pm, Dennis Peterson wrote:
> >> And just an fyi, be cautious of the MSRBL-Images file. Rechecking it
> >> while I was typing this shows that with it in p
f you mean ClamAV,
> you're mistaken. File a bug report against 4.x and we'll look into it,
> I have a Pentium running FreeBSD4.11 in my compile farm.
See my post to Anton in this thread. There is no longer any support in
the FreeBSD ports tree for FreeBSD 4.x systems.
--
removed from
the ports tree after that tag was laid down. To use "tag=." when
cvsup'ing the file is just asking to break things. :)
--
Freddie Cash, LPIC-2 CCNT CCLP Network Support Technician
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROTEC
with 4 GB of
RAM. YMMV. :)
--
Freddie Cash, LPIC-2 CCNT CCLP Network Support Technician
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROTECTED]
___
Help us build a comprehensive ClamAV guide: visit http://wik
ping major versions.
If you're going to stick with FreeBSD 4.x, then you will need to edit your
ports supfile to use tag=RELEASE_4_EOL. That's the last-known-working
ports tree for FreeBSD 4.x. After that tag was put on the ports tree,
they removed all support for FreeBSD 4.x from t
#x27; 'CPPFLAGS=-I/usr/local/include '
> > 'CXX=c++' 'CXXFLAGS=-O -pipe'
>
> Further testing shows that, for FreeBSD 5.4 at least, the use of -lthr
> (1:1 Threading Library) the result is instability. The second I added
> that to the configure argumen
ing:
- how many viruses were found upon initial install?
- how many of the undetected ones were found after updating the
definition files?
- how many of the still undetected ones were found after 1 day? one
week? two weeks? a month?
- how long until all viruses were detected?
Would require
point).
You need to configure the "glue" product that passes the files to
ClamAV. In this case, it's ClamSMTP. No idea how to configure it,
though. It may be that you can't configure it the way you want, and
you'll need to look at something else (like amavisd-new or M
milter, sendmail,
and clamav-milter support all sync'd together with any LDAP options.
IOW, unless you already have LDAP installed, it won't add anything to
your system. If you already have LDAP installed, but don't want LDAP
support in your sendmail/milter setup, then you may run in
On Sun, April 23, 2006 11:04 pm, Steve Basford wrote:
> In order to optimize the use of my bandwidth for the unofficial
> phishing signatures, I want to put up a few example scripts on the
> main page of my site that users should use to download the phish.ndb
> file.
> The reason is that I've got
or run freshclam to have it reload the databases.
clamscan loads the databases each time it is called, so it will pick up
the new databases right away.
clamdscan uses clamd, see above.
--
Freddie Cash, LPIC-1 CCNT CCLP Helpdesk / Network Support Tech.
School District 73
r attachments, similar to the way
Yahoo!/Hotmail do things. That way, it wouldn't scan every message as it
came in, but would only scan messages with attachments, when those
attachments are accessed.
But that's getting into the realm of the SM developers, and not so much
the clamav devs.
hile it's not the most optimal setup, having the option to scan messages
in the mail client should not be frowned upon. If your mail provider
does not scan your incoming messages, then the mail client is a good
place to scan messages. After-all, it's the only place *you*, the
recipie
ps, as it lists changes
like this. :)
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROTECTED]
___
http://lurker.clamav.net/list/clamav-users.html
about 56% blocked as spam, and 15-20% blocked due to viruses. If
needed, I can post the mail stats for Sept. 2004 (when the server went
online) to Apr. 2005.
This box is very lightly loaded, and was even used as a test
Courier-IMAP and Cyrus IMAP server for the IT department (15 accounts)
without any
e
(http://www.swelltech.com), as it's mucher lighter weight than the default
Webmin theme, and a lot nicer than the included light-weight theme.
--
Freddie Cash, CLCP CNCPNetwork Support / Helpdesk
School District 73 (250) 377-4357
[EMAIL PROTECTED]
_
output, it looks like you have two separate processes
running. One that wakes up every 30 minutes at 22 after and 52 after.
The other that wakes up at half-past (at least, there's not enough log
output to confirm the pattern). The entries are very regular
om script or tarball lurking under ~/bin or ~/home?
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROTECTED]
___
http://lurker.clamav.net/list/clamav-users.html
a very basic Postfix install that relays all messages
through our main mail server. This lets us trace back infected
messages to the source computer, which has a private IP address. Quite
handy. Not fully automated, but it works.
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support
pread so easily, instead
of adding more and more layers of bandaids on top. Fix the foundation,
don't try to prop up the walls with two-by-fours.
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73
don't want to block
anything, can do so.
Make ClamAV the best scanner out there, but give the users
the ability to turn it into the best scanner. :)
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROT
On January 10, 2005 08:58 am, Trog wrote:
> On Mon, 2005-01-10 at 16:53, Freddie Cash wrote:
> > You're missing the main point of ClamAV: it's a server-based virus
> > scanner for e-mail.
> > It's not a workstation AV solution. Just because some people try
&g
tations.
Think of ClamAV as a plastic bubble around your house that prevents
airborne viruses from entering your house. It keeps new viruses out,
but you can't use it to clean a virus off your piano.
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73
rver that scans all those downloads. If most of
the file downloading is done via FTP or HTTPS, having a scanner might
not make sense. Or, if you have a centrally-managed desktop AV system,
it might not be worth putting in an HTTP virus scanner. It all depends
on your uses.
--
Freddie Cash, CCN
to the client while it scans the file, does make it seems like
your connection is super slow.
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROTECTED]
___
http://lis
l work for this. Or a FAM script.
Granted, this wouldn't work across a WAN, but it would work fine for a
bunch of servers on a LAN.
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73 (250) 377-H
file downloads for viruses.
http://www.dansguardian.org
http://www.harvest.com.br/asp/afn/wcfp.nsf
Runs on FreeBSD, OpenBSD, NetBSD, Solaris, and several Linux distros.
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73 (250) 377
o find where the other
one is and remove it.
--
Freddie Cash, CCNT CCLPHelpdesk / Network Support Tech.
School District 73 (250) 377-HELP [377-4357]
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by BEA Weblogic
65 matches
Mail list logo
