I might have a copy of it somewhere, if you need it. But I suspect they're
ready for the 97.6, since 97.5 was broken.
--
Michael Scheidell, CTO
>|SECNAP Network Security
-Original message-
From: Ruiyuan Jiang
To: "clamav-users@lists.clamav.net"
Sent: Thu, Jul 26,
IP: 209.198.147.20
Successes: 482
Failures: 103
Last access: Sun Jul 15 22:39:05 2012
Ignore: Yes
*
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Comp
av.net (IP:
200.236.31.1)
Clamd successfully notified about the update.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best E
Except that this is not a clamav signature.
--
Michael Scheidell, CTO
SECNAP Network Security
-Original message-
From: Lyle Giese
To: ClamAV users ML
Sent: Fri, Jul 8, 2011 01:21:48 GMT+00:00
Subject: [clamav-users] False Positive -
INetMsg.SpamDomain-2w.dl_dropbox_com.UNOFFICIAL
ly.cvd for 0.97.1 builds?)
This mean no action needs to be taken for 0.97.1, and I assume a 0.97.2
is in the works?
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Pro
n I looked at it with clamdtop.
now, I have 4 (3 idle and one running stats)
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
only see 4 threads max, and 200mb.)
also, no strange log entries. I assume in /var/log/clamav/clamd.log,
not syslog, right?
still watching it.
still have a 2200 user box with 0.97.1 with the original backedout patch.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Net
ystem that went down had 5500 users, second one has 2200 users.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best Email
0x0040a0a4 in ?? ()
No symbol table info available.
#25 0x0008018b22f1 in pthread_getprio () from /lib/libthr.so.3
No symbol table info available.
#26 0x7dd61000 in ?? ()
No symbol table info available.
Cannot access memory at address 0x7df71000
--
Michael Scheidell, CTO
o: 561-999
On 6/29/11 3:29 PM, Török Edwin wrote:
Interesting. That appears to be some kernel lock.
Can you run:
procstat -k 20021
Best regards,
--Edwin
too late for that.. I put 0.97.1_1 (0.97.1 portrevsion 1. without wdt
patch) on it.
getting the rest of it for you now.
--
Michael Scheidell, CTO
nning one gest me this:
30351 clamav 3 440 181M 159M ucond 1 0:00 0.00% clamd
(yes, brackets must be something freebsd does every now and than)
its the RES of 0K and umtxn when hung, and 159M when NOT hung that is
intertesting.
where did the ram go?
and, no, I didn't run
On 6/29/11 2:48 PM, Michael Scheidell wrote:
(gdb)
|
ok, got a core dump by using gdb to tell it to do a core dump.
Ill give access to it to clamav personal.
generate-core-file
Saved corefile core.20021
(gdb) quit
^CThe program is running. Quit anyway (and detach it)? (y or n) y
symbols found)...done.
Loaded symbols for /usr/local/lib/libclamunrar.so.7
Reading symbols from /libexec/ld-elf.so.1...(no debugging symbols
found)...done.
Loaded symbols for /libexec/ld-elf.so.1
[Switching to Thread 0x80bf080b0 (LWP 100364)]
0x0008018baf4a in __error () from /lib/libthr.so.3
what we can (as long as it doesn't impact users TOO much!)
ps, 0.97 vs 0.97.1.. one other thing. as 0.97 ran, for a while, it went
from using 250Mb to over a gb in ram as it ran. 0.97.1 didn't run long
enough to see, but I will keep an eye on it with this patch.
--
Michael Scheid
day, so, maybe he can test the
patch/and/or get us a core.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best Email Secur
On 6/29/11 9:24 AM, Michael Scheidell wrote:
Ok, so not just me.
I am going to ask Ralf Hildebrandt what version of os he is using.
maybe we can track this down.
so, its not just on amd64, freebsd 7.3.
he answered this:
freebsd? amd64? what version of Freebsd?
Debian Linux Testing
Ok, so not just me.
I am going to ask Ralf Hildebrandt what version of os he is using.
maybe we can track this down.
Original Message
Subject:Re: AV timeout?
Date: Wed, 29 Jun 2011 09:36:20 +0200
From: Ralf Hildebrandt
To:
* Michael Scheidell:
Is there
I think he should demand all his money back.
--
Michael Scheidell, CTO
SECNAP Network Security
-Original message-
From: Joel Esler
To: ClamAV users ML
Sent: Wed, Jun 29, 2011 10:50:25 GMT+00:00
Subject: Re: [clamav-users] Virus not detected by Clamav
If you have a sample of the file
ems that process far less traffic.
and we never have ever had clamav just 'die' on us, not without a
reason, like a bad dat file from clam or google.
so, I really don't want to upgrade to 8.2 just to have clamav die
randomly like yours does ;-)
--
Michael Scheidell, CTO
o: 561-9
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Prod
so the end user crashed the box when a
soft boot hung >.)
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best Email
fine.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best Email Security Product
* Certified SNORT In
On 6/21/11 3:46 PM, Michael Scheidell wrote:
On 6/21/11 3:44 PM, aCaB wrote:
On 06/21/11 20:25, Michael Scheidell wrote:
I can't reproduce it, but installed clamav 097.1 on several amd64 boxes,
and i386 boxes running freebsd 7.3
Hi Michael,
Thought I would update you.. on all of our
On 6/21/11 3:44 PM, aCaB wrote:
On 06/21/11 20:25, Michael Scheidell wrote:
I can't reproduce it, but installed clamav 097.1 on several amd64 boxes,
and i386 boxes running freebsd 7.3
Hi Michael,
do you have any chance to attach gdb to the stuck clamd?
no, it was a live system, and b
db.us.clamav.net (IP:
155.98.64.87)
Clamd successfully notified about the update.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finali
sleep enough last night? too much coffee? need a break? maybe you
aren't taking your medication this week.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention
On 5/27/11 10:26 AM, Dennis Peterson wrote:
On 5/27/11 7:05 AM, Dennis Peterson wrote:
On 5/26/11 7:27 AM, Michael Scheidell wrote:
Two different servers, in two different data centers, trying to pull
the
latest safebrowsing list, hung, cpu 100%
Having a similar problem with the
.
--
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best Email Security Product
* Certified SNORT Integra
.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
>*| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
* Five-Star Partner Program 2009, VARBusiness
* Best in Email Security,2010: Netw
per connection basis)
oh, and clamscan also gave an error with the bad daily file.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
>*| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Allia
seems the newest daily file won't work with clamav 0.95.3.
how do I get an older one that will?
I can turn freshclam off for now, or until this is fixed.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
>*| *SECNAP Network Security Corporation
* Certifi
file.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
>*| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
* Five-Star Partner Program 2009, VARBusiness
* Best in Email Security,2010:
or someone hacked clamav's dns servers:
the file that is BROKEN is larger:
2447360 Feb 10 16:03 daily.cld
the file that works is smaller:
909036 Feb 10 16:34 daily.cvd
On 2/10/11 4:48 PM, Michael Scheidell wrote:
ok, my bad, one client with a 32bit, freebsd 6.4 system that I
erase daily.cvd.
run freshclam
check clamscan. bad.
erase daily.cvd.
put file on from another system, everything is fine.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
>*| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company
34 matches
Mail list logo
