On Thu, Oct 28, 2004 at 10:17:22AM -0500, Jeremy Kitchen wrote: > as you can imagine, that's orders of magnitude more complicated than running > the two under daemontools or runit (both do essentially the same thing) > > http://cr.yp.to/daemontools.html > http://smarden.org/runit/
They don't help against every potential error. What happens if clamd hangs? daemontools would still say the process is running - even though it doesn't work anymore. Scripts like clamdwatch are more appropriate as an "out of band" monitoring solution. Your script really needs to submit a virus (like EICAR) to the daemon, and get a valid report back in order to know the system is working. If it hangs, the script needs to be alarmed to notice that and act accordingly. The next release of Qmail-Scanner will have such a script that will be able to monitor clamd, trophie, sophie and spamd in such a manner. You simply run it from cron (say) every 5 minutes to check the status of your AV daemons. -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 _______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
