Re: [Clamav-users] Can't connect to clad

[Robert S]

>
> Why not at MTA level?
>

I am using clamav-milter for my normal messages, but I use a program called 
getlive (http://sourceforge.net/projects/getlive) to fetch messages from my 
hotmail account and they aren't passed throught my MTA (sendmail).  getlive 
passes messages through procmail.

>
> check clamd logs
>

There's nothing in the logs at the time the error occurs.  I have however 
discovered some of these in my syslog (see last line):

Dec 15 01:00:20 mypc freshclam[1230]: Received signal: wake up
Dec 15 01:00:20 mypc freshclam[1230]: ClamAV update process started at Mon 
Dec 15 01:00:20 2008
Dec 15 01:00:20 mypc freshclam[1230]: main.cvd is up to date (version: 49, 
sigs: 437972, f-level: 35, builder: sven)
Dec 15 01:00:21 mypc freshclam[1230]: Trying host database.clamav.net 
(116.240.207.20)...
Dec 15 01:00:21 mypc freshclam[1230]: Downloading daily-8756.cdiff [100%]
Dec 15 01:00:21 mypc freshclam[1230]: daily.cld updated (version: 8756, 
sigs: 34762, f-level: 38, builder: sven)
Dec 15 01:00:21 mypc freshclam[1230]: Database updated (472734 signatures) 
from database.clamav.net (IP: 116.240.207.20)
Dec 15 01:00:21 mypc freshclam[1230]: Clamd was NOT notified: Can't connect 
to clamd through /var/run/clamav/clamd.sock

Further investigations in old logs reveal this (once in 5 weeks):

Dec  2 12:34:53 mypc freshclam[1230]: Received signal: wake up
Dec  2 12:34:53 mypc freshclam[1230]: ClamAV update process started at Tue 
Dec  2 12:34:53 2008
Dec  2 12:34:53 mypc freshclam[1230]: main.cvd is up to date (version: 49, 
sigs: 437972, f-level: 35, builder: sven)
Dec  2 12:34:54 mypc freshclam[1230]: Trying host database.clamav.net 
(116.240.207.20)...
Dec  2 12:34:54 mypc freshclam[1230]: Downloading daily-8706.cdiff [100%]
Dec  2 12:34:54 mypc freshclam[1230]: daily.cld updated (version: 8706, 
sigs: 31346, f-level: 38, builder: guitar)
Dec  2 12:34:54 mypc freshclam[1230]: Database updated (469318 signatures) 
from database.clamav.net (IP: 116.240.207.20)
Dec  2 12:34:54 mypc clamd[1221]: SelfCheck: Database modification detected. 
Forcing reload.
Dec  2 12:34:54 mypc clamd[1221]: Reading databases from /var/lib/clamav
Dec  2 12:34:54 mypc freshclam[1230]: Clamd successfully notified about the 
update.
Dec  2 12:34:54 mypc freshclam[1230]: --------------------------------------
Dec  2 12:34:54 mypc clamd[1221]: segfault at 8eec7e8 ip 7f9fc0a5da11 sp 
7fffc8f19990 error 4 in libclamav.so.5.0.4[7f9fc0a43000+ab000]

Maybe I need a cron job to restart clamd when it dies (like the old days). 
It looks as if clamav-milter runs fine.  I'm using clamav-0.94.2 (gentoo).

Any solutions?  What is "error 4"?

Apologies for my spelling and I should have given more info in my original 
post.



_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml