Re: [Clamav-users] remove scanner serve
On Friday 15 Apr 2005 23:46, Carl Thompson wrote: *** REPLY SEPARATOR *** On 4/15/2005 at 5:49 PM Nigel Horne wrote: *** REPLY SEPARATOR *** On 4/15/2005 at 3:58 PM Nigel Horne wrote: On Friday 15 Apr 2005 15:56, Carl Thompson wrote: *** REPLY SEPARATOR *** On 4/14/2005 at 10:24 PM Nigel Horne wrote: Okay this is what i have for clamav-milter on remote server Remote to sendmail? Or remote to clamd? Or both? CLAMAV_FLAGS=-qlm5 --external --server=xxx.xxx.xxx.xxx local:/var/run/clamav/clmilter.sock and I have to run clamd on that server so that clamav uses it externally to scan for virus (if i understand this correctly) I presume by that server you mean the server running clamav-milter and on my primary server i did the same thing and clamav creates local socket and scans thru clamd on remote server. I presume by primary server you mean the server running clamd, though I don't understand what you mean by you did the same thing? Why would you do the same on both machines? Surely one runs clamd and one runs clamav-milter? however if i use INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl (machine name chaned to correct machine of course) By machineb do you mean the same as primary server above? Or the same as that server? I still get socket errors in maillog about attempting to scan and clamd is on the remote socket not clamav-milter on the remote socket. I'm sure i'm doing something simple wrong but I sure can't figure it out. Sorry, but I can't figure out what you're trying to do and what you've tried to set up. The following scenarios are possible: 1) sendmail, clamav-milter and clamd all on one machine 2) sendmail and clamav-milter on one machine, clamd on another machine 3) sendmail on one machine, clamav-milter and clamd on another machine 4) sendmail, clamav-milter and clamd all on separate machines 5) sendmail and clamav-milter on one machine, clamd running on multiple machines load balanced 6) sendmail and clamav-milter on separate machines, clamd running on multiple machines load balanced, which may include the same machines. Please be very specific about what you're trying to achieve. I guess it's either scenario 2 or scenario 3? I can get scenario 2 to work without a problem and this is how I did it for some time before .82 (when clamd scanning was integrated into clamav-milter and you no longer needed to run clamd just for clamav-milter) The problem I have is scenario 3. machine a has sendmail on it machine b is a low use box so I would like to run clamav-milter and clamd (if its necessary now) on it and have machine a connect to clamav-milter on machine b. however I am unable to get clamav-milter to listen on a TCP port on machine b Machine a configure looks correct: INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn On machineb try starting clamav-milter thus (based on the options you gave, and ensure that clamd is running on machineb first): CLAMAV_FLAGS=-qlm5 --external inet:3311 Carl -Nigel As a final update to this little endeavor this is what I did on the mail server i used INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn on the scanning server i did the following CLAMAV_FLAGS=-qlm5 inet:3311 --server xxx.xxx.xxx.xxx I tried it with --external and that worked fine if I had clamd running (as it should be) so I figured i would try it internal and that worked fine. I did however have to specify --server because without it it bound to 3311 of 127.0.0.1 Again I need more information here. When you say xxx.xxx.xxx.xxx, what IP address did you use? Furthermore what do you have in your tcpwrappers files (/etc/hosts.allow and /etc/hosts.deny). --server is to do with the link clamav-milter-clamd, where as the inet:3311 is to do with the link sendmail-clamav-milter, so adding --server should have no effect on the incoming as you've stated. I need more information to see what's going on with the bind you mention. Carl -Nigel okay this is what I have server A (sendmail server) clmilter, S=inet:[EMAIL PROTECTED],F=, T=S:4m;R:4m server B (clamav-milter server) CLAMAV_FLAGS=inet:3311 -qlm5 server B (sendmail config no real email accounts but the system usual) clmilter, S=inet:[EMAIL PROTECTED],F=, T=S:4m;R:4m The results are that server b sendmail works fine thru the inet connection to server b clamav-milter and scans perfectly fine but server a sendmail doesn't connect or attempt to connect (no errors or anything in logs) to clamav-milter on server b I doubt that it is possible for a milter to service more than one
RE: [Clamav-users] remove scanner serve
*** REPLY SEPARATOR *** On 4/14/2005 at 10:24 PM Nigel Horne wrote: Okay this is what i have for clamav-milter on remote server Remote to sendmail? Or remote to clamd? Or both? CLAMAV_FLAGS=-qlm5 --external --server=xxx.xxx.xxx.xxx local:/var/run/clamav/clmilter.sock and I have to run clamd on that server so that clamav uses it externally to scan for virus (if i understand this correctly) I presume by that server you mean the server running clamav-milter and on my primary server i did the same thing and clamav creates local socket and scans thru clamd on remote server. I presume by primary server you mean the server running clamd, though I don't understand what you mean by you did the same thing? Why would you do the same on both machines? Surely one runs clamd and one runs clamav-milter? however if i use INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl (machine name chaned to correct machine of course) By machineb do you mean the same as primary server above? Or the same as that server? I still get socket errors in maillog about attempting to scan and clamd is on the remote socket not clamav-milter on the remote socket. I'm sure i'm doing something simple wrong but I sure can't figure it out. Sorry, but I can't figure out what you're trying to do and what you've tried to set up. The following scenarios are possible: 1) sendmail, clamav-milter and clamd all on one machine 2) sendmail and clamav-milter on one machine, clamd on another machine 3) sendmail on one machine, clamav-milter and clamd on another machine 4) sendmail, clamav-milter and clamd all on separate machines 5) sendmail and clamav-milter on one machine, clamd running on multiple machines load balanced 6) sendmail and clamav-milter on separate machines, clamd running on multiple machines load balanced, which may include the same machines. Please be very specific about what you're trying to achieve. I guess it's either scenario 2 or scenario 3? Carl I can get scenario 2 to work without a problem and this is how I did it for some time before .82 (when clamd scanning was integrated into clamav-milter and you no longer needed to run clamd just for clamav-milter) The problem I have is scenario 3. machine a has sendmail on it machine b is a low use box so I would like to run clamav-milter and clamd (if its necessary now) on it and have machine a connect to clamav-milter on machine b. however I am unable to get clamav-milter to listen on a TCP port on machine b Carl ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] remove scanner serve
On Friday 15 Apr 2005 15:58, Nigel Horne wrote: INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn (I missed a final l on the cut 'n' paste before the pedantic start winging) INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl On machineb try starting clamav-milter thus (based on the options you gave, and ensure that clamd is running on machineb first): CLAMAV_FLAGS=-qlm5 --external inet:3311 Carl -Nigel -- Nigel Horne. Arranger, Composer, Typesetter. NJH Music, Barnsley, UK. ICQ#20252325 [EMAIL PROTECTED] http://www.bandsman.co.uk ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] remove scanner serve
*** REPLY SEPARATOR *** On 4/15/2005 at 3:58 PM Nigel Horne wrote: On Friday 15 Apr 2005 15:56, Carl Thompson wrote: *** REPLY SEPARATOR *** On 4/14/2005 at 10:24 PM Nigel Horne wrote: Okay this is what i have for clamav-milter on remote server Remote to sendmail? Or remote to clamd? Or both? CLAMAV_FLAGS=-qlm5 --external --server=xxx.xxx.xxx.xxx local:/var/run/clamav/clmilter.sock and I have to run clamd on that server so that clamav uses it externally to scan for virus (if i understand this correctly) I presume by that server you mean the server running clamav-milter and on my primary server i did the same thing and clamav creates local socket and scans thru clamd on remote server. I presume by primary server you mean the server running clamd, though I don't understand what you mean by you did the same thing? Why would you do the same on both machines? Surely one runs clamd and one runs clamav-milter? however if i use INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl (machine name chaned to correct machine of course) By machineb do you mean the same as primary server above? Or the same as that server? I still get socket errors in maillog about attempting to scan and clamd is on the remote socket not clamav-milter on the remote socket. I'm sure i'm doing something simple wrong but I sure can't figure it out. Sorry, but I can't figure out what you're trying to do and what you've tried to set up. The following scenarios are possible: 1) sendmail, clamav-milter and clamd all on one machine 2) sendmail and clamav-milter on one machine, clamd on another machine 3) sendmail on one machine, clamav-milter and clamd on another machine 4) sendmail, clamav-milter and clamd all on separate machines 5) sendmail and clamav-milter on one machine, clamd running on multiple machines load balanced 6) sendmail and clamav-milter on separate machines, clamd running on multiple machines load balanced, which may include the same machines. Please be very specific about what you're trying to achieve. I guess it's either scenario 2 or scenario 3? I can get scenario 2 to work without a problem and this is how I did it for some time before .82 (when clamd scanning was integrated into clamav-milter and you no longer needed to run clamd just for clamav-milter) The problem I have is scenario 3. machine a has sendmail on it machine b is a low use box so I would like to run clamav-milter and clamd (if its necessary now) on it and have machine a connect to clamav-milter on machine b. however I am unable to get clamav-milter to listen on a TCP port on machine b Machine a configure looks correct: INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn On machineb try starting clamav-milter thus (based on the options you gave, and ensure that clamd is running on machineb first): CLAMAV_FLAGS=-qlm5 --external inet:3311 Carl -Nigel As a final update to this little endeavor this is what I did on the mail server i used INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn on the scanning server i did the following CLAMAV_FLAGS=-qlm5 inet:3311 --server xxx.xxx.xxx.xxx I tried it with --external and that worked fine if I had clamd running (as it should be) so I figured i would try it internal and that worked fine. I did however have to specify --server because without it it bound to 3311 of 127.0.0.1 Carl ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] remove scanner serve
*** REPLY SEPARATOR *** On 4/15/2005 at 3:58 PM Nigel Horne wrote: On Friday 15 Apr 2005 15:56, Carl Thompson wrote: *** REPLY SEPARATOR *** On 4/14/2005 at 10:24 PM Nigel Horne wrote: Okay this is what i have for clamav-milter on remote server Remote to sendmail? Or remote to clamd? Or both? CLAMAV_FLAGS=-qlm5 --external --server=xxx.xxx.xxx.xxx local:/var/run/clamav/clmilter.sock and I have to run clamd on that server so that clamav uses it externally to scan for virus (if i understand this correctly) I presume by that server you mean the server running clamav-milter and on my primary server i did the same thing and clamav creates local socket and scans thru clamd on remote server. I presume by primary server you mean the server running clamd, though I don't understand what you mean by you did the same thing? Why would you do the same on both machines? Surely one runs clamd and one runs clamav-milter? however if i use INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl (machine name chaned to correct machine of course) By machineb do you mean the same as primary server above? Or the same as that server? I still get socket errors in maillog about attempting to scan and clamd is on the remote socket not clamav-milter on the remote socket. I'm sure i'm doing something simple wrong but I sure can't figure it out. Sorry, but I can't figure out what you're trying to do and what you've tried to set up. The following scenarios are possible: 1) sendmail, clamav-milter and clamd all on one machine 2) sendmail and clamav-milter on one machine, clamd on another machine 3) sendmail on one machine, clamav-milter and clamd on another machine 4) sendmail, clamav-milter and clamd all on separate machines 5) sendmail and clamav-milter on one machine, clamd running on multiple machines load balanced 6) sendmail and clamav-milter on separate machines, clamd running on multiple machines load balanced, which may include the same machines. Please be very specific about what you're trying to achieve. I guess it's either scenario 2 or scenario 3? I can get scenario 2 to work without a problem and this is how I did it for some time before .82 (when clamd scanning was integrated into clamav-milter and you no longer needed to run clamd just for clamav-milter) The problem I have is scenario 3. machine a has sendmail on it machine b is a low use box so I would like to run clamav-milter and clamd (if its necessary now) on it and have machine a connect to clamav-milter on machine b. however I am unable to get clamav-milter to listen on a TCP port on machine b Machine a configure looks correct: INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn On machineb try starting clamav-milter thus (based on the options you gave, and ensure that clamd is running on machineb first): CLAMAV_FLAGS=-qlm5 --external inet:3311 Carl -Nigel As a final update to this little endeavor this is what I did on the mail server i used INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn on the scanning server i did the following CLAMAV_FLAGS=-qlm5 inet:3311 --server xxx.xxx.xxx.xxx I tried it with --external and that worked fine if I had clamd running (as it should be) so I figured i would try it internal and that worked fine. I did however have to specify --server because without it it bound to 3311 of 127.0.0.1 Again I need more information here. When you say xxx.xxx.xxx.xxx, what IP address did you use? Furthermore what do you have in your tcpwrappers files (/etc/hosts.allow and /etc/hosts.deny). --server is to do with the link clamav-milter-clamd, where as the inet:3311 is to do with the link sendmail-clamav-milter, so adding --server should have no effect on the incoming as you've stated. I need more information to see what's going on with the bind you mention. Carl -Nigel ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] remove scanner serve
*** REPLY SEPARATOR *** On 4/15/2005 at 5:49 PM Nigel Horne wrote: *** REPLY SEPARATOR *** On 4/15/2005 at 3:58 PM Nigel Horne wrote: On Friday 15 Apr 2005 15:56, Carl Thompson wrote: *** REPLY SEPARATOR *** On 4/14/2005 at 10:24 PM Nigel Horne wrote: Okay this is what i have for clamav-milter on remote server Remote to sendmail? Or remote to clamd? Or both? CLAMAV_FLAGS=-qlm5 --external --server=xxx.xxx.xxx.xxx local:/var/run/clamav/clmilter.sock and I have to run clamd on that server so that clamav uses it externally to scan for virus (if i understand this correctly) I presume by that server you mean the server running clamav-milter and on my primary server i did the same thing and clamav creates local socket and scans thru clamd on remote server. I presume by primary server you mean the server running clamd, though I don't understand what you mean by you did the same thing? Why would you do the same on both machines? Surely one runs clamd and one runs clamav-milter? however if i use INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl (machine name chaned to correct machine of course) By machineb do you mean the same as primary server above? Or the same as that server? I still get socket errors in maillog about attempting to scan and clamd is on the remote socket not clamav-milter on the remote socket. I'm sure i'm doing something simple wrong but I sure can't figure it out. Sorry, but I can't figure out what you're trying to do and what you've tried to set up. The following scenarios are possible: 1) sendmail, clamav-milter and clamd all on one machine 2) sendmail and clamav-milter on one machine, clamd on another machine 3) sendmail on one machine, clamav-milter and clamd on another machine 4) sendmail, clamav-milter and clamd all on separate machines 5) sendmail and clamav-milter on one machine, clamd running on multiple machines load balanced 6) sendmail and clamav-milter on separate machines, clamd running on multiple machines load balanced, which may include the same machines. Please be very specific about what you're trying to achieve. I guess it's either scenario 2 or scenario 3? I can get scenario 2 to work without a problem and this is how I did it for some time before .82 (when clamd scanning was integrated into clamav-milter and you no longer needed to run clamd just for clamav-milter) The problem I have is scenario 3. machine a has sendmail on it machine b is a low use box so I would like to run clamav-milter and clamd (if its necessary now) on it and have machine a connect to clamav-milter on machine b. however I am unable to get clamav-milter to listen on a TCP port on machine b Machine a configure looks correct: INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn On machineb try starting clamav-milter thus (based on the options you gave, and ensure that clamd is running on machineb first): CLAMAV_FLAGS=-qlm5 --external inet:3311 Carl -Nigel As a final update to this little endeavor this is what I did on the mail server i used INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dn on the scanning server i did the following CLAMAV_FLAGS=-qlm5 inet:3311 --server xxx.xxx.xxx.xxx I tried it with --external and that worked fine if I had clamd running (as it should be) so I figured i would try it internal and that worked fine. I did however have to specify --server because without it it bound to 3311 of 127.0.0.1 Again I need more information here. When you say xxx.xxx.xxx.xxx, what IP address did you use? Furthermore what do you have in your tcpwrappers files (/etc/hosts.allow and /etc/hosts.deny). --server is to do with the link clamav-milter-clamd, where as the inet:3311 is to do with the link sendmail-clamav-milter, so adding --server should have no effect on the incoming as you've stated. I need more information to see what's going on with the bind you mention. Carl -Nigel okay this is what I have server A (sendmail server) clmilter, S=inet:[EMAIL PROTECTED],F=, T=S:4m;R:4m server B (clamav-milter server) CLAMAV_FLAGS=inet:3311 -qlm5 server B (sendmail config no real email accounts but the system usual) clmilter, S=inet:[EMAIL PROTECTED],F=, T=S:4m;R:4m The results are that server b sendmail works fine thru the inet connection to server b clamav-milter and scans perfectly fine but server a sendmail doesn't connect or attempt to connect (no errors or anything in logs) to clamav-milter on server b I can telnet from server a to server b port 3311 and connect without a problem, it is not blocked by iptables or hosts.deny the domain looks up fine and has same results if i replace its name with an ip address netstat report from server b on clamav [EMAIL
Re: [Clamav-users] remove scanner serve
On Thursday 14 Apr 2005 01:12, [EMAIL PROTECTED] wrote: You're correct, clamav-milter won't listen on a TCP port, only on a local socket. Wrong. -- Nigel Horne. Arranger, Composer, Typesetter. NJH Music, Barnsley, UK. ICQ#20252325 [EMAIL PROTECTED] http://www.bandsman.co.uk ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] remove scanner serve
On Thursday 14 Apr 2005 02:42, Carl Thompson wrote: If clamav-milter is nothing but a portal so to speak and doesn't cause much load thats fine but I thought clamav-milter now has clamd inherant in it (no longer needing to communicate with clamd). This would increase the load of clamav-milter because it is now performing the task of both clamd and clamav-milter. Basically I have a server thats loading down more than I would like and another server that is barely used. Nothing's stopping you, that's the scenario I use. Just specificy --external and --server Carl -- Nigel Horne. Arranger, Composer, Typesetter. NJH Music, Barnsley, UK. ICQ#20252325 [EMAIL PROTECTED] http://www.bandsman.co.uk ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] remove scanner serve
On Thursday 14 Apr 2005 00:55, Carl Thompson wrote: Sendmail must connect to clamav-milter not clamd directly but clamav-milter will not listen on a TCP port Yes it will. Carl -- Nigel Horne. Arranger, Composer, Typesetter. NJH Music, Barnsley, UK. ICQ#20252325 [EMAIL PROTECTED] http://www.bandsman.co.uk ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] remove scanner serve
On Thursday 14 Apr 2005 00:00, Carl Thompson wrote: I looked at the document and it gives a milter rule for sendmail to connect to a remote clamav-milter process: INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl and the install doc says to put CLAMAV_FLAGS=--server=192.168.1.9 local:/var/run/clamav/clmilter.sock You also need to state --external if you're to use --server. Carl -- Nigel Horne. Arranger, Composer, Typesetter. NJH Music, Barnsley, UK. ICQ#20252325 [EMAIL PROTECTED] http://www.bandsman.co.uk ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] remove scanner serve
Nigel Horne wrote:
On Thursday 14 Apr 2005 01:12, [EMAIL PROTECTED] wrote:
You're correct, clamav-milter won't listen on a TCP port, only on a
local socket.
Wrong.
*removes foot from mouth* oops, sorry...
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg,
___
http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] remove scanner serve
*** REPLY SEPARATOR *** On 4/14/2005 at 9:14 AM Nigel Horne wrote: On Thursday 14 Apr 2005 00:00, Carl Thompson wrote: I looked at the document and it gives a milter rule for sendmail to connect to a remote clamav-milter process: INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl and the install doc says to put CLAMAV_FLAGS=--server=192.168.1.9 local:/var/run/clamav/clmilter.sock You also need to state --external if you're to use --server. Carl -- Okay this is what i have for clamav-milter on remote server CLAMAV_FLAGS=-qlm5 --external --server=xxx.xxx.xxx.xxx local:/var/run/clamav/clmilter.sock and I have to run clamd on that server so that clamav uses it externally to scan for virus (if i understand this correctly) and on my primary server i did the same thing and clamav creates local socket and scans thru clamd on remote server. however if i use INPUT_MAIL_FILTER(`clamav', `S=inet:[EMAIL PROTECTED], F=, T=S:4m;R:4m')dnl (machine name chaned to correct machine of course) I still get socket errors in maillog about attempting to scan and clamd is on the remote socket not clamav-milter on the remote socket. I'm sure i'm doing something simple wrong but I sure can't figure it out. Carl ___ http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] remove scanner serve
Does anyone know of a good walkthru for the new system (clamav-milter not requiring clamd) so that I can setup a dedicated server for virus scanning? Thanks Carl ___ http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] remove scanner serve
On Wednesday 13 Apr 2005 17:19, Carl Thompson wrote: Does anyone know of a good walkthru for the new system (clamav-milter not requiring clamd) so that I can setup a dedicated server for virus scanning? Look in .../clamav-milter/INSTALL Thanks Carl -Nigel -- Nigel Horne. Arranger, Composer, Typesetter. NJH Music, Barnsley, UK. ICQ#20252325 [EMAIL PROTECTED] http://www.bandsman.co.uk ___ http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] remove scanner serve
Carl Thompson wrote:
I believe the problem is a hard code issue. The setting --server
isn't telling clamav-milter to listen on a specified IP for
connections its telling clamav-milter to connect to clamd on the
specified IP thus making the INSTALL documentation in error (unless
i'm seriously confused)
Sendmail must connect to clamav-milter not clamd directly but
clamav-milter will not listen on a TCP port it will only connect to
clamd on a TCP port.
Carl
OH...
You're correct, clamav-milter won't listen on a TCP port, only on a local
socket. This is a limitation of clamav-milter.
You could probably write a simple daemon to listen on a TCP port and then relay
all commands it hears to the socket, and all responses back to the TCP port.
But why? Why not have sendmail and clamav-milter on one machine, and tell
clamav-milter to communicate with clamd on the other machine?
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg,
___
http://lurker.clamav.net/list/clamav-users.html
RE: [Clamav-users] remove scanner serve
*** REPLY SEPARATOR *** On 4/13/2005 at 5:12 PM [EMAIL PROTECTED] wrote: Carl Thompson wrote: I believe the problem is a hard code issue. The setting --server isn't telling clamav-milter to listen on a specified IP for connections its telling clamav-milter to connect to clamd on the specified IP thus making the INSTALL documentation in error (unless i'm seriously confused) Sendmail must connect to clamav-milter not clamd directly but clamav-milter will not listen on a TCP port it will only connect to clamd on a TCP port. Carl OH... You're correct, clamav-milter won't listen on a TCP port, only on a local socket. This is a limitation of clamav-milter. You could probably write a simple daemon to listen on a TCP port and then relay all commands it hears to the socket, and all responses back to the TCP port. But why? Why not have sendmail and clamav-milter on one machine, and tell clamav-milter to communicate with clamd on the other machine? If clamav-milter is nothing but a portal so to speak and doesn't cause much load thats fine but I thought clamav-milter now has clamd inherant in it (no longer needing to communicate with clamd). This would increase the load of clamav-milter because it is now performing the task of both clamd and clamav-milter. Basically I have a server thats loading down more than I would like and another server that is barely used. The other server doesn't have the redundancy and capacity of the primary server but if I could offload some of the resource usage to the secondary machine by having it perform all the scans then that would help my plight a little bit while I work on hardware upgrades. Also why does the INSTALL documentation imply you can connect to a remote clamav-milter if clamav-milter itself doesn't support a TCP socket? Possibly something that was simply overlooked when clamd tasks were integrated into clamav-milter in .82 As a coder myself I know how easy it is to overlook something like that when doing a merger of processes of sorts. Carl ___ http://lurker.clamav.net/list/clamav-users.html
