Dave Warren wrote:
In message [EMAIL PROTECTED] Stephen Gran
[EMAIL PROTECTED] wrote:
On Mon, Apr 14, 2008 at 05:22:56PM +0200, Bas van Rooijen said:
postfix would accept all three forms even
and why not ??
I assume you haven't looked at sendmail's security record.
I, for one, have
=?ISO-8859-1?Q?T=F6r=F6k_Edwin?= wrote:
Lanfranco Fabriani wrote:
Good Morning,
What did the database directory contain?
And in the syslog I found:
clamd[7485]: Not supported data format
Are you sure the running clamd is 0.93? Did you restart it?
I'm sorry. I have
Lanfranco Fabriani wrote:
...
clamd stop
make uninstall 0.92.1
make install 0.93
ldconfig
clamd restart
I would run freshclam before starting clamd.
Mogens
--
Mogens Kjaer, Carlsberg A/S, Computer Department
Gamle Carlsberg Vej 10, DK-2500 Valby, Denmark
Phone: +45 33 27 53 25, Fax: +45
Mogens Kjaer wrote:
Lanfranco Fabriani wrote:
...
clamd stop
make uninstall 0.92.1
make install 0.93
ldconfig
clamd restart
I would run freshclam before starting clamd.
Is this necessary? In the years I never run freshclam before
restarting clamd and the software always ran very
On 4/15/08 5:09 PM, John Rudd [EMAIL PROTECTED] wrote:
Tilman Schmidt wrote:
So why am I dissecting that list like this? Just to show that blocking
or not blocking certain unusal characters in mail addresses is indeed a
policy decision which should not be forced by a piece of software, but
Lanfranco Fabriani wrote:
...
I would run freshclam before starting clamd.
Is this necessary?
I had the same problem as you had; running freshclam
manually before starting clamd fixed the problem.
Mogens
--
Mogens Kjaer, Carlsberg A/S, Computer Department
Gamle Carlsberg Vej 10, DK-2500
On Wed, 16 Apr 2008 08:30:11 +0200 (CEST)
[EMAIL PROTECTED] (Lanfranco Fabriani) wrote:
Mogens Kjaer wrote:
Lanfranco Fabriani wrote:
...
clamd stop
make uninstall 0.92.1
make install 0.93
ldconfig
clamd restart
I would run freshclam before starting clamd.
Is this
Hello *,
my freshclam.conf contains
OnUpdateExecute /usr/ClamAV/bin/freshclam.mail
and the refenced /usr/ClamAV/bin/freshclam.mail reads
| #!/bin/sh
|
| cd /usr/ClamAV/data
| DIFF=/tmp/clamav-signatures.$$ ; /bin/rm -f $DIFF
|
| MAIL=[EMAIL PROTECTED]
|
| /bin/mv signatures
Frank Elsner wrote:
Why this? Is sigtool broken? Is my procedure broken in respect to version
0.93?
From the log freshclam obviously does the job, but ...
Please try the patch from here:
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=938
Best regards,
--Edwin
- Forwarded message from Cron Daemon [EMAIL PROTECTED] -
X-NetKnow-InComing-4694-2-MailScanner-Watermark:
[EMAIL PROTECTED]
X-Spam-Filter: [EMAIL PROTECTED] by digitalanswers.org
Date: Tue, 15 Apr 2008 16:48:03 -0600 (MDT)
From: Cron Daemon [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Tomasz Kojm wrote:
On Wed, 16 Apr 2008 08:30:11 +0200 (CEST)
[EMAIL PROTECTED] (Lanfranco Fabriani) wrote:
Is this necessary? In the years I never run freshclam before
restarting clamd and the software always ran very well. The server
of mine is a little mail server, so usually I try to
George R. Kasica wrote:
George R. Kasica wrote:
We have the same issue. I'd take a guess that it's because we're running
zlib-1.2.1.2-1.2 which is the latest offered by RHEL 4.
Ditto error here with zlib 1.2.3 and I've made sure there are no
duplicate zlibs out here:
On Wed, 16 Apr 2008 15:08:41 +0300 Török Edwin wrote:
Frank Elsner wrote:
Why this? Is sigtool broken? Is my procedure broken in respect to version
0.93?
From the log freshclam obviously does the job, but ...
Please try the patch from here:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dennis Peterson wrote:
| So I currently have a main.cvd and a daily.cld, both files. Is this what
| 0.93 uses or will main.cvd be swapped out with a cld container at some
| point?
|
| dp
Yes, when there is finally an update to main.cvd...
I believe
Dennis Peterson wrote:
So I currently have a main.cvd and a daily.cld, both files. Is this what
0.93 uses or will main.cvd be swapped out with a cld container at some
point?
And might someone explain what this change is about, how it improves
performance or whatever? I had assumed that the
On Wed, 16 Apr 2008 14:49:59 +0100
Brian Morrison [EMAIL PROTECTED] wrote:
And might someone explain what this change is about, how it improves
performance or whatever? I had assumed that the change to using .inc
directories allowed various different signatures to be held in separate
Brian Morrison wrote:
Dennis Peterson wrote:
So I currently have a main.cvd and a daily.cld, both files. Is this what
0.93 uses or will main.cvd be swapped out with a cld container at some
point?
And might someone explain what this change is about, how it improves
performance or
On Wed, 16 Apr 2008 16:38:05 +0100
Brian Morrison [EMAIL PROTECTED] wrote:
Does the unsigned .cld file mean that an attack vector could be to edit
the .cld file and thus corrupt it? I can see that the cdiff signing
protects the path between the database servers and freshclam, but that
I need to temporarily quarantine all messages from a particular IP address.
I have written a custom virus signature before but it will not trap what I need.
I am getting messages looping that have no From address (they show up in
maillog as:
... User address required
I am working with the
Tomasz Kojm wrote:
On Wed, 16 Apr 2008 16:38:05 +0100
Brian Morrison [EMAIL PROTECTED] wrote:
Does the unsigned .cld file mean that an attack vector could be to edit
the .cld file and thus corrupt it? I can see that the cdiff signing
protects the path between the database servers and
Brian Morrison wrote:
Tomasz Kojm wrote:
On Wed, 16 Apr 2008 16:38:05 +0100
Brian Morrison [EMAIL PROTECTED] wrote:
Does the unsigned .cld file mean that an attack vector could be to edit
the .cld file and thus corrupt it? I can see that the cdiff signing
protects the path between the
I need to temporarily quarantine all messages from a particular IP address.
I have written a custom virus signature before but it will not trap what I need.
I am getting messages looping that have no From address (they show up in
maillog as:
... User address required
I am working with the
Dennis Peterson wrote:
Yes, I realise that. I run clamd under user clamav, hence it's probably
easier to access /var/lib/clamav/* than it would be if owned by root.
Why would that be? It is no more work to crack the root account than any
other account. Nor any less. Hopefully too your
On Wed, 16 Apr 2008 17:28:58 +0100
Brian Morrison [EMAIL PROTECTED] wrote:
Yes, I realise that. I run clamd under user clamav, hence it's probably
easier to access /var/lib/clamav/* than it would be if owned by root.
Only freshclam needs a write access to the database directory so you can
Brian Morrison wrote:
Dennis Peterson wrote:
Yes, I realise that. I run clamd under user clamav, hence it's probably
easier to access /var/lib/clamav/* than it would be if owned by root.
Why would that be? It is no more work to crack the root account than any
other account. Nor any less.
So it appears my installed version is too old to update the database and
I need to upgrade from 0.90.3 to the latest version. I don't know who or
how this version of clamav was installed on this rhel4.6 es server but I
downloaded the tarball since clamav is not a supported rpm available
from
People who may have problems compiling ClamAV 0.93 with the FreeBSD
ports on 4.11 may need to patch the port Makefile as I had to. I am
not sure if it affects other FreeBSD versions or not, I didn't try it.
--- Makefile.orig Wed Apr 16 10:59:51 2008
+++ MakefileWed Apr 16 11:37:41 2008
Carlos Williams wrote:
So it appears my installed version is too old to update the database and
I need to upgrade from 0.90.3 to the latest version. I don't know who or
how this version of clamav was installed on this rhel4.6 es server but I
downloaded the tarball since clamav is not a
Dennis Peterson wrote:
It looks like earlier versions were installed as RPM packages from
rpmforge using yum, not the RH repository. Have you tried using yum to
see if the current version is availble?
I had no idea YUM was even installed on this server. I thought YUM was
only available
Carlos Williams wrote:
Dennis Peterson wrote:
It looks like earlier versions were installed as RPM packages from
rpmforge using yum, not the RH repository. Have you tried using yum to
see if the current version is availble?
I had no idea YUM was even installed on this server. I thought
Dennis Peterson wrote:
It looks like earlier versions were installed as RPM packages from
rpmforge using yum, not the RH repository. Have you tried using yum to
see if the current version is availble?
I am getting the following error when running yum update
-- Processing Dependency:
Carlos Williams wrote:
Dennis Peterson wrote:
It looks like earlier versions were installed as RPM packages from
rpmforge using yum, not the RH repository. Have you tried using yum to
see if the current version is availble?
I am getting the following error when running yum update
--
Dennis Peterson wrote:
This was discussed on the list the last couple of day - check the
archives to see what is suggested. Google this:
libclamunrar_iface.so.3 site:clamav.net
I searched Google and could not find anything that was obvious to
resolving this dep. issue.
When I go to
Lyle Giese wrote:
Looks like we are having an intermitant problem with 0.93
I built it from source on a SuSE 10.2(64bit), 2.6.18.2-34-default #1 SMP
kernel on an AMD Athlon 64 processor. I compiled with no configure options.
About 3 or 4 times since I updated on the 14th, I am getting
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[EMAIL PROTECTED] wrote:
| People who may have problems compiling ClamAV 0.93 with the FreeBSD
| ports on 4.11 may need to patch the port Makefile as I had to. I am
| not sure if it affects other FreeBSD versions or not, I didn't try it.
|
| ---
Quoting John Rudd [EMAIL PROTECTED]:
Tilman Schmidt wrote:
So why am I dissecting that list like this? Just to show that blocking
or not blocking certain unusal characters in mail addresses is indeed a
policy decision which should not be forced by a piece of software, but at
most offered as
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Carlos Williams wrote:
| I searched Google and could not find anything that was obvious to
| resolving this dep. issue.
|
| When I go to search the archives manually, I went to
| http://lurker.clamav.net/list/clamav-users.html and I get a blank page
Looks like we are having an intermitant problem with 0.93
I built it from source on a SuSE 10.2(64bit), 2.6.18.2-34-default #1 SMP
kernel on an AMD Athlon 64 processor. I compiled with no configure options.
About 3 or 4 times since I updated on the 14th, I am getting where
clamdmon.sh is
James Kosin wrote:
~ SPARC Options
~-
~ -pthreads
~ Add support for multithreading using the POSIX threads library.
~ This option sets flags for both the preprocessor and
linker. This
~ option does not affect the thread
On Wed, 16 Apr 2008 14:21:17 -0400, Carlos Williams
[EMAIL PROTECTED] wrote:
Dennis Peterson wrote:
This was discussed on the list the last couple of day - check the
archives to see what is suggested. Google this:
libclamunrar_iface.so.3 site:clamav.net
I searched Google and could not
James Kosin wrote:
The -pthread should only be needed on IBM RS/6000 and PowerPC platforms.
SPARC has their own option and everyone else should follow into the -l
category.
I suppose I should clarify the architecture. This was done on an x86.
Steven
[EMAIL PROTECTED] wrote:
James Kosin wrote:
The -pthread should only be needed on IBM RS/6000 and PowerPC platforms.
SPARC has their own option and everyone else should follow into the -l
category.
I suppose I should clarify the architecture. This was done on an x86.
On Apr 16, 2008, at 12:31 PM, Török Edwin wrote:
Manpages indicate to use -pthread to link.
Linux: man pthreads
Compiling on Linux
On Linux, programs that use the Pthreads API should be compiled
using cc -pthread
FreeBSD:
Dennis Peterson wrote:
This was discussed on the list the last couple of day - check the
archives to see what is suggested. Google this:
libclamunrar_iface.so.3 site:clamav.net
I searched Google and could not find anything that was obvious to
resolving this dep. issue.
Brian Morrison wrote:
Dennis Peterson wrote:
Yes, I realise that. I run clamd under user clamav, hence it's probably
easier to access /var/lib/clamav/* than it would be if owned by root.
Why would that be? It is no more work to crack the root account than any
other account. Nor
Okay, that makes sense. I tried copying the lib files over to
/usr/local/lib as you suggested, and am now getting this error in
config.log
configure:15256: checking for libgmp
configure:15286: cc -qlanglvl=extc89 -o conftest -g
-I/usr/local/include conftest.c /usr/local/lib/libgmp.a 5
ld:
Naomi Hospodarsky wrote:
Okay, that makes sense. I tried copying the lib files over to
/usr/local/lib as you suggested, and am now getting this error in
config.log
configure:15256: checking for libgmp
configure:15286: cc -qlanglvl=extc89 -o conftest -g
-I/usr/local/include conftest.c
Naomi Hospodarsky wrote:
Okay, that makes sense. I tried copying the lib files over to
/usr/local/lib as you suggested, and am now getting this error in
config.log
configure:15256: checking for libgmp
configure:15286: cc -qlanglvl=extc89 -o conftest -g
-I/usr/local/include conftest.c
On 16/04/2008, at 4:33 AM, fchan wrote:
This part of clamav-0.92 and new fix of a bug.
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=613
And in short we need to get gcc4.1.1 or newer to get this work on
Macintosh 10.4.11 and xcode 2.5 which only has an gcc 4.0.1. However
Apple hasn't
Can I either(thru sendmail, clamav, or clamav-milter):
Quarantine all messages from a particular IP ?
You can (thru sendmail). Append 'access' file from sendmail as follow:
Connect:aaa.bbb.ccc.dddtabQUARANTINE
Michael
___
Help us build a
James Brown wrote:
John Rudd wrote:
Oh, and, while we're on the subject, what about 0.88.6? is that
version
vulnerable? (don't tell me to upgrade -- I haven't been able to get
newer versions to compile on Mac OS X 10.4.x)
Frank John, I've used ./configure --enable-experimental
Dennis Peterson wrote:
James Brown wrote:
John Rudd wrote:
Oh, and, while we're on the subject, what about 0.88.6? is that
version
vulnerable? (don't tell me to upgrade -- I haven't been able to get
newer versions to compile on Mac OS X 10.4.x)
Frank John, I've used ./configure
Dennis Peterson wrote:
Dennis Peterson wrote:
James Brown wrote:
John Rudd wrote:
Oh, and, while we're on the subject, what about 0.88.6? is that
version
vulnerable? (don't tell me to upgrade -- I haven't been able to get
newer versions to compile on Mac OS X 10.4.x)
Frank John, I've
53 matches
Mail list logo