mirror.
I don't know what's planned for 0.96, but I'm sure there will be some
grace period of time if the signature format changes again or other
large-scale changes occur. It's always good practice to test RCs and
read the changelogs attentively.
Kind regards
Thomas
--
Thomas Lamy Ingolstadt
the argument to NotifyClamd correctly points to clamd's config
file.
Good Luck
Thomas
--
Thomas Lamy Ingolstadt Online GmbH thomas.l...@in-online.net
Fon: +49 841 885 212-0 Fax: +49 841 885 212-0 Web: www.in-online.net
Pflichtangaben lt. §35a GmbHG:
Ingolstadt Online GmbH, Münchener Str. 71, 85051
. The protocol
was pretty easy to implement.
Kind regards
Thomas Lamy
--
Thomas Lamy Ingolstadt Online GmbH thomas.l...@in-online.net
Fon: +49 841 885 212-0 Fax: +49 841 885 212-29 Web: www.in-online.net
Pflichtangaben lt. §35a GmbHG:
Ingolstadt Online GmbH Münchener Strasse 7185051
Kurt Jensen wrote on Tuesday, August 15, 2006 7:51 AM:
Hi,
I am an Ubuntu newbie compiling for the first time. I have
sucessfully
compiled clamav and run the program from the shell. However, my virus
definitions are out-of-date and when I execute freshclam I
receive this
error
Thanks for your assistance. I've gotten streaming working for
uninfected
files. I can now successfully stream bytes to the clamav
server and then
close the stream. At that point it seems I have to wait a
little while,
about 500ms at max, to read the result. This makes sense to me, that
saravanan ganapathy wrote:
Hi,
I am using clamav-0.84 ( Debian Version) with
Dansguardian. My config looks like as follows
ArchiveMaxRecursion 0
ArchiveMaxFiles 0
ArchiveMaxFileSize 0
ArchiveMaxCompressionRatio 0
I disabled all the above , restarted clamav
Dansguardian. But even
Ken Goods wrote:
I can't find anything via Google and the MailScanner list suggested I
upgrade ClamAV which I did and I'm still seeing these.
From my maillog:
Jun 16 10:17:46 gw-mail MailScanner[16315]: Virus and Content Scanning:
Starting
Jun 16 10:18:19 gw-mail MailScanner[16151]:
Ken Goods wrote:
Ren Bellora wrote:
Ken Goods wrote:
Jun 16 10:17:46 gw-mail MailScanner[16315]: Virus and Content
Scanning: Starting Jun 16 10:18:19 gw-mail MailScanner[16151]:
Commercial scanner clamav timed out! Jun 16 10:18:19 gw-mail
MailScanner[16151]: Virus Scanning: Denial Of
Bowie Bailey schrieb:
From: Odhiambo Washington [mailto:[EMAIL PROTECTED]
* Bowie Bailey [EMAIL PROTECTED] [20050503 18:38]: wrote:
From: henry j. mason [mailto:[EMAIL PROTECTED]
i need to know when freshclam fails silently.
i know freshclam includes options to alert on errors,
Arnaud Huret schrieb:
Dear all,
We are running a webmail service using ClamAV and get roughtly 30.000 valid
mails/day.
We run home-build SMTP servers calling clamd, emulating the client.
The problem :
After running +- 10 minutes, clamd.log reports a first message saying :
'ERROR:
Guillaume Arcas wrote:
Damian Menscher a écrit :
http://www.clamav.net/doc/0.75/signatures.pdf
They removed the functionality in 0.80 and above, but that's because
it's simplest for users to create md5 signatures of unknown binaries
(and the automatic signature generation depended on having
Tayfun Asker wrote:
hi,
I'm trying to upgrade from 0.80 to 0.83. I'm using 0.83 on linux
without any problem. but on aix 5.2, i can not get it working.
clamav-milter does not scan emails on aix 5.2. all the messages simply
pass through unscanned. in the error log, i'm seeing lines like
Thoralf Will schrieb:
Hello,
On a mailserver I'm running a fairly old v0.65 via amavisd-new and now
it's about time to upgrade to a more recent version. Is there anything I
have to pay attention to or is it sufficient to simply upgrade
clamav/clamd and restart the service? (amavisd-new is also
Amin Thakkar wrote:
so, what is right way to update automatic ?
Amin
- Original Message -
From: Tomasz Kojm [EMAIL PROTECTED]
To: ClamAV users ML clamav-users@lists.clamav.net
Sent: Monday, March 28, 2005 6:47 PM
Subject: Re: [Clamav-users] ERROR
1. Don't top-post.
Amin Thakkar wrote:
so, what is right way to update automatic ?
Amin
1. Don't top-post. (http://learn.to/quote)
2. Read the fine manual
3. Think
4. It simply works
Thomas
___
http://lurker.clamav.net/list/clamav-users.html
Guillaume Arcas schrieb:
Tomasz Papszun a écrit :
in case you wanted to disable some signature because of a false
positive, the proper way of solving this is submitting the sample at
http://www.clamav.net/sendvirus.html (selecting the button A false
positive) so that the signature could be
Guillaume Arcas schrieb:
Thomas Lamy a écrit :
No it's not faster. But it's more secure, because it's signed, and it's
contents is compressed.
OK, that does explain why clamscan runs a little faster with text
signatures database than with CVD files.
Shoud not be a problem with clamd
Damian Menscher schrieb:
I'm seeing logs like:
Intercepted virus from [EMAIL PROTECTED] to [EMAIL PROTECTED]
[EMAIL PROTECTED]
Seems strange to me that the invalid users would have made it past
sendmail's RCPT TO and into the AV engine. I'm guessing it's a bug.
Sometimes the invalid user is
Jason Haar schrieb:
Ed Stover wrote:
I am just wondering about how long will a stable release be supported
before it get tossed? The sevenX version is no longer really functional
The good commercial AV typically have daily pattern updates, and monthly
engine updates. That corresponds just
dlpreston schrieb:
At 09:00 AM 12/20/2004, you wrote:
Todd Lyons wrote:
[EMAIL PROTECTED] wanted us to know:
I am running Qmail+Qmail-Scanner+ClamAV on a FreeBSD 5.3 machine and
followed the qmailrocks.org directions to the tee. When running
Unless it's been fixed recently, that howto tells
Steffen Heil schrieb:
Hi
Maybe I am wrong, but I always assumes, the option to be DIABLED, if the
directive is commented out (or missing at all) and only ENABLED, if the
directive is there (and uncommented).
However, if I am wrong on this, this would explain my problems. But then,
what to do
Steffen Heil schrieb:
Hi
I came across a .eml file once again, that causes a segfault in clamd.
However, since I had that issue a few days ago and the clamav team corrected
that bug aleady, I did not post a bug report.
However, since about a week, my mail servers are configured NOT to use
Eric Wagar schrieb:
What am I supposed to do with the files that are created and kept in
the /var/amavis directory? Since my virus is kinda working right now, I get
files there. Am I supposed to keep them for some reason, or can I cron their
removal?
thanks
eric
I'd suggest to clean
Eric Wagar schrieb:
Currently my email is not being scanned for viruses. (I have received a few
viruses this morning.)
When I ps, I see clamd, postfix, and amavis (master, and 2 x child) running.
But, when I look in my messages file, I see this:
Dec 12 12:28:41 sm amavis[18955]: (18955-03)
Simon Crowther schrieb:
I have just installed clamav on Debian, updated and tested it at
virustest.org. It didn't detect any of the test viruses, even those in
the message body. I ran clamscan and clamdscan from the command line.
Clamscan found nothing, clamdscan found them all and also the
Luca Gibelli schrieb:
Hello xterm1,
Is there any way to tell freshclam what ip to use
to get it's updates. We have a problem with our main ip
being locked out due to an attack.
Now there is no way to do that, afaik.
As a temp. fix, add a static route for some mirrors and specify them in
Domingo Fonteboa Gascón schrieb:
Hello,
I have a problem in configure, clamav say that
I need install zlib and zlib-devel.
I have installed the package zlib-1.2.1.tar.Z,
that come in the CD sources for open source
components of TRU64 distribuition.
Error:
root ./configure
checking build system
Erick Lopez Carreon schrieb:
Hello:
Just for warn clamAv team about a new mail virus reported by Hispasec -
una-al-da :
worm Anzae, Inzae, Pawur o Tasin
wited in visual basic subject and body in spanish.
Did you submit it at http://www.clamav.net/sendvirus.html ?
Erick Lopez Carreon schrieb:
On Tue, 2004-11-23 at 17:44 +0100, Thomas Lamy wrote:
Erick Lopez Carreon schrieb:
Hello:
Just for warn clamAv team about a new mail virus reported by Hispasec -
una-al-da :
worm Anzae, Inzae, Pawur o Tasin
wited in visual basic subject and body in spanish.
Did you
[EMAIL PROTECTED] wrote:
Greetings all. I'm still having the same problem we talked about back in
September. The Clam make isn't find -lssl for some reason. Every release
up to and including 0.75.1 worked perfectly with the exact same configure
options. Anything after that gives the same error
john schrieb:
Hi Folks.
How many signatures does clam have in its data base for viruses and Trojans
that attack OpenBSD and the KDE/Gnome desktops?. This topic comes up
from time to time on various nix forms. Usually the consensus is that
linux/unix
AV products only scan for Windows mallware. Is
Trog schrieb:
On Sun, 2004-11-14 at 14:57, Julian Mehnle wrote:
3. I am using the SpamCop reporting tool[1] to file complaints to ISPs
about spam (which specifically includes phishing attacks) that I
receive. SpamCop requires spam samples to be manually checked for
spamminess before
Robert S schrieb:
I have just upgraded to clamav-milter_0.80-5 on my Debian Woody system.
When I run
/etc/init.d/clamav-milter stop it hangs. When I do a ps ax it says
sleep 0.1. Looks as if the offending line something like this:
if [ -n $PID ]; then
start-stop-daemon -q -K -o -p
Luca Gibelli wrote:
Hello Graham Toal,
What's needed is an installation script which installs a completely
independent copy in one of two locations, so you can double-buffer
the installs.
./configure --prefix=path can already do that.
along with --program-prefix=test_ so clamd becomes
Rishi schrieb:
Hi
I've been receiving a new virus which f-prot reports as W32/Kriz.4029.kernel
Can anyone tell me how to use sigtool program to get clamav to use f-prot to
figure out how to detect this virus and update the clamav database too?
Regards
Rishi
If you don't know how to use sigtool
Rishi schrieb:
Better submit it through http://www.clamav.net/sendvirus.html. it's
vital for Clamav's detection to get virus samples from it's users.
I did that last week. Any idea how much time it takes for it to get done?
I'm not a sigmaker, but just in case it's some polymorphic one it may
Jim Maul schrieb:
Ken Jones wrote:
Hi all,
I decided to run all of the tests located at testvirus.org
against my
mail server. As expected, tests 24 and 25 got through, no surprise
there. However, test 17 also made it through. This test is
described as
follows :
I sent it to my server as
Awie wrote:
All,
I found clamd write the LOG into /var/log/message. I want clamdscan not
write LOG anymore. What parameter shoudl I remove or add in clamd.conf?
Your answer is very appreciated.
Thx Rgds,
Awie
It is recommended to have a look at the manual page(s) before asking
questions to the
Ajaya Sharma wrote:
Hi,
I'm running clamav .7.5.1 and want to update to latest verion. I was able
to compile clamav-0.80rc3 without any problem but somehow I remained
unsuccessful after clamav-0.80rc3. Below was the error received when
attempted
to compile clamav-0.80rc4 and clamav-080:
# make
...
John Fleming schrieb:
I originally used apt-get with Debian Sarge (testing) to install ClamAV (the
version immediately before 0.80). With the move to 0.80, not yet in the
Sarge distro, I used Webmin to update ClamAV. This worked fine, and my
headers indicate 0.80 is being used.
Then yesterday in
Robin, Rob wrote:
All,
Tried to upgrade to ClamAV 0.80 from 0.75.1. Failed to compile it.
~~~ ./configure --prefix=/usr/local/clamav/0.80 's warnings -
configure: WARNING: resolv.h: present but cannot be compiled
configure: WARNING: resolv.h: check for missing prerequisite headers?
Jona Tallieu (T T n.v.) schrieb:
ERROR: Clamd was NOT notified: Can't connect to clamd through
/var/clamav/clamd.sock
So it seems freshclam can not access anything in /var/clamav/.
The permissions for /var/clamav/ are:
drw-r--r-- 4 lplp 136 18 Oct 10:49 clamav
And inside are:
Max Chernogor schrieb:
Hello Nigel,
Friday, October 15, 2004, 4:02:58 PM, you wrote:
NH On Friday 15 Oct 2004 13:59, Max Chernogor wrote:
Hello Nigel,
Friday, October 15, 2004, 2:56:00 PM, you wrote:
clamav-milter version 0.75l
man says All the servers must be up when clamav-milter starts
Jeff Ball wrote:
The Cobalt RaQ2 has the following...
gcc-c++-2.7.2-c3r2
gcc-objc-2.7.2-c3r2
gcc-2.7.2-c3r2
glibc-2.0.7-29.4C2
and 0.80rc3 will not build. again.
I'm wondering if I should work on making a new patch, wait longer, or
just give up because I will never have a newer compiler, etc...
darius wrote:
I have version 0.54 and from september 2004 i can't update clamav.
The message is:
Connected to clamav.elektrapro.com.
Reading md5 sum (viruses.md5): ERROR: Malformed md5 checksum detected.
ERROR: Can't get viruses.md5 sum from clamav.elektrapro.com
What can i do?Is possible to
Tim Rupp wrote:
Cory Megitt [ClamAV] wrote:
Hi All;
I attempted to upgrade from 0.75.1 to 80rc3 via rpms, and when running a
test script to test the mail server / clamav processes, I get the
following error.
[EMAIL PROTECTED] contrib]# ./test_installation.sh -doit
setting QMAILQUEUE to
Tim Rupp wrote:
Thomas Lamy wrote:
Tim Rupp wrote:
(From the qmailrocks website)
Now I'm going to throw in a small customization to Clam AV...
*mv /usr/bin/clamdscan /usr/bin/clamdscan.orig*
*ln -s /usr/bin/clamscan /usr/bin/clamdscan*
This sucks. With this setup, you're loading the virus-db
Kareem Mahgoub wrote:
Hello list,
I am using clamav version 0.72
qmail 1.3
Qmail-scanner-queue1.21st
I have a problem and I think it is related to clamav.
The is a virus with name W32.Netsky.p.dam ( according to Norton
antivirus) not caught by clamav.
Is there is something wrong in my setup
Damian Menscher wrote:
On Tue, 28 Sep 2004, Tomasz Kojm wrote:
On Mon, 27 Sep 2004 23:06:40 -0400
Matthew Daubenspeck [EMAIL PROTECTED] wrote:
Will there be an updated signature for the new jpeg virus for the
0.75 series of ClamAV?
No, there will not - only 0.8x can detect JPEG exploits.
Uhh, I
agenteo wrote:
this is the log I get:
/home/teottie/.viminfo: Unable to open file or directory ERROR
/home/teottie/mbox: Unable to open file or directory ERROR
/home/teottie/.bash_history: Unable to open file or directory ERROR
/home/teottie/clamav-testfiles/test-failure.rar: RAR module failure
Sushil Gholap wrote:
Hi
This is my first mail to this list.
I want to know how to configure clamav with
postfix(linux plateform ) mail server for scanning the
mails for viruses.
Thanks in advance.
sUsHiL gHolAp.
Have a look at amavisd-new (http://www.ijs.si/software/amavisd/) and/or
mailscanner
agenteo wrote:
Hi,
I've installed the clamav (clamav clamav-base clamav-deamon
clamav-freshclean alibclamav1) debian packages taken from
www.clamav.net/binary.html
At the end of the installation/configuration I've tried as root
#clamd PING
in the document I've read the clamav deamon should
[EMAIL PROTECTED] wrote:
By the way - I checked some Backdoor (about 173 I have till now) and
results are :
Panda Antivirus : 164/173 identified ClamAV CVS version: 58/173
identified
Sadly to say there is a long way ahead :-( (or maybe ClamAV is not
against Backdoors ?)
Boguslaw Brandys
Then
Jürgen Walch wrote:
Hi there,
we are running clamd in combination with clamdscan to scan incoming
mails for viruses on smtp level with courier-mta here. Works fine.
The signature files are updated using freshclam started via crontab.
The crontab entry used is
--8--
#
# clamav
#
23 1,9,17 * * *
Fajar A. Nugraha wrote:
D Walsh wrote:
I sat down in front of a Solaris 9 system, installed clamav as
instructed and yes indeed there appears to be a problem with the
implementation of free(), in 30 mins of sending e-mail from the EICAR
test site memory did climb to 2.87gb and did not clear
Jason Haar wrote:
On Tue, Sep 14, 2004 at 08:38:57AM +0100, Trog wrote:
A few people (out of the thousands who run ClamAV) have reported memory
leaks in stable versions of clamd.
However, none of those people have submitted a report from a memory
debugging tool to show where the leak occurs on
Jim wrote:
After I upgraded clamav via apt-get I now get an error during restart of
/etc/init.d/clamav-daemon.
This is on a debian system and the error created is:
/etc/init.d/clamav-daemon restart
Restarting clamav daemon: clamdERROR: Parse error at line 10: Unknown
option ThreadTimeout.
ERROR:
Daniel S. Cohen wrote:
Hello,
I am wondering if there is any advantage of running freshclam as a
daemon as oppposed to running it from the crontab a few times day?
Thanks.
Dan
It's a matter of taste. I prefer running it in daemon mode, as freshclam
is rock solid (eg. it hasn't crashed here for
Julio Canto wrote:
Fajar A. Nugraha wrote:
Yes. There's nothing that prevent you running freshclam (or whatever
your updater will be) every minute or so.
However, with the default check time of one hour (default for RPM
packages, that is), mirrors already
uses lots of bandwitdh (over 100 GB a
Mitch (WebCob) wrote:
Jeremy Kitchen wrote:
On Thursday 05 August 2004 12:46 pm, Ryan Moore wrote:
Such that if freshclam downloads a signature and if the
signature has a 'engine version requirement' or some attribute that can
be compared against the installed engine, if the installed engine
Ken Goods wrote:
I'm running Sendmail, Mailscanner, Spamassasin, and Clamav (0.70rc-1). I
would like to upgrade Clamav. Tried yum but it continues to tell me there
are no updates available. So on to plan two. I'm going to install from the
RPMs but wasn't exactly sure of the process.
This is my
Igor Brezac wrote:
On Thu, 29 Jul 2004, Mike Lambert wrote:
OS: FreeBSD 4.9-RELEASE-p2
ClamAV: devel-20040728
Build options:
--enable-milter
--disable-clamuko
--enable-bigstack
--disable-dependency-tracking
In 24 hours of running, memory usage for clamd (devel-20040728) has
steadily increased from
Jona Tallieu wrote:
Hi all,
we use CLAMAV 0.75 on a OSX 10.3 server together with a McAfee
scanner.
First in line is the clamav, next is the mcafee virex scanner.
In the clamdscan logs I can see that clam catches Mydoom.M viruses:
Wed Jul 28 10:25:33 2004 - /tmp/cgpavIOQyTk: Worm.Mydoom.M FOUND
[EMAIL PROTECTED] wrote:
From: Gavin Aiken [mailto:[EMAIL PROTECTED] The only case
I'm worried about is what happens if our primary MX (which is my
box and had clamav installed) is offline for whatever reason (eg
SDSL down), and the mail gets routed via our secondary MX machines,
which are at
Graham Toal wrote:
I want to use clamscan to check mail files (just one mail per file).
These are not in Unix mbox format. Although they start with mail
headers, the first line is not From ...
Viruses are not recognised whether I use plain clamscan
or clamscan --mbox. They can only be
Kevin Spicer wrote:
On Thu, 2004-05-27 at 09:21, Mr Mailing List wrote:
Just noticed that scanning files with clamdscan does not scan
filesthat are not world readable.
Perhaps it would be better if clamd could implement some kind of
privilege separation, so that a minimal process running as root
Pad Hosmane schrieb:
Hi,
I am compiling clamav 0.68 on HP-UX 11.00. I am getting following
error during make.
I am using GCC 3.0.1.
++
gcc -g -O2 -o clamscan clamscan.o options.o getopt.o others.o manager.o
daniele schrieb:
From: Michael L Torrie [EMAIL PROTECTED]
On Wed, 2004-03-17 at 06:51, Tomasz Kojm wrote:
On Wed, 17 Mar 2004 12:53:43 +0100
daniele [EMAIL PROTECTED] wrote:
I've installed clamav-0.60 and also 0.65 , but when sendmail must send
a message with file .exe creates with winrar 3.x,
Jim Maul schrieb:
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of
OpenMacNews
Sent: Wednesday, March 17, 2004 11:27 AM
To: ClamAV Users List
Subject: [Clamav-users] testvirus.org eicar tests failing w/ ClamAV
version devel-20040316 on OSX+CGPro
hi,
ClamAV
Lucas Albers schrieb:
Fajar A. Nugraha said:
An interesting fact on ChangeLog:
Thu Mar 11 21:50:32 CET 2004 (tk)
-
* libclamav: rar: added support for encrypted archive (Encrypted.RAR)
detection
To make an obvious statement.
Clamav should add
Tim Wilde schrieb:
On Tue, 9 Mar 2004, Ron Snyder wrote:
Just want to pipe in with another opinion/question-- have there been more A
records added for database.clamav.net recently? Freshclam had been working
just fine for me for several weeks just started reporting the same problems
that Seve
Seve Ho schrieb:
I have been unable to use freshclam to update for 2 days,
My machine is a Freebsd 5.1 with ClamAV version devel-20040306 ( This is
a CVS version )
following are when on the screen when i run freshclam
# freshclam
ClamAV update process started at Tue Mar 9 12:20:42 2004
Adam Kruszewski schrieb:
On Mon, Mar 08, 2004 at 03:38:48PM -0800, Christopher Malek wrote:
[...]
Thereafter, amavisd gets stuck waiting as soon as it tries to talk
to clamd: Almost immediately, all the amavisd processes are stuck
waiting for clamd to respond, and mail starts piling up in the
Adam Webb wrote:
Is there a way to tell clamd how many children it can spawn? I don't
want a server to allow more than 10 instances of clamd to run at any
given time.
MaxThreads in clamav.conf
Clamav is thread based, and it depends on the OSses threads
implementation if threads are show as
Michael Shekman schrieb:
I have an Amavis-new - SA - Postfix installation, and for some reason have never been able to make clamd work with amavisd; it looks like they just don't see each other. At every mail checked amavisd.log has a message:
amavisd[950]: (00950-05) No anti-virus code loaded,
Lucas Albers schrieb:
There are two virus's that clamscan detects, and clamdscan does not.
using clamav .67-6 via the debian package.
clamscan -r --stdout --disable-summary --mbox --infected ./
ENTIRE_MESSAGE: Worm.Mydoom.F FOUND
LibClamAV Warning: Multipart MIME message contains no boundary
Asif Iqbal schrieb:
I had to downgrade it to v 0.65 to fix the problem
Asif Iqbal wrote:
Hi All
This is the first time I am using clamd. I just installed it with
gmp-4.1.2
I am getting this error message when trying to start clamd
LibClamAV debug: Loading databases from
Matthew Trent wrote:
On Thursday 04 March 2004 10:25 am, you wrote:
Looks good, but I've seen clamd temporarily allocate ~2x-3x a mail's
size, so be sure to not set the memory limit too low.
Yeah, I figure it's reasonable to spike some times. I'm just real squeamish
because clamd managed to
(please don't top-post!)
Nigel Kukard schrieb:
On Wed, Mar 03, 2004 at 12:42:48AM +0100, Thomas Lamy wrote:
Nigel Kukard schrieb:
Anyone seen this...
3843 ?S 0:00 clamd
3846 ?S 0:01 \_ clamd
3847 ?S 0:03 \_ clamd
when i cat the /proc/3843/status
Andrew Keuhs schrieb:
Clamd will not start now.. i am using version .67
It was working fine last week... we had a power outage... now when I run /usr/sbin/clamd as root... it goes to next line but nothing is started... Where would I look for errors? I see it has no verbose setting... So i have
Andrew Keuhs schrieb:
- Original Message -
From: Thomas Lamy [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, March 03, 2004 3:18 AM
Subject: Re: [Clamav-users] Clamd will NOT start
Andrew Keuhs schrieb:
Clamd will not start now.. i am using version .67
It was working fine
[EMAIL PROTECTED] schrieb:
my virus signatures dropped from 20831 to 20346, is there only one server
I should be pointing to for updates? Are the db servers always going to
be this much out of date?
thanks,
- Nick
They're not out of date (as one can see from the db versions or the
Rick Macdougall schrieb:
Hi All,
We are getting hammered by Worm.Bagle.F-zippwd-3 and clamav isn't
picking it up.
I understand that qmail-scanner breaks apart the message so that clamav
can not pick up the signature (and I'll look into fixing that) but the
zip file itself is NOT password
Thomas Seifert schrieb:
Tomasz Kojm wrote:
I believe clamscan don't read clamav.conf at all; It uses hard-coded
compiled settings.
I might be wrong :)
You're right - it doesn't depend on clamav.conf at all.
May I suggest a change then please?
Either name it clamd.conf to describe for what
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matthew Trent schrieb:
| On Tuesday 02 March 2004 09:29 pm, Jim Gifford wrote:
|
|Here is what I see on my system, maybe it's something in the kernel your
|using. I'm using 2.6.3
|
|Name: clamd
|State: S (sleeping)
|SleepAVG: 0%
|Tgid: 751
Hanford, Seth schrieb:
I'm using ClamAV 0.67-1, currently using Unix sockets.
I'm not too familiar with UNIX sockets, but I'm comfortable with TCP sockets
and communication. Is clamd any more/less reliable when running over TCP?
I started clamd briefly using TCP and was able to connect and PING
Fajar A. Nugraha schrieb:
Thomas Lamy wrote:
May I suggest a change then please?
Either name it clamd.conf to describe for what its used
It's already called clamd.conf, and the documentation and manpages are
up-to-date.
Eh? Really? Which version is that?
The latest CVS snapshot still calls
Derrick 'dman' Hudson schrieb:
On Tue, Mar 02, 2004 at 12:00:28PM +0800, Me Its wrote:
| I am using debian - sid, but I got error when I apt-get upgrade, when
| it tries to install the new ClamAV
| What should I do next ?
Look for a related bug report on http://bugs.debian.org. If there is
Nigel Kukard schrieb:
Anyone seen this...
3843 ?S 0:00 clamd
3846 ?S 0:01 \_ clamd
3847 ?S 0:03 \_ clamd
when i cat the /proc/3843/status file...
Name: clamd
State: S (sleeping)
Tgid: 3843
Pid:3843
PPid: 1
TracerPid: 0
Uid:0
Jose Marcio Martins da Cruz schrieb:
Hello,
libclamav has three functions to scan an object : cl_scanbuff,
cl_scandesc and cl_scanfile. Only cl_scanbuff doesn't have the parameter
options. What kind of objects are scanned by cl_scanbuff ?
Memory buffers. This needs no options, as it is
Matthew Daubenspeck wrote:
I am using the backported.org package of ClamAV:
$ clamscan --version
clamscan / ClamAV version 0.67+CVS20040221
So far clam has been catching 90% of the viruses that are sent to the
server, but it has missed a few others. I downloaded the specific virus
itself and
Philipp Grosswiler schrieb:
I am using clamav-devel-20040228 and since then I can't start clamd anymore.
I always get the following error:
LibClamAV Error: readdb(): Malformed pattern line 5526 (file
/tmp/910f9072257e1c88/viruses.db).
I already tried to remove all .cvd files and reload the new
Paul Boven schrieb:
Hi everyone,
(resending because the first one is hanging in moderation limbo even
though I did subscribe beforehand)
I'm just giving ClamAV a try, but unfortunately it coredumps somewhere
in libz when trying test/test2.badext and test/test2.zip.
Machine is SunBlade 2000,
Derek J. Balling wrote:
I was originally going to ask how come this virus is getting through
([EMAIL PROTECTED]), but decided let's update the virus definitions and see
if it's been added already.
Except that freshclam segfaults.
Anyone know of any known problems on that front?
[strace
Mike Brodbelt wrote:
I've just come across a core dump generated by clamav-milter 0.67d from
CVS, that occurred during one of it's problem periods. Before I delete
it, would it hbe of any use to any of the developers?
Mike.
Core dumps are _always_ a valuable resource when it comes to bug
John Jolet wrote:
has anyone noticed any problems with clamd leaking memory? I've installed the
rpm from crash-hat and it seems to be chewing up my swap quickly. I
uninstalled that and built from source and it does the same thing, just a bit
slower. I'll have to restart clamd nightly if i
John Jolet wrote:
I have a question about thatis it documented anywhere how to get clamd
integrated into postfix? all i could find was instructions on doing it via
amavisd-new, so that's the road i've started down, but I'd prefer to do it
natively via clamd, if possible.
AFAIK this is not
Andrew McCall wrote:
Update:
I am getting lots of emails that appear to be viruses, following the same
pattern as W32.Netsky.B, and this is my original reason for thinking it was a
new variant of this virus.
The attachments are 0 bytes - so even if I was able to work out how to
generate a
Philipp Grosswiler wrote:
Unfortunately, clamd crashed today morning at 05:00 (almost exactly at
05:00). I only realized it by accident. This is what the log is showing:
Thu Feb 26 04:58:10 2004 - stream: Worm.MyDoom.E.UPX FOUND
Thu Feb 26 05:01:21 2004 - Segmentation fault :-( Bye..
Thu Feb 26
Emmanuel Saracco wrote:
hi,
in the ClamAV tutorial for extracting signatures it is said to use HBEDV
antivirus with sigtool for automatic extractions. is there another way?
why not just using ClamAV for that? is it possible?
You can't use clamav itself for that, because it doesn't know this
1 - 100 of 181 matches
Mail list logo
