Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2023-07-13 Thread Vu, Hong-Duc V. via clamav-users 
Hi Micah,

Thanks for the update. I'll be keeping an eye on this one but I don't plan 
needing to use this version of Red Hat for a little bit. RHEL 8 with FIPS seems 
to work fine with clamav.


___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2023-07-11 Thread Micah Snyder (micasnyd) via clamav-users 
Apologies for the delayed response.

We are only just starting to discuss a possibility of a new CVD (signed 
signature database archive) format internally.  Sorry I cannot promise anything 
in terms of timeline.

-Micah


Micah Snyder
ClamAV Development
Talos
Cisco Systems, Inc.

From: clamav-users  on behalf of Vu, 
Hong-Duc V. via clamav-users 
Sent: Friday, July 7, 2023 2:33 PM
To: clamav-users@lists.clamav.net 
Cc: Vu, Hong-Duc V. 
Subject: [clamav-users] ClamAV on RHEL9 with FIPS enabled


Hello Everyone,



Looks like there’s some discussion on the clamav github about this issue.



https://github.com/Cisco-Talos/clamav/issues/564



Micah do you have an anticipated roadmap of when you plan on implementing the 
new SHA256 signatures?





Hong-Duc Vu

Phone: 240-592-3072 Email: hong-duc...@jhuapl.edu<mailto:hong-duc...@jhuapl.edu>


___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

[clamav-users] ClamAV on RHEL9 with FIPS enabled

2023-07-07 Thread Vu, Hong-Duc V. via clamav-users 
Hello Everyone,

Looks like there's some discussion on the clamav github about this issue.

https://github.com/Cisco-Talos/clamav/issues/564

Micah do you have an anticipated roadmap of when you plan on implementing the 
new SHA256 signatures?


Hong-Duc Vu
Phone: 240-592-3072 Email: hong-duc...@jhuapl.edu

___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

[clamav-users] ClamAV on RHEL9 with FIPS enabled

2023-06-14 Thread Vu, Hong-Duc V. via clamav-users 
Hello everyone,

Back in October there was a thread discussing using clamav with RHEL9 with FIPS 
enabled. I am using the clamav that is available in the EPEL repos which as of 
today is 0.103.8-3.el9.x86_64. I am running into the same issue the previous 
person discussed and have to disable FIPS for this particular version in order 
to load the definitions. Just like the OP I get the can't allocate memory error 
when clamav is reading the definitions.

I understand 1.1.0  is out now. Does that version still have MD5 hash 
signatures? Were there still plans to address this in the 0.103 LTS versions? 
Here are the links to the original thread.

https://lists.clamav.net/pipermail/clamav-users/2022-October/013000.html
https://github.com/Cisco-Talos/clamav/issues/564

Hong-Duc

___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2022-10-27 Thread Micah Snyder (micasnyd) via clamav-users 
We plan to migrate away from MD5, and eventually stop supporting MD5 hash 
signatures as well.  I'm hopeful we can do it in the next feature version.  An 
internal MD5 implementation may be required if we can't fully migrate, but I 
suspect we should be able to.

Regards,
Micah


Micah Snyder
ClamAV Development
Talos
Cisco Systems, Inc.

From: clamav-users  on behalf of Andrew 
C Aitchison via clamav-users 
Sent: Thursday, October 27, 2022 12:40 AM
To: Orion Poplawski via clamav-users 
Cc: Andrew C Aitchison 
Subject: Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

On Wed, 26 Oct 2022, Orion Poplawski via clamav-users wrote:

> On 10/24/22 11:03, Hoevenaar, Jeffrey (GE Aerospace, US) via clamav-users
> wrote:
>> Hello,
>>
>> It would appear ClamAV will not run on RHEL9 with FIPS enabled.
>>
>> Has anyone else seen this issue?
>
> Known issue: https://github.com/Cisco-Talos/clamav/issues/564
>
> which it seems you have already found.

I guess that including an internal implementation of md5 would
enable ClamAV to run on FIPS enabled/compliant machines,
but that even so, this would not be the right thing to do ?

--
Andrew C. Aitchison  Kendal, UK
and...@aitchison.me.uk
___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2022-10-27 Thread Andrew C Aitchison via clamav-users 

On Wed, 26 Oct 2022, Orion Poplawski via clamav-users wrote:

On 10/24/22 11:03, Hoevenaar, Jeffrey (GE Aerospace, US) via clamav-users 
wrote:

Hello,

It would appear ClamAV will not run on RHEL9 with FIPS enabled.

Has anyone else seen this issue?


Known issue: https://github.com/Cisco-Talos/clamav/issues/564

which it seems you have already found.


I guess that including an internal implementation of md5 would
enable ClamAV to run on FIPS enabled/compliant machines,
but that even so, this would not be the right thing to do ?

--
Andrew C. Aitchison  Kendal, UK
   and...@aitchison.me.uk
___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2022-10-26 Thread Orion Poplawski via clamav-users 
On 10/24/22 11:03, Hoevenaar, Jeffrey (GE Aerospace, US) via 
clamav-users wrote:

Hello,

It would appear ClamAV will not run on RHEL9 with FIPS enabled.

Has anyone else seen this issue?


Known issue: https://github.com/Cisco-Talos/clamav/issues/564

which it seems you have already found.

--
Orion Poplawski
he/him/his  - surely the least important thing about me
IT Systems Manager 720-772-5637
NWRA, Boulder/CoRA Office FAX: 303-415-9702
3380 Mitchell Lane   or...@nwra.com
Boulder, CO 80301 https://www.nwra.com/


smime.p7s
Description: S/MIME Cryptographic Signature
___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2022-10-24 Thread Hoevenaar, Jeffrey (GE Aerospace, US) via clamav-users 
I have enough RAM.  It is an issue with running in FIPS mode.


Thanks,
Jeff Hoevenaar



-Original Message-
From: Arnaud Jacques  
Sent: Monday, October 24, 2022 1:43 PM
To: ClamAV users ML 
Cc: Hoevenaar, Jeffrey (GE Aerospace, US) 
Subject: EXT: Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

WARNING: This email originated from outside of GE. Please validate the sender's 
email address before clicking on links or attachments as they may not be safe.

Hello,


> Oct 24 12:07:45 rhel9test clamd[46661]: ERROR: Can't allocate memory

You do not have enough RAM.
Do you have, at leaset 8Gb ?

-- 
Cordialement / Best regards,

Arnaud Jacques
Gérant de SecuriteInfo.com

Téléphone : +33-(0)3.60.47.09.81
E-mail : a...@securiteinfo.com
Site web : https://www.securiteinfo.com
Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
Signatures for ClamAV antivirus : http://ow.ly/LqfdL
___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2022-10-24 Thread Matus UHLAR - fantomas 

Oct 24 12:07:45 rhel9test clamd[46661]: ERROR: Can't allocate memory


On 24.10.22 19:43, Arnaud Jacques wrote:

You do not have enough RAM.
Do you have, at leaset 8Gb ?


1 GB is not enough, 2GB should be enough to run clamav scanner.
reloading virus database in memory uses temporarily 2-times as much RAM.

with 3rd party virus signatures, you may need even more ram

--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The only substitute for good manners is fast reflexes.
___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

2022-10-24 Thread Arnaud Jacques 

Hello,



Oct 24 12:07:45 rhel9test clamd[46661]: ERROR: Can't allocate memory


You do not have enough RAM.
Do you have, at leaset 8Gb ?

--
Cordialement / Best regards,

Arnaud Jacques
Gérant de SecuriteInfo.com

Téléphone : +33-(0)3.60.47.09.81
E-mail : a...@securiteinfo.com
Site web : https://www.securiteinfo.com
Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
Signatures for ClamAV antivirus : http://ow.ly/LqfdL
___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

[clamav-users] ClamAV on RHEL9 with FIPS enabled

2022-10-24 Thread Hoevenaar, Jeffrey (GE Aerospace, US) via clamav-users 
Hello,

It would appear ClamAV will not run on RHEL9 with FIPS enabled.
Has anyone else seen this issue?

When I disable FIPS ClamAV will start.

# uname -a
Linux rhel9test 5.14.0-70.26.1.el9_0.x86_64 #1 SMP PREEMPT Fri Sep 2 16:07:40 
EDT 2022 x86_64 x86_64 x86_64 GNU/Linux


# rpm -qa|grep clam
clamav-filesystem-0.103.7-1.el9.noarch
clamav-data-0.103.7-1.el9.noarch
clamav-lib-0.103.7-1.el9.x86_64
clamav-0.103.7-1.el9.x86_64
clamd-0.103.7-1.el9.x86_64


Oct 24 12:07:44 rhel9test systemd[1]: Starting clamd scanner daemon...
Oct 24 12:07:45 rhel9test clamd[46661]: LibClamAV Error: Can't load 
/var/lib/clamav/daily.cvd: Can't allocate memory
Oct 24 12:07:45 rhel9test clamd[46661]: LibClamAV Error: cli_loaddbdir(): error 
loading database /var/lib/clamav/daily.cvd
Oct 24 12:07:45 rhel9test clamd[46661]: ERROR: Can't allocate memory
Oct 24 12:07:45 rhel9test systemd[1]: 
clamd@service.service: Control process exited, 
code=exited, status=1/FAILURE
Oct 24 12:07:45 rhel9test systemd[1]: 
clamd@service.service: Failed with result 
'exit-code'.
Oct 24 12:07:45 rhel9test systemd[1]: Failed to start clamd scanner daemon.


Thanks,
Jeff Hoevenaar



___

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat