Package: clamav-daemon Version: 1.0.3+dfsg-1~deb12u1 Severity: important -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
$ systemctl status clamav-clamonacc.service × clamav-clamonacc.service - ClamAV On-Access Scanner Loaded: loaded (/lib/systemd/system/clamav-clamonacc.service; enabled; preset: enabled) Active: failed (Result: exit-code) since Thu 2024-01-04 20:11:38 EET; 3min 11s ago Duration: 11ms Docs: man:clamonacc(8) man:clamd.conf(5) https://docs.clamav.net/ Process: 13031 ExecStartPre=/bin/bash -c while [ ! -S /run/clamav/clamd.ctl ]; do sleep 1; done (code=exited, status=0/SUCCESS) Process: 13032 ExecStart=/usr/sbin/clamonacc -F --log=/var/log/clamav/clamonacc.log --move=/root/quarantine (code=exited, status=2) Main PID: 13032 (code=exited, status=2) CPU: 12ms tammi 04 20:11:38 p8h61 systemd[1]: Starting clamav-clamonacc.service - ClamAV On-Access Scanner... tammi 04 20:11:38 p8h61 systemd[1]: Started clamav-clamonacc.service - ClamAV On-Access Scanner. tammi 04 20:11:38 p8h61 clamonacc[13032]: -------------------------------------- tammi 04 20:11:38 p8h61 clamonacc[13032]: ERROR: Clamonacc: at least one of OnAccessExcludeUID, OnAccessExcludeUname, or OnAccessExcludeRootUID must be specified ... it is recommended> tammi 04 20:11:38 p8h61 systemd[1]: clamav-clamonacc.service: Main process exited, code=exited, status=2/INVALIDARGUMENT tammi 04 20:11:38 p8h61 systemd[1]: clamav-clamonacc.service: Failed with result 'exit-code'. - -- Package-specific info: - --- configuration --- Checking configuration files in /etc/clamav Config file: clamd.conf - ----------------------- AlertExceedsMax disabled PreludeEnable disabled PreludeAnalyzerName = "ClamAV" LogFile = "/var/log/clamav/clamav.log" LogFileUnlock disabled LogFileMaxSize = "4294967295" LogTime = "yes" LogClean disabled LogSyslog disabled LogFacility = "LOG_LOCAL6" LogVerbose disabled LogRotate = "yes" ExtendedDetectionInfo = "yes" PidFile disabled TemporaryDirectory disabled DatabaseDirectory = "/var/lib/clamav" OfficialDatabaseOnly disabled LocalSocket = "/var/run/clamav/clamd.ctl" LocalSocketGroup = "clamav" LocalSocketMode = "666" FixStaleSocket = "yes" TCPSocket disabled TCPAddr disabled MaxConnectionQueueLength = "15" StreamMaxLength = "26214400" StreamMinPort = "1024" StreamMaxPort = "2048" MaxThreads = "12" ReadTimeout = "180" CommandReadTimeout = "30" SendBufTimeout = "200" MaxQueue = "100" IdleTimeout = "30" ExcludePath disabled MaxDirectoryRecursion = "15" FollowDirectorySymlinks disabled FollowFileSymlinks disabled CrossFilesystems = "yes" SelfCheck = "3600" ConcurrentDatabaseReload = "yes" DisableCache disabled VirusEvent disabled ExitOnOOM disabled AllowAllMatchScan = "yes" Foreground disabled Debug disabled LeaveTemporaryFiles disabled GenerateMetadataJson disabled User = "clamav" Bytecode = "yes" BytecodeSecurity = "TrustSigned" BytecodeTimeout = "60000" BytecodeUnsigned disabled BytecodeMode = "Auto" DetectPUA disabled ExcludePUA disabled IncludePUA disabled ScanPE = "yes" ScanELF = "yes" ScanMail = "yes" ScanPartialMessages disabled PhishingSignatures = "yes" PhishingScanURLs = "yes" HeuristicAlerts = "yes" HeuristicScanPrecedence disabled StructuredDataDetection disabled StructuredMinCreditCardCount = "3" StructuredMinSSNCount = "3" StructuredSSNFormatNormal = "yes" StructuredSSNFormatStripped disabled ScanHTML = "yes" ScanOLE2 = "yes" AlertBrokenExecutables disabled AlertBrokenMedia disabled AlertEncrypted disabled StructuredCCOnly disabled AlertEncryptedArchive disabled AlertEncryptedDoc disabled AlertOLE2Macros disabled AlertPhishingSSLMismatch disabled AlertPhishingCloak disabled AlertPartitionIntersection disabled ScanPDF = "yes" ScanSWF = "yes" ScanXMLDOCS = "yes" ScanHWP3 = "yes" ScanArchive = "yes" ForceToDisk disabled MaxScanTime = "120000" MaxScanSize = "104857600" MaxFileSize = "26214400" MaxRecursion = "16" MaxFiles = "10000" MaxEmbeddedPE = "10485760" MaxHTMLNormalize = "10485760" MaxHTMLNoTags = "2097152" MaxScriptNormalize = "5242880" MaxZipTypeRcg = "1048576" MaxPartitions = "50" MaxIconsPE = "100" MaxRecHWP3 = "16" PCREMatchLimit = "10000" PCRERecMatchLimit = "5000" PCREMaxFileSize = "26214400" OnAccessMountPath disabled OnAccessIncludePath disabled OnAccessExcludePath disabled OnAccessExcludeRootUID disabled OnAccessExcludeUID disabled OnAccessExcludeUname disabled OnAccessMaxFileSize = "5242880" OnAccessDisableDDD disabled OnAccessPrevention disabled OnAccessExtraScanning disabled OnAccessCurlTimeout = "5000" OnAccessMaxThreads = "5" OnAccessRetryAttempts disabled OnAccessDenyOnError disabled DevACOnly disabled DevACDepth disabled DevPerformance disabled DevLiblog disabled DisableCertCheck disabled AlgorithmicDetection = "yes" BlockMax disabled PhishingAlwaysBlockSSLMismatch disabled PhishingAlwaysBlockCloak disabled PartitionIntersection disabled OLE2BlockMacros disabled ArchiveBlockEncrypted disabled Config file: freshclam.conf - --------------------------- LogFileMaxSize = "4294967295" LogTime = "yes" LogSyslog disabled LogFacility = "LOG_LOCAL6" LogVerbose disabled LogRotate = "yes" PidFile disabled DatabaseDirectory = "/var/lib/clamav" Foreground disabled Debug disabled UpdateLogFile = "/var/log/clamav/freshclam.log" DatabaseOwner = "clamav" Checks = "24" DNSDatabaseInfo = "current.cvd.clamav.net" DatabaseMirror = "db.local.clamav.net", "database.clamav.net" PrivateMirror disabled MaxAttempts = "5" ScriptedUpdates = "yes" TestDatabases = "yes" CompressLocalDatabase disabled ExtraDatabase disabled ExcludeDatabase disabled DatabaseCustomURL disabled HTTPProxyServer disabled HTTPProxyPort disabled HTTPProxyUsername disabled HTTPProxyPassword disabled HTTPUserAgent disabled NotifyClamd = "/etc/clamav/clamd.conf" OnUpdateExecute disabled OnErrorExecute disabled OnOutdatedExecute disabled LocalIPAddress disabled ConnectTimeout = "30" ReceiveTimeout disabled Bytecode = "yes" clamav-milter.conf not found Software settings - ----------------- Version: 1.0.3 Optional features supported: MEMPOOL AUTOIT_EA06 BZIP2 LIBXML2 PCRE2 ICONV JSON Database information - -------------------- Database directory: /var/lib/clamav bytecode.cvd: version 334, sigs: 91, built on Wed Feb 22 23:33:21 2023 main.cvd: version 62, sigs: 6647427, built on Thu Sep 16 15:32:42 2021 daily.cld: version 27144, sigs: 2050280, built on Thu Jan 4 11:39:55 2024 Total number of signatures: 8697798 Platform information - -------------------- uname: Linux 6.1.0-17-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.69-1 (2023-12-30) x86_64 OS: Linux, ARCH: x86_64, CPU: x86_64 Full OS version: Debian GNU/Linux 12 (bookworm) zlib version: 1.2.13 (1.2.13), compile flags: a9 platform id: 0x0a21a3a308000000000c0200 Build information - ----------------- GNU C: 12.2.0 (12.2.0) sizeof(void*) = 8 Engine flevel: 163, dconf: 163 - --- data dir --- total 360416 - -rw-r--r-- 1 clamav clamav 291965 Jun 12 2023 bytecode.cvd - -rw-r--r-- 1 clamav clamav 198271488 Jan 4 12:54 daily.cld - -rw-r--r-- 1 clamav clamav 69 Jun 12 2023 freshclam.dat - -rw-r--r-- 1 clamav clamav 170479789 Jun 12 2023 main.cvd - -- System Information: Debian Release: 12.4 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable-debug'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-17-amd64 (SMP w/4 CPU threads; PREEMPT) Locale: LANG=fi_FI.utf8, LC_CTYPE=fi_FI.utf8 (charmap=UTF-8), LANGUAGE=fi:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages clamav-daemon depends on: ii adduser 3.134 ii clamav-base 1.0.3+dfsg-1~deb12u1 ii clamav-freshclam [clamav-data] 1.0.3+dfsg-1~deb12u1 ii debconf [debconf-2.0] 1.5.82 ii dpkg 1.21.22 ii init-system-helpers 1.65.2 ii libc6 2.36-9+deb12u3 ii libclamav11 1.0.3+dfsg-1~deb12u1 ii libcurl4 7.88.1-10+deb12u5 ii libncurses6 6.4-4 ii libsystemd0 252.19-1~deb12u1 ii libtinfo6 6.4-4 ii procps 2:4.0.2-3 ii ucf 3.0043+nmu1 ii zlib1g 1:1.2.13.dfsg-1 Versions of packages clamav-daemon recommends: ii clamdscan 1.0.3+dfsg-1~deb12u1 Versions of packages clamav-daemon suggests: ii apparmor 3.0.8-3 pn clamav-docs <none> pn daemon <none> pn libclamunrar <none> - -- debconf information: clamav-daemon/ForceToDisk: false clamav-daemon/StreamMaxLength: 25 clamav-daemon/OnAccessMaxFileSize: 5M clamav-daemon/LogRotate: true clamav-daemon/MaxZipTypeRcg: 1M clamav-daemon/LogSyslog: false clamav-daemon/MaxConnectionQueueLength: 15 clamav-daemon/BytecodeSecurity: TrustSigned clamav-daemon/BytecodeTimeout: 60000 clamav-daemon/ScanArchive: true clamav-daemon/FixStaleSocket: true clamav-daemon/MaxDirectoryRecursion: 15 clamav-daemon/TCPAddr: any clamav-daemon/MaxScriptNormalize: 5M clamav-daemon/LogFile: /var/log/clamav/clamav.log clamav-daemon/TcpOrLocal: UNIX clamav-daemon/MaxHTMLNoTags: 2M clamav-daemon/Bytecode: true clamav-daemon/User: clamav clamav-daemon/MaxEmbeddedPE: 10M clamav-daemon/LocalSocketMode: 666 clamav-daemon/debconf: true clamav-daemon/MaxHTMLNormalize: 10M clamav-daemon/ScanSWF: true clamav-daemon/AllowAllMatchScan: true clamav-daemon/ReadTimeout: 180 clamav-daemon/FollowDirectorySymlinks: false clamav-daemon/LogTime: true clamav-daemon/LocalSocket: /var/run/clamav/clamd.ctl clamav-daemon/MaxThreads: 12 clamav-daemon/ScanMail: true clamav-daemon/AddGroups: clamav-daemon/LocalSocketGroup: clamav clamav-daemon/TCPSocket: 3310 clamav-daemon/DisableCertCheck: false clamav-daemon/FollowFileSymlinks: false clamav-daemon/SelfCheck: 3600 -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEyJACx3qL7GpObXOQrh+Cd8S017YFAmWW9iIACgkQrh+Cd8S0 17bjGQ//RwKjjb55xkzHOabQCJuzAukA0f+18Y2RJxcvhbom6zOhzDT0iiFrOSdK rTnUUhHM0sWWQb1nhMCbevCxmLiXVXIksPNAXbxjtBLwmVSqM0JyLIpeA5QoUhev D4gLnlnHutlhNJRCskSnpqyWSVKxdsH/+Rz8fCNYv2AP5O3mwjGYpyxXmT18xA9M Tlz6YMRYvyvLqu9D+hhneXBCtdharV0zt7EUsupSSYAgOlm2cTZly5zaa4iFVxtL oHTO2J7kt9X0+AhEgYY7ALw3pnn7IIAdQY1YKSeClcbk5o26daiVrj5Bb9jhRNFS gP77pXrBooViETzWVBrKRssonmg9J1u+m7yaz6/MVfY/Me7i50fLPMbph/HmyHm/ FndLIaZX4u/5eoOx9tsNQJmviee1cL+nvBg9Ova2YCbI6/mVYS4Cra+xf+cfj0V4 kDVK/4mqUwdfphAaSpcsPMnZuzLUe+pOfObqk/RIFJU27kXivhS5sCcxgyGpTsBL eIIUBSP+rjEhoyyAs0KV0N3Sp4ISLLPlYpUVT6ly4QqC8Wz3LMBRuaqWb+Aly4H7 U6efcISJKSOBefyVXfjVkbd1jO1qu/iWqvf+SfrKr6Fo8IPvfmMdi98FGkb1NuGw ieBScsmdNcQVYW6Ak3zE5gu7vck8QwydhJX2JI6W3TssVKybUsk= =jzvw -----END PGP SIGNATURE-----