[Bug 2067608] Re: clamav-freshclam 1.0.5 and logwatch 7.7-1 fails to report

John Chittum Wed, 20 Nov 2024 10:45:48 -0800

There are a few default differences I'm seeing between clamav ==
0.103.12+dfsg-0ubuntu0.22.04.1 (Ubuntu Jammy) and clamav ==
1.0.7+dfsg-0ubuntu0.24.04.1 (Ubuntu Noble)


1. clamav default logs in 0.103.12 writes a line to 
/var/log/clamav/freshclam.log that includes the line "$DATE $TIME -> ClamAV 
update process started  at $DATE $TIME
2. clamav default logs in 1.0.7 do _not_ write this line at all.
3. clamav 1.0.7 does have a journal line which lacks the opening 
Nov 20 15:06:01 ultimate-hare freshclam[1600]: ClamAV update process started at 
Wed Nov 20 15:06:01 202
4. bumping up clamav logging in `/etc/clamav/freshclam.conf` does not add the 
line to /var/log/clamav/freshclam.log
5. checking source, in clamav/freshclam/freshclam.c , the following changed:

# 0.103.12
  logg("ClamAV update process started at %s", ctime(&currtime));

# 1.0.7
    logg(LOGG_INFO, "ClamAV update process started at %s", ctime(&currtime));

So the logging level changed. Setting the following freshclam.conf
didn't change the output

LogVerbose true
Debug true

I do get a lot more info, but it still doesn't add the INFO level
statements to /var/log/clamav/freshclam.log. I do see it in the journal

Nov 20 15:06:01 ultimate-hare systemd[1]: Stopping clamav-freshclam.service - 
ClamAV virus database updater...
Nov 20 15:06:01 ultimate-hare systemd[1]: clamav-freshclam.service: Deactivated 
successfully.
Nov 20 15:06:01 ultimate-hare systemd[1]: Stopped clamav-freshclam.service - 
ClamAV virus database updater.
Nov 20 15:06:01 ultimate-hare systemd[1]: clamav-freshclam.service: Consumed 
16.845s CPU time, 775.1M memory peak, 0B memory swap peak.
Nov 20 15:06:01 ultimate-hare systemd[1]: Started clamav-freshclam.service - 
ClamAV virus database updater.
Nov 20 15:06:01 ultimate-hare freshclam[1600]: ClamAV update process started at 
Wed Nov 20 15:06:01 2024
Nov 20 15:06:02 ultimate-hare freshclam[1600]: Wed Nov 20 15:06:02 2024 -> 
daily.cvd database is up-to-date (version: 27464, sigs: 2068059, f-level: 90, 
builder: raynman)
Nov 20 15:06:02 ultimate-hare freshclam[1600]: Wed Nov 20 15:06:02 2024 -> 
main.cvd database is up-to-date (version: 62, sigs: 6647427, f-level: 90, 
builder: sigmgr)
Nov 20 15:06:02 ultimate-hare freshclam[1600]: Wed Nov 20 15:06:02 2024 -> 
bytecode.cvd database is up-to-date (version: 335, sigs: 86, f-level: 90, 
builder: raynman)

So there's something here as far as a change in log level for the
statement, as well as how INFO level seems to be getting logged

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2067608

Title:
  clamav-freshclam 1.0.5 and logwatch 7.7-1 fails to report

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/2067608/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 2067608] Re: clamav-freshclam 1.0.5 and logwatch 7.7-1 fails to report

Reply via email to