On Thu, 22 Sep 2005, R. Steven Rainwater wrote:
If anyone has any clues or suggestions, I've love to hear them.
I'm not convinced that your -T=0 is valid syntax. It should be -T0 or
--timeout=0. Using an = with a single-character argument is bad form.
You should be running clmilter_watch [1] out of cron, preferably shortly
after your freshclam cronjob runs. This can be used to restart
clamav-milter only when necessary, rather than restarting it every hour
(or whatever) whether it needs it or not.
[1] http://www.itg.uiuc.edu/itg_software/clmilter_watch/
One side note. In the past I used smtp-vilter instead of clamav-milter
and it had what I think may be a better failure mode. It was designed so
that if it failed, sendmail would continue to operated normally, just
without virus scanning. I much prefer that mode of failure to forcing
sendmail to reject all incoming mail. It would be nice to see such a
feature in future version of clamav-milter.
That's a function of how you configure your sendmail.mc file. For
example, mine is:
INPUT_MAIL_FILTER(`clamav', `S=local:/var/run/clamav/clmilter.sock, F=,
T=S:4m;R:4m')dnl
where the F= tells it that in the event of a milter failure, it should
continue processing as if the milter did not exist.
There are more details of how to configure clamav-milter intelligently
(assuming I'm intelligent ;) on my website:
http://www.itg.uiuc.edu/~menscher/clamav_notes_0.87.html
Damian Menscher
--
-=#| Physics Grad Student & SysAdmin @ U Illinois Urbana-Champaign |#=-
-=#| 488 LLP, 1110 W. Green St, Urbana, IL 61801 Ofc:(217)333-0038 |#=-
-=#| 4602 Beckman, VMIL/MS, Imaging Technology Group:(217)244-3074 |#=-
-=#| <[EMAIL PROTECTED]> www.uiuc.edu/~menscher/ Fax:(217)333-9819 |#=-
-=#| The above opinions are not necessarily those of my employers. |#=-
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
