At 10:19 AM 12/7/2006, you wrote:
In hindsight my comment about it being harmless is only because I've always dl'd the files to a safe place before committing them to the daemon and is why I wouldn't have had a problem with Steve's file. It's clearly not a universal practice but probably should be. The problem I had that killed clamd some weeks ago had to do with structure errors in the MSRBL file (too many fields in one record). I still don't know what test I can do to prevent this in the future, but I do have a process in place to alert me if clamd cannot be restarted by the watchdog.
For a while now I've been doing something like: (cd /some/path/tmp) (wget updated files) gzcat phish.ndb.gz > phish.ndb && \ clamscan --quiet -d phish.ndb && \ mv phish.ndb /var/db/clamav/phish.ndb gzcat scam.ndb.gz > scam.ndb && \ clamscan --quiet -d scam.ndb && \ mv scam.ndb /var/db/clamav/scam.ndb clamscan --quiet -d MSRBL-Images.hdb && \ mv MSRBL-Images.hdb.new /var/db/clamav/MSRBL-Images.hdb _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
