Jay Lee wrote:
Dennis Peterson wrote:
Jay Lee wrote:
Dennis Peterson wrote:
Jay Lee wrote:
I am attempting to write a script that will take action whenever an
email from the [EMAIL PROTECTED] list is received. The
script would run freshclam and grab the most recent update, thus
giving
me the most up to date version at all times without putting a heavy
load
on the ClamAV servers.
Why don't you just do something simple like:
dig TXT current.cvd.clamav.net
This returns the current released version of ClamAV, the current CVD
file version numbers, and the date and time of the update.
The idea is to grab the update immediately once it is published.
Checking the DNS record would have to be a cron job and thus would
only run at a given time.
You can run it outside of cron too, and as often as you like - dns is
a very light weight process. It also has the advantage of telling you
that there's an update and that it is available to download. I don't
know if the email message can tell you the mirrors are sync'd. Perhaps
the email is not sent until all mirrors are sync'd in which case it
can come a long time after the update has been released.
The point of the exercise it to run freshclam *only* when the update is
published, not to run every x hours (or minutes) without knowing if
there is an update. I don't need to check DNS to see if there is an
update because the script already *knows* there is an update since it
got the email. I have already eliminated DNS as a "out of sync" problem
since I'm using --without-dns. However, it seems the mirrors are not
synced up before the email is sent.
Looking at my options there...
There's a difference between knowing there's an update and knowing the
update is available to download. My understanding is the DNS is not
updated for any particular mirror until that mirror has the files
available. This information can be had, inexpensively I might add,
before the email is received. It isn't necessary to run freshclam to get
the DNS response. Nor is it necessary to run freshclam to download the
files, for that matter. But since freshclam does a dns query to learn if
a download is necessary it too is very inexpensive for both the client
and the server. Even DNS via tcp.
So I guess it all comes down to what you're optimizing for - earliest
possible protection of having a new database inexpensively, or something
more magnanimous.
What you are after is quite easily done with a little bit of perl code
or procmail code.
dp
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://lurker.clamav.net/list/clamav-users.html
