> On 2009-04-03 16:52, Andre Hübner wrote: > > for a long time i use the combination proftpd --> mod_clamav --> clamav > > Now i have a problem with current 0.95 > > mod_clamav talks to clamd using tcpsocket port 3310 > > part of my proftpd.conf: > > <IfModule mod_clamav.c> > > ClamAV on > > ClamServer 127.0.0.1 > > ClamPort 3310 > > </IfModule> > > > > clamav is listening on 3310 > > > > this is my /etc/clamd.conf > > > > LogSyslog 1 > > LogFacility LOG_MAIL > > LogTime 1 > > FixStaleSocket 1 > > TCPSocket 3310 > > TCPAddr 127.0.0.1 > > PidFile /var/run/clamav/clamd.pid > > MaxThreads 10 > > MaxDirectoryRecursion 15 > > MaxFileSize 10M > > MaxScanSize 10M > > MaxRecursion 5 > > MaxFiles 1000 > > User nobody > > AllowSupplementaryGroups true > > > > lsof -i:3310 shows listening clamd: > > > > lsof -i:3310 > > COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME > > clamd 16291 nobody 4u IPv4 21289482 TCP localhost:dyna-access > > (LISTEN) > > > > if i upload a testvirus with clam 0.95 it seems that clamd is not accepting > > the connect from mod_clamav: > > mod_clamav/0.10: info: Clamd didn't accept the session end request.
On 03.04.09 18:06, Török Edwin wrote: > I think the problem is mod_clamav, it is using the old SESSION command. > Why are you using 0.10 version of mod_clamav? The website has 0.22, and > it doesn't seem to use the SESSION command anymore. apparently because he uses ProFTPD's mod_clamav, not the apache's one. However the author released 0.11 candidate that should use new clamav protocol. Get it from https://secure.thrallingpenguin.com/redmine/ note it's testing only -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Eagles may soar, but weasels don't get sucked into jet engines. _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
