My setup has been working fine for quite some time -- today I tried to send about 10MB of jpg's, and I get a 4.7.1 from postfix. (I had to increase postfix's limits first, so I haven't pushed clamav-milter to this size of attachment before - so that's the fundamental "what's changed" -- I'm allowing larger attachments.). If I stop clamav-milter, the email goes through, so this doesn't seem to be a postfix issue.
This is an idle system -- personal email server, not a high traffic server. Any ideas? The log files from the clam daemons are really not very helpful. It feels like something is timing out, or hitting a max file size limit -- or timing out due to the increased time to scan the larger file. I've turned on debug and verbose. I've increased the timeouts and max filesizes where I've found them. Thanks, Rich System config and logs follow: --------------8<------------------ Processes: 1 S clamilt 14840 1 0 80 0 - 52339 poll_s 09:12 ? 00:00:11 clamd.milter -c /etc/clamd.d/milter.conf --pid /var/run/clamd.milter/clamd.pid 4 S clamilt 16382 1 0 80 0 - 7296 poll_s 09:28 ? 00:00:00 /usr/sbin/clamav-milter -c /etc/mail/clamav-milter.conf --nofork=yes Config: $ grep -v ^# /etc/clamd.d/milter.conf | egrep -v "^$" LogFile /var/log/clamd.milter LogFileMaxSize 100M LogTime yes LogClean yes LogSyslog no LogFacility LOG_MAIL LogVerbose yes PidFile /var/run/clamd.milter/clamd.pid LocalSocket /var/run/clamd.milter/clamd.sock FixStaleSocket yes StreamMaxLength 100M ReadTimeout 120 IdleTimeout 30 User clamilt Debug yes ScanMail yes MaxScanSize 150M MaxFileSize 50M ClamukoMaxFileSize 50M $ grep -v ^# /etc/mail/clamav-milter.conf | egrep -v "^$" MilterSocket inet:7357@localhost MilterSocketMode 660 FixStaleSocket yes User clamilt AllowSupplementaryGroups yes ClamdSocket unix:/var/run/clamd.milter/clamd.sock MaxFileSize 50M LogFile /var/log/clamav-milter.log LogFileMaxSize 10M LogTime yes LogSyslog no LogVerbose yes LogInfected Basic postfix: /etc/postfix/main.cf:smtpd_milters = unix:/run/spamass-milter/postfix/sock inet:localhost:7357 inet:localhost:8891 Log files for the duration of the send (which takes about 20 seconds): May 24 09:42:19 tendo postfix/smtpd[17069]: connect from Akane.private.<redacted>[10.10.10.186] May 24 09:42:19 tendo postfix/smtpd[17069]: Anonymous TLS connection established from akane.private.<redacted>[10.10.10.186]: TLSv1 with cipher DHE-RSA-CAMELLI A256-SHA (256/256 bits) May 24 09:42:19 tendo postfix/smtpd[17069]: 3F00B42CAE: client=Akane.private.<redacted>[10.10.10.186], sasl_method=PLAIN, sasl_username=rrauenza May 24 09:42:19 tendo postfix/cleanup[17231]: 3F00B42CAE: message-id=<519F9867.3060504@<redacted>> ==> /var/log/clamd.milter <== Fri May 24 09:42:20 2013 -> Received POLLIN|POLLHUP on fd 4 Fri May 24 09:42:20 2013 -> Got new connection, FD 9 Fri May 24 09:42:20 2013 -> Received POLLIN|POLLHUP on fd 5 Fri May 24 09:42:20 2013 -> fds_poll_recv: timeout after 5 seconds Fri May 24 09:42:20 2013 -> Received POLLIN|POLLHUP on fd 9 Fri May 24 09:42:20 2013 -> got command FILDES (7, 11), argument: Fri May 24 09:42:20 2013 -> RECVTH: mode -> MODE_WAITANCILL Fri May 24 09:42:20 2013 -> Moved partial command: 8 Fri May 24 09:42:20 2013 -> fds_poll_recv: timeout after 5 seconds Fri May 24 09:42:26 2013 -> Client read timed out Fri May 24 09:42:26 2013 -> mode -> MODE_COMMAND Fri May 24 09:42:26 2013 -> Shutting down socket after error (FD 9) Fri May 24 09:42:26 2013 -> Number of file descriptors polled: 1 fds Fri May 24 09:42:26 2013 -> fds_poll_recv: timeout after 600 seconds ==> /var/log/clamav-milter.log <== Fri May 24 09:42:35 2013 -> ERROR: clamfi_eom: FD send failed: Broken pipe Fri May 24 09:42:35 2013 -> ERROR: FD send failed ==> /var/log/maillog <== May 24 09:42:35 tendo postfix/cleanup[17231]: 3F00B42CAE: milter-reject: END-OF-MESSAGE from Akane.private.<redacted>[10.10.10.186]: 4.7.1 Service unavailable - try again later; from=<rich@<redacted>> to=<rich@<redacted>> proto=ESMTP helo=<[10.10.10.186]> _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
