This sounds similar to the issue I observed in 2018 with Cloudflare's
BOS mirror: the DNS TXT record would say version N, but BOS still
delivered version N-1 (while the IAD mirror delivered the correct CVD).
I eventually gave up on having a local mirror for CVDs and just had
each machine on our LAN directly download the CDIFFs. In the case of
our small LAN, it actually saved external bandwidth, but it required a
slightly less secure firewall policy.
On Fri, 31 Jan 2020 14:30:06 +0000
"Micah Snyder \(micasnyd\) via clamav-users"
<clamav-users@lists.clamav.net> wrote:
> Hello!
>
> This issue is a two-parter...
>
> Our Cloudflare CDN ("mirror" infrastructure) seems to be distributing
> stale files for up to a few hours after new versions of daily.cvd are
> uploaded, despite our best efforts to clear the cache. The issue
> doesn't affect incremental / cdiff updates, but for full CVD
> downloads - freshclam freaks out about the version being out-of-sync.
>
> We'll be addressing the issue by making freshclam more lenient when
> the version is off-by-one. This coming soon in patch release
> 0.102.2. For more details, please take a look at
> https://bugzilla.clamav.net/show_bug.cgi?id=12451
>
> Regards,
> Micah
>
> Micah Snyder
> ClamAV Development
> Talos
> Cisco Systems, Inc.
>
>
>
> On 1/31/20, 8:35 AM, "clamav-users on behalf of Thomas Plant via
> clamav-users" <clamav-users-boun...@lists.clamav.net on behalf of
> clamav-users@lists.clamav.net> wrote:
>
> Am 31.01.2020 um 14:14 schrieb Thomas Plant via clamav-users:
> > Hello,
> >
> > kindly asking advice for my problem in the subject.
> >
> > I compiled Clamav 0.102.1 from source on a freshly installed
> > Debian 10 64bit.
> > Just did a "./configure --enable-llvm=yes
> > --with-system-llvm=no", and 'make' and 'make install'.
> > Configured the freshclam.conf and clamd.conf in /usr/local/etc/
> > directory. Clamd starts correctly with the databases from
> > 'clamav-unofficial-sigs' script.
> >
> > But when I try to download the official signatures I get
> > following error from freshclam:
> >
> > Fri Jan 31 14:09:29 2020 -> ClamAV update process started at
> > Fri Jan 31 14:09:29 2020
> > Fri Jan 31 14:09:29 2020 -> daily database available for
> > download (remote version: 25712)
> > Time: 3.2s, ETA; 0.0s [=======================================>]
> > 55.64MiB/55.64MiB
> > Fri Jan 31 14:09:33 2020 -> ^Mirror https://database.clamav.net
> > is not synchronized.
> > Fri Jan 31 14:09:33 2020 -> !Unexpected error when attempting
> > to update database: daily
> > Fri Jan 31 14:09:33 2020 -> ^fc_update_databases:
> > fc_update_database failed: Up-to-date (1)
> > Fri Jan 31 14:09:33 2020 -> !Database update process failed:
> > Up-to-date (1) Fri Jan 31 14:09:33 2020 -> !Update failed.
> >
> > On other servers (Clamav from the distribution, Centos in my
> > case) the updates work normally so I presume it has to do
> > something with my build.
> >
> > Greetings,
> > Thomas
> >
> > _______________________________________________
> >
> > clamav-users mailing list
> > clamav-users@lists.clamav.net
> > https://lists.clamav.net/mailman/listinfo/clamav-users
> >
> >
> > Help us build a comprehensive ClamAV guide:
> > https://github.com/vrtadmin/clamav-faq
> >
> > http://www.clamav.net/contact.html#ml
> Discovered that running freshclam with the '--no-dns' option
> works. Is this a problem with my dns resolver or a freshclam problem?
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
