Hi, Thank you for sharing your experience. In my case I have around 500 machines (and growing) and I cannot allow them to directly download updates. Everything was working well, until yesterday. A proxy like Squid or similar is not an option. The truth is I need this working using my own mirror.
Thank you Jorge El jue, 16 mar 2023 a las 1:43, Paul Kosinski via clamav-users (< clamav-users@lists.clamav.net>) escribió: > A few years ago, when I was attempting local mirroring, I was having a > recurring problem with my local Cloudflare "anycast" server ("BOS"). I > wonder if you might be having a similar problem. > > I was running a crontab triggered procedure a few times an hour which > would do a DNS TXT query to see what the latest versions of everything > were, and then download the CVDs if necessary. These new versions were then > put in the local mirror. I did this frequent querying -- perhaps followed > by downloading -- because AV providers occasionally issue "emergency" > releases of new signatures. > > I found that very frequently the BOS Cloudflare server was many hours > behind the other Cloudflare servers, and didn't have the latest signature > CVD. This made the attempted download futile. (Actually, I would download > the first N bytes of the CVD file to see if it was indeed the version the > DNS TXT query reported -- before downloading the whole file. This is how I > discovered the Cloudflare's BOS server was often not up to date.) > > I gave up on the local mirror approach when somebody pointed out that I > didn't have enough local ClamAV instances to actually save bandwidth > compared to having each instance just use the normal direct approach > separately. (I don't think that local mirroring supported CDIFFs at the > time.) > > Now, of course, the CVDs are much bigger, and, unlike then, one has to be > very careful not to download too much too often, lest one get blocked. (I > was careful even back then, and never did silly things like downloading > identical copies of an unchanged CVD 10^N times per day.) > > > > > On Wed, 15 Mar 2023 19:22:09 +0000 > newcomer01 via clamav-users <clamav-users@lists.clamav.net> wrote: > > > Hi, > > > > I have a similar problem, i found out, that it might be problems with > the ip, but i have no further details. > > I got the same error if i set "--local-address=" for freshclam, as > result of this, i have removed this option from my freshclam call again and > let clamav do what he want to do. > > > > > > kind greetings > > Marc > > > > Von / From: Clamav User Mailinglist <mailto: > clamav-users@lists.clamav.net> > > An / To: Newcomer01 <mailto:newcome...@posteo.de> > > CC / CC: Jorge Elissalde <mailto:elissalde....@gmail.com> > > Gesendet / Sent: Mittwoch, März 15, 2023 um 19:29 (at 07:29 PM) +0100 > > Betreff / Subject: [clamav-users] The database server doesn't have the > latest patch > > > Hi, > > > > > > I'm using my own mirror for Database update. > > > Configuration in Freshclam correctly points to my server: > > > > > > DatabaseMirror http://myserver.info/clamav > > > > > > The Database Server is a Linux, running cvd command from a crontab: > > > > > > cvd update > > > 2023-03-15 18:20:10 cvdupdate-1.1.1 INFO Using system configured > nameservers > > > 2023-03-15 18:20:10 cvdupdate-1.1.1 INFO main.cvd is up-to-date. > Version: 62 > > > 2023-03-15 18:20:10 cvdupdate-1.1.1 INFO daily.cvd is up-to-date. > Version: 26842 > > > 2023-03-15 18:20:10 cvdupdate-1.1.1 INFO bytecode.cvd is up-to-date. > Version: 334 > > > > > > But for some reason, Freshclam gives an error today: > > > > > > ClamAV update process started at Wed Mar 15 15:21:07 2023 > > > daily.cld database is up-to-date (version: 26842, sigs: 2025908, > f-level: 90, builder: raynman) > > > main.cvd database is up-to-date (version: 62, sigs: 6647427, f-level: > 90, builder: sigmgr) > > > bytecode database available for update (local version: 333, remote > version: 334) > > > Current database is 1 version behind. > > > Downloading database patch # 334... > > > Time: 1.3s, ETA: 0.0s [========================>] 801B/801B > > > ERROR: downloadPatch: Can't apply patch > > > The database server doesn't have the latest patch for the bytecode > database (version 334). The server will likely have updated if you check > again in a few hours. > > > > > > > > > > > > I have updated Linux server with cvd update several times, but nothing > happens. > > > If I change the mirror directive to get files from database.clamav.net > <http://database.clamav.net> everything works fine. > > > > > > I'm using Clamav 1.0.1: > > > > > > freshclam --version > > > ClamAV 1.0.1/26842/Wed Mar 15 04:22:42 2023 > > > > > > > > > What could be happening to my own mirror? > > > Thank you in advance, > > > > > > Jorge > _______________________________________________ > > Manage your clamav-users mailing list subscription / unsubscribe: > https://lists.clamav.net/mailman/listinfo/clamav-users > > > Help us build a comprehensive ClamAV guide: > https://github.com/Cisco-Talos/clamav-documentation > > https://docs.clamav.net/#mailing-lists-and-chat >
_______________________________________________ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/Cisco-Talos/clamav-documentation https://docs.clamav.net/#mailing-lists-and-chat