Re: [Clamav-users] clamAV for RH9
On Monday 24 Jan 2005 07:35, jijo wrote: > I would like to use clamav as my virus scanner in Redhat 9 > Which version I can use ClamAV 0.81 or 0.71 0.80 or 0.81 which is in beta now and should (I hope) be out by the end of this week. > jijos -- Nigel Horne. Arranger, Composer, Typesetter. NJH Music, Barnsley, UK. ICQ#20252325 [EMAIL PROTECTED] http://www.bandsman.co.uk ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Amazon gift certs being blocked..
On Sun, 23 Jan 2005 23:22:00 -0800 in [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: > >Congratulations on blocking Amazon gift certs. If you discover what > >is doing it please forward it so we can all enjoy the success. > > perhaps you don't have customers; perhaps you're just running clamav > on your own personal mailserver. perhaps you have some strange > aversion to people emailing you gift certificates. whatever. the > question was how to stop the blocking, not how to block them. Indeed it was, but knowing what causes the block means that people can make use of this knowledge to engender any response they desire. -- Brian Morrison bdm at fenrir dot org dot uk GnuPG key ID DE32E5C5 - http://wwwkeys.uk.pgp.net/pgpnet/wwwkeys.html ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
[Clamav-users] zlib check newest clamav 0.81.rc1
Hi, why is Clamav checking my zlib version and stopping the installer (./configure) ? I mean...I use a patched zlib version straight from my Distro..and am not using the newest bleeding edge zlib version (which is being checked in the ./configure script?) I would like to test the newest Clamav.0.81 rc1 but am not able to test it 'cause of this fake failed dependency. How can I disable this check and let Clamav use my patched Zlib version ? FYI: OS: CentOS zlib:zlib-1.2.1.2-1 Thanks for your help. -- Michiel ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] zlib check newest clamav 0.81.rc1
Michiel van Es wrote: > Hi, > why is Clamav checking my zlib version and stopping the installer > (./configure) ? I mean...I use a patched zlib version straight from my > Distro..and am not using the newest bleeding edge zlib > version (which is being checked in the ./configure script?) I > would like to test the newest Clamav.0.81 rc1 but am not able > to test it 'cause of this fake failed dependency. > How can I disable this check and let Clamav use my patched > Zlib version ? > > FYI: > OS: CentOS > zlib:zlib-1.2.1.2-1 > > > Thanks for your help. This is one of my long term gripes with RedHat (and its clones). The backporting of security fixes to older versions of software may be fine, but it is a nightmare when you're trying to remember which version is vulnerable or not. In this case, the simplest thing to do is to search for zlib over at rpmfind.net, grab zlib-1.2.2.2-1.src.rpm from the Fedora Core Development Sources and rebuild it (rpm -ba zlib-1.2.2.2-a.src.rpm) and install the binary. Worked for me on Fedora Core 1. Cheers, Phil Phil Randal Network Engineer Herefordshire Council Hereford, UK ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] zlib check newest clamav 0.81.rc1
Randal, Phil wrote: Michiel van Es wrote: Hi, why is Clamav checking my zlib version and stopping the installer (./configure) ? I mean...I use a patched zlib version straight from my Distro..and am not using the newest bleeding edge zlib version (which is being checked in the ./configure script?) I would like to test the newest Clamav.0.81 rc1 but am not able to test it 'cause of this fake failed dependency. How can I disable this check and let Clamav use my patched Zlib version ? FYI: OS: CentOS zlib:zlib-1.2.1.2-1 Thanks for your help. This is one of my long term gripes with RedHat (and its clones). The backporting of security fixes to older versions of software may be fine, but it is a nightmare when you're trying to remember which version is vulnerable or not. In this case, the simplest thing to do is to search for zlib over at rpmfind.net, grab zlib-1.2.2.2-1.src.rpm from the Fedora Core Development Sources and rebuild it (rpm -ba zlib-1.2.2.2-a.src.rpm) and install the binary. Worked for me on Fedora Core 1. Cheers, Phil But I do not want to use sources ..I do not want to check every package I install from source when a security exploit comes out and I have to recompile everything again. That's why I rather choose for the rpm's from distro (easy update scheme). Is there no way I can hold/use my own zlib version and just compile clamav? And why is it adressed now with this specific version and not the 0.80 ? Michiel ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] ClamAV Install
> As both show, you've got an old version manually installed in /usr/bin. Remove this manually installed version and correct any scripts that start freshclam/clamav. Not sure how that got there - thanks for the help ! ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
[Clamav-users] "Directory recursion limit exceeded" error in clamd.log file (clamav version 0.80)
Please forgive me if I somehow missed the answer to this question. I did thoroughly search all of the mail archives (including gmane, gossamer, etc) and though some of the tools have somewhat decent search criteria available, I was unable to find a solution. I was hoping not to have to post anything. I am running Mandrake 10.1 with all mdk updates applied as of this message. I am running clamav 0.80 with the latest virus database updates. The RPM is release 5.1.101mdk, to be exact. Problem: When I run clamdscan (which uses the daemon), it generates zillions of errors in the clamd.log file something like "Directory recursion limit exceeded at /home/hal/.tvtime". However, when I run clamscan (which does not use the daemon, right?), it does not generate these errors as far as I can tell. I am using the default recursion of 20 levels, so I think I should be ok. Searching through the mail archives, I found some similar errors that were corrected in later releases of clamav, per the mailing list responses. These were back in 2003; I did not see any more recent message posts. (In fact, I only found 5 matches for the exact error message.) Again, I apologize to all if I somehow missed a message addressing this issue. A sidenote: The clamdscan program disregards many clamscan options because it uses the daemon. The "-r" option is needed for clamscan or it does not scan subdirectories. However, clamdscan seems to automatically trigger recursion when calling the daemon to do its work. This seems asymetrical to me, but perhaps you can educate me why it is this way. Thank you, Hal PS How rude of me! I forgot to say: Excellent software set. I like the idea of being able to protect my Linux boxes from destruction. ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
[Clamav-users] Installing
Hai I am going to install clamAV 0.80-2 on Redhat 9 using the RPM package . Is it necessary to create a user and group Named clamAV ?? I want to knw ClamAV 0.80-2 will work on Redhat 9 by directly installing ClamAV 0.80 thanking you ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] zlib check newest clamav 0.81.rc1
On Mon, 2005-01-24 at 10:29 +0100, Michiel van Es wrote: > Hi, > why is Clamav checking my zlib version and stopping the installer > (./configure) ? > I mean...I use a patched zlib version straight from my Distro..and am > not using the newest bleeding edge zlib version (which is being checked > in the ./configure script?) > I would like to test the newest Clamav.0.81 rc1 but am not able to test > it 'cause of this fake failed dependency. > How can I disable this check and let Clamav use my patched Zlib version ? > There's a configure option for it, read the help message. -trog signature.asc Description: This is a digitally signed message part ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] zlib check newest clamav 0.81.rc1
Michiel van Es wrote:
[..]
But I do not want to use sources ..I do not want to check every
package I install from source when a security exploit comes out and I
have to recompile everything again.
That's why I rather choose for the rpm's from distro (easy update
scheme).
Is there no way I can hold/use my own zlib version and just compile
clamav?
Michiel,
I doubt you will compile clamav-0.81rc1 on your system easy, cause
RH-7.x clones come with old auto{make,conf} programs.
You must upgrade devel tools to compile clamav and modify sources
to compile with vendor patched zlib.
Petr
___
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
[Clamav-users] building CVD Files
hello i have virus file , i build signature with sigtools now how can i add it to CVD files regard ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] building CVD Files
* hamid touzandejani <[EMAIL PROTECTED]> [20050124 14:01]: wrote: > hello > i have virus file , i build signature with sigtools > now how can i add it to CVD files You can put that signature into a file called local.ndb in the same directory as your *.cvd files. I think there is a concept of "local" signatures and that is how it's implemented. This is off the top of my head so I may have misled you! Please dig deeper. -Wash http://www.netmeister.org/news/learn2quote.html -- +==+ |\ _,,,---,,_ | Odhiambo Washington<[EMAIL PROTECTED]> Zzz /,`.-'`'-. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +==+ "I'm fed up to the ears with old men dreaming up wars for young men to die in." -- George McGovern ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Problem with clamd hanging
Trog <[EMAIL PROTECTED]> > Date: Fri, 21 Jan 2005 16:27:51 GMT > Subject: Re: [Clamav-users] Problem with clamd hanging > >--===1591423761== >Content-Type: multipart/signed; micalg=pgp-sha1; >protocol="application/pgp-signature"; >boundary="=-kxvkl7u/uvATrEmpmLSY" > > >--=-kxvkl7u/uvATrEmpmLSY >Content-Type: text/plain >Content-Transfer-Encoding: quoted-printable > >On Fri, 2005-01-21 at 17:24 +0100, Frederic Goudal wrote: > >>=20 >> I'm using 1.2.1 I'll try 1.2.2 monday, than the 0.81 if it does not work. >>=20 > >I would definitely do that. 1.2.1 has a known crashing bug. > It was not crashing. But I did switch to 1.2.2 and it does not solve the problem. It hanged after 2 hours. Btw it seems that it occurs on specific mails, as it seems to hang 2 or three time in a row, than works for 2 hours or more... I'll try to compile the 0.81rc1 f.g. ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Problem with clamd hanging
- Original Message - From: <[EMAIL PROTECTED]> To: "ClamAV users ML" Sent: Monday, January 24, 2005 1:13 PM Subject: Re: [Clamav-users] Problem with clamd hanging > > Trog <[EMAIL PROTECTED]> > > Date: Fri, 21 Jan 2005 16:27:51 GMT > > Subject: Re: [Clamav-users] Problem with clamd hanging > > > > >--===1591423761== > >Content-Type: multipart/signed; micalg=pgp-sha1; > >protocol="application/pgp-signature"; > >boundary="=-kxvkl7u/uvATrEmpmLSY" > > > > > >--=-kxvkl7u/uvATrEmpmLSY > >Content-Type: text/plain > >Content-Transfer-Encoding: quoted-printable > > > >On Fri, 2005-01-21 at 17:24 +0100, Frederic Goudal wrote: > > > >>=20 > >> I'm using 1.2.1 I'll try 1.2.2 monday, than the 0.81 if it does not work. > >>=20 > > > >I would definitely do that. 1.2.1 has a known crashing bug. > > > > It was not crashing. But I did switch to 1.2.2 and it does not solve the problem. > It hanged after 2 hours. > > Btw it seems that it occurs on specific mails, as it seems to hang 2 or three time in a row, than works for 2 hours or more... > > I'll try to compile the 0.81rc1 > > f.g. > We also have a problem with clamd "stalling", and then qmail rejects all incoming mail. WE are using an old version of zlib (zlib-1.1.4-8.7x). This activity seems random, and we haven't been able to reproduce this. I have browsed the list archieve and seen numerous people with the same problem but it seems there is no "concrete" answer to fix this. Hopefully someone can get to the bottom of this one :) sb > > > ___ > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > > ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] ClamAV Install
> As both show, you've got an old version manually installed in > /usr/bin. Remove this manually installed version and correct > any scripts that start freshclam/clamav. Thanks for all the help on this - I unmerged clamav and manually deleted the copy in /usr/local/bin Then did a "find / -name freshclam" - Nothing was found. I emerged clamav again and now only a single instance can be found at "/usr/bin/freshclam" Freshclam --version shows "ClamAV 0.80/507/Mon Sep 27 10:53:21 2004 However running freshclam shows : ClamAV update process started at Mon Jan 24 11:40:36 2005 Reading CVD header (main.cvd): OK main.cvd is up to date (version: 29, sigs: 29086, f-level: 3, builder: tomek) WARNING: Your ClamAV installation is OUTDATED - please update immediately! WARNING: Current functionality level = 2, required = 3 Reading CVD header (daily.cvd): OK daily.cvd is up to date (version: 680, sigs: 681, f-level: 3, builder: ccordes) WARNING: Your ClamAV installation is OUTDATED - please update immediately! WARNING: Current functionality level = 2, required = 3 Should I be concerned about this - do I still need to zap something or do something to resolve this error ? I have looked @ clamav.net but it just tells me to update to the latest stable - which I am running right ? Confused - if anyone can help further I would appreciate it. Thanks ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] "Directory recursion limit exceeded" error in clamd.log file (clamav version 0.80)
On Mon, 24 Jan 2005 at 3:04:22 -0700, Hal Goldfarb wrote: > [...] > I am running Mandrake 10.1 with all mdk updates applied as of this message. > I > am running clamav 0.80 with the latest virus database updates. The RPM is > release 5.1.101mdk, to be exact. > > Problem: When I run clamdscan (which uses the daemon), it generates zillions > of errors in the clamd.log file something like "Directory recursion limit > exceeded at /home/hal/.tvtime". However, when I run clamscan (which does not > use the daemon, right?), Right. > it does not generate these errors as far as I can tell. > I am using the default recursion of 20 levels, so I think I should be ok. To be precise: according to clamd.conf the default is 15: MaxDirectoryRecursion NUMBER Maximal depth directories are scanned at. Default: 15 How many levels of subdirectories have you got under /home/hal/.tvtime ? Or maybe there is some archive file with many subdirectories? [...] > A sidenote: The clamdscan program disregards many clamscan options because > it > uses the daemon. Sure. Exactly because of that reason, there are only few options for clamdscan (see 'clamdscan -h' for the supported ones). > The "-r" option is needed for clamscan or it does not scan > subdirectories. This is intended. > However, clamdscan seems to automatically trigger recursion > when calling the daemon to do its work. This seems asymetrical to me, but > perhaps you can educate me why it is this way. As clamdscan is only an interface to clamd, the way it works depends on clamd.conf. To be sure what settings are used for clamd, you have to check the contents of clamd.conf. Moreover: make sure there are _no_ other - forgotten clamav related files in the system because one may be using them instead of these one is thinking is using. Check also the clamd.log file (the fragment after "Started at") for settings used by clamd. > Thank you, > Hal > > PS How rude of me! I forgot to say: Excellent software set. I like the > idea of being able to protect my Linux boxes from destruction. Thanks :-) . -- Tomasz Papszun SysAdm @ TP S.A. Lodz, Poland | And it's only [EMAIL PROTECTED] http://www.lodz.tpsa.pl/iso/ | ones and zeros. [EMAIL PROTECTED] http://www.ClamAV.net/ A GPL virus scanner ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Problem with clamd hanging
[EMAIL PROTECTED] wrote: It was not crashing. But I did switch to 1.2.2 and it does not solve the problem. It hanged after 2 hours. Btw it seems that it occurs on specific mails, as it seems to hang 2 or three time in a row, than works for 2 hours or more... I'll try to compile the 0.81rc1 I tested 0.81rc1 with zlib 1.2.2.2 on linux and clamd stops respond after several hours/days to clients (clamav-milter, clamdscan) requests. There must be STREAM related problem, I think. Petr ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] ClamAV Install
Mal Herring wrote: As both show, you've got an old version manually installed in /usr/bin. Remove this manually installed version and correct any scripts that start freshclam/clamav. Thanks for all the help on this - I unmerged clamav and manually deleted the copy in /usr/local/bin Then did a "find / -name freshclam" - Nothing was found. I emerged clamav again and now only a single instance can be found at "/usr/bin/freshclam" Freshclam --version shows "ClamAV 0.80/507/Mon Sep 27 10:53:21 2004 However running freshclam shows : ClamAV update process started at Mon Jan 24 11:40:36 2005 Reading CVD header (main.cvd): OK main.cvd is up to date (version: 29, sigs: 29086, f-level: 3, builder: tomek) WARNING: Your ClamAV installation is OUTDATED - please update immediately! WARNING: Current functionality level = 2, required = 3 Reading CVD header (daily.cvd): OK daily.cvd is up to date (version: 680, sigs: 681, f-level: 3, builder: ccordes) WARNING: Your ClamAV installation is OUTDATED - please update immediately! WARNING: Current functionality level = 2, required = 3 Should I be concerned about this - do I still need to zap something or do something to resolve this error ? I have looked @ clamav.net but it just tells me to update to the latest stable - which I am running right ? Confused - if anyone can help further I would appreciate it. You also need to remove the old library files that were installed with the older version of ClamAV before you do a 'fresh' install. This is why your freshclam shows that it is outdated. I had the same problem and it took me several install and un-installs before I figured it out. I had initially just installed the new version without first un-installing the old. I'll never do that again :) hth -- Craig Daters ([EMAIL PROTECTED]) Systems Administrator West Press Print Communications 1663 West Grant Road Tucson, Arizona 85705 (520) 624-4939 (520) 624-2715 fax www.westpress.com -- Please note: It is the policy of West Press that all e-mail sent to and from any @westpress.com address may be recorded and monitored. Unless it is West Press related business, please do not send any material of a private, personal, or confidential nature to this or any @westpress.com e-mail address. This message has been scanned for UCE (spam), viruses, and dangerous content, and is believed to be clean. ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Problem with clamd hanging
On Mon, 24 Jan 2005 13:31:16 +0100 Kritof Petr <[EMAIL PROTECTED]> wrote: > I tested 0.81rc1 with zlib 1.2.2.2 on linux and clamd stops respond > after several hours/days to clients (clamav-milter, clamdscan) > requests. There must be STREAM related problem, I think. It's rather a SESSION related bug. See my yesterday's post on a temporary workaround for this problem. -- oo. Tomasz Kojm <[EMAIL PROTECTED]> (\/)\. http://www.ClamAV.net/gpg/tkojm.gpg \..._ 0DCA5A08407D5288279DB43454822DC8985A444B //\ /\ Mon Jan 24 14:58:36 CET 2005 pgpRKtV8g2kPC.pgp Description: PGP signature ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] Amazon gift certs being blocked..
> -Original Message- > From: Natter [mailto:[EMAIL PROTECTED] > Subject: [Clamav-users] Amazon gift certs being blocked.. > > > I can't seem to find out what part of qmailscanner or > Clam is blocking these. I have > debian/qmail/vpopmail/qmailscanner/clam. That error looks like a stock qmail-scanner mime-block error. I don't believe clamav will return a disallowed content message... I'm very distrustful of qmail-scanner's mime blocking, so I've moved on to simscan.. The speed alone is wonderful... :) > I've google'd and google'd and I can't find the answer > to this. Thanks for any help. - Eric > > -- > A problem was found in an Email message sent to you. > > The Virus email scanner intercepted it and stopped the > entire message > before it reached you. No further action is required > on your part. > > This is a normal message and should not be cause for > alarm. Please do not > > contact Support to tell them that you received it. > Thank you. > > > The problem was reported to be: > > Disallowed content found in MIME attachment - > potential virus > > Please contact WisperTel Support with any queries > regarding this policy. > > > The message sent to you had the following envelope: > -- Jason Frisvold Penteledata ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Installing
On Mon, 24 Jan 2005 13:26:44 +0300 in [EMAIL PROTECTED] "jijo" <[EMAIL PROTECTED]> wrote: > I am going to install clamAV 0.80-2 on Redhat 9 using > the RPM package . Is it necessary to create a user and group Named > clamAV ?? > > I want to knw ClamAV 0.80-2 will work on Redhat 9 It does for me, I use Petr Kristof's RPM (built from the src rpm) and since I upgraded the logwatch rpm to 5.x I have used clamav-0.80-4 with success, before that 0.80-1 and 0.80-2 worked fine as well. -- Brian Morrison bdm at fenrir dot org dot uk GnuPG key ID DE32E5C5 - http://wwwkeys.uk.pgp.net/pgpnet/wwwkeys.html ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Problem with clamd hanging
- Original Message - From: "Tomasz Kojm" <[EMAIL PROTECTED]> To: "ClamAV users ML" Sent: Monday, January 24, 2005 3:59 PM Subject: Re: [Clamav-users] Problem with clamd hanging > It's rather a SESSION related bug. See my yesterday's post on a > temporary workaround for this problem. This fix was related to clamav-milter right? We don't use it, don't have the milter package installed at all (built own rpm from source), so should we install the milter package(with the fix) to fix the clamd bug? > ___ > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Problem with clamd hanging
On Mon, 24 Jan 2005 16:24:16 +0200 "Shaun Bugler" <[EMAIL PROTECTED]> wrote: > > It's rather a SESSION related bug. See my yesterday's post on a > > temporary workaround for this problem. > > This fix was related to clamav-milter right? We don't use it, don't > have the milter package > installed at all (built own rpm from source), so should we install the > milter package(with the fix) > to fix the clamd bug? In your case it's rather a zlib problem. Make sure you have installed the new version properly - by default its Makefile only installs the static library. -- oo. Tomasz Kojm <[EMAIL PROTECTED]> (\/)\. http://www.ClamAV.net/gpg/tkojm.gpg \..._ 0DCA5A08407D5288279DB43454822DC8985A444B //\ /\ Mon Jan 24 15:29:43 CET 2005 pgpF0cvIciNHR.pgp Description: PGP signature ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] freshclam .81rc1
On Sun, Jan 23, 2005 at 02:35:03PM +0100, Tomasz Kojm wrote: [...] > /* #define SESSION */ /* > * Keep one command connection open to clamd, otherwise > a new * command connection is created for each new email > */ > > recompile, install, restart, and let us know if it fixes the problem. it just handled the third update since above change without hanging - seems the session thing really did the trick - thankxalot! :-) btw: would this imply that my system is somehow 'wrong', os- or otherwise? -- ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] ClamAV Install
> You also need to remove the old library files that were > installed with the older version of ClamAV before you do a > 'fresh' install. This is why your freshclam shows that it is outdated. > > I had the same problem and it took me several install and > un-installs before I figured it out. I had initially just > installed the new version without first un-installing the > old. I'll never do that again :) Being a little unsure - could you tell me the steps I need to take to remove the libs ? Thanks muchly. ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] ClamAV Install
On Monday 24 Jan 2005 16:49, Mal Herring wrote: > > You also need to remove the old library files that were > > installed with the older version of ClamAV before you do a > > 'fresh' install. This is why your freshclam shows that it is outdated. > > > > I had the same problem and it took me several install and > > un-installs before I figured it out. I had initially just > > installed the new version without first un-installing the > > old. I'll never do that again :) > > Being a little unsure - could you tell me the steps I need to take to > remove the libs ? try locate libclamav. or if you don't have that find / -name libclamav.* likely in /usr/lib or /usr/local/lib > > Thanks muchly. > ___ > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users -- - Bob Hutchinson Midwales dot com - ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] Amazon gift certs being blocked..
--- Jason Frisvold <[EMAIL PROTECTED]> wrote: "That error looks like a stock qmail-scanner mime-block error. I don't believe clamav will return a disallowed content message..." - Ok, I will look towards Qmailscanner. I added amazon.com to the whitelist as another person suggested so hopefully that will solve the problem for the short term. "I'm very distrustful of qmail-scanner's mime blocking, so I've moved on to simscan.. The speed alone is wonderful... :)" - Thanks for the tip, I'll look into simscan. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
RE: [Clamav-users] Amazon gift certs being blocked..
> -Original Message- > From: [EMAIL PROTECTED] > Subject: RE: [Clamav-users] Amazon gift certs being blocked.. > > > --- Jason Frisvold <[EMAIL PROTECTED]> wrote: > > "I'm very distrustful of qmail-scanner's mime > blocking, so I've moved on > to simscan.. The speed alone is wonderful... :)" > - Thanks for the tip, I'll look into simscan. For the record, I don't mean to bash qmail-scanner.. I've used it for years... I just don't like the mime stuff... -- Jason Frisvold Penteledata ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Amazon gift certs being blocked..
[EMAIL PROTECTED] wrote: At 09:32 PM 1/23/2005, you wrote: Natter said: > I can't seem to find out what part of qmailscanner or > Clam is blocking these. I have > debian/qmail/vpopmail/qmailscanner/clam. > > I've google'd and google'd and I can't find the answer > to this. Thanks for any help. - Eric Congratulations on blocking Amazon gift certs. If you discover what is doing it please forward it so we can all enjoy the success. perhaps you don't have customers; perhaps you're just running clamav on your own personal mailserver. perhaps you have some strange aversion to people emailing you gift certificates. whatever. the question was how to stop the blocking, not how to block them. I've received dozens - all faked. I'd love to know how to tell the fakes from the real thing. I've never received the real thing so don't have a basis for whitelisting. And I'm sure as hell not going to give Amazon a free ride. dp ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Amazon gift certs being blocked..
Natter wrote: I can't seem to find out what part of qmailscanner or Clam is blocking these. I have debian/qmail/vpopmail/qmailscanner/clam. I've google'd and google'd and I can't find the answer to this. Thanks for any help. - Eric Try simscan, is much better, cleaner and faster than qmailscanner: http://inter7.com/?page=simscan Omar ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Amazon gift certs being blocked..
- Original Message - From: "Dennis Peterson" <[EMAIL PROTECTED]> To: "ClamAV users ML" Sent: Monday, January 24, 2005 5:39 PM Subject: Re: [Clamav-users] Amazon gift certs being blocked.. I've received dozens - all faked. I'd love to know how to tell the fakes from the real thing. I've never received the real thing so don't have a basis for whitelisting. And I'm sure as hell not going to give Amazon a free ride. What on Earth is the benefit of sending a fake gift certificate? Who sends them? Thomas ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Amazon gift certs being blocked..
--- Dennis Peterson <[EMAIL PROTECTED]> wrote: > [EMAIL PROTECTED] wrote: > > At 09:32 PM 1/23/2005, you wrote: > > > >> Natter said: > >> > I can't seem to find out what part of > qmailscanner or > >> > Clam is blocking these. I have > >> > debian/qmail/vpopmail/qmailscanner/clam. > >> > > >> > I've google'd and google'd and I can't find the > answer > >> > to this. Thanks for any help. - Eric > >> > >> Congratulations on blocking Amazon gift certs. If > you discover what is > >> doing it please forward it so we can all enjoy > the success. > > > > > > perhaps you don't have customers; perhaps you're > just running clamav on > > your own personal mailserver. perhaps you have > some strange aversion to > > people emailing you gift certificates. whatever. > the question was how to > > stop the blocking, not how to block them. > > > I've received dozens - all faked. I'd love to know > how to tell the fakes from > the real thing. I've never received the real thing > so don't have a basis for > whitelisting. And I'm sure as hell not going to give > Amazon a free ride. Amazon supports the "sender-id/spf" sender authentication thingy. So, if you're using the sid-milter, you would be able to tell if the message is indeed from Amazon. N. __ Do you Yahoo!? All your favorites on one personal page Try My Yahoo! http://my.yahoo.com ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] Amazon gift certs being blocked..
> Natter wrote: > >>I can't seem to find out what part of qmailscanner or >>Clam is blocking these. I have >>debian/qmail/vpopmail/qmailscanner/clam. >> >>I've google'd and google'd and I can't find the answer >>to this. Thanks for any help. - Eric >> >> > > > Try simscan, is much better, cleaner and faster than qmailscanner: > > http://inter7.com/?page=simscan > > Omar > Be careful with statements like this. Better for you, maybe. Simscan also has significantly less features which indeed make it cleaner and faster, but better, that depends on what you want to do. -Jim ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
