milter can't find it (and can't create its own run file in a directory it
> doesn't own.
>
> Does this make sense to anyone?
It does, in fact. On RHEL7 (and variants), /var/run is now a symlink to /run,
which is a
tmpfs, so it is always cleared on reboot. For persist
> var/run/
> var/run/clamav/
>
> If just use the clamscan does clamscan need the path /var/run?
I'm guessing the answer to that depends on whether you'd run freshclam as a
daemon or a
cron job.
--
Bryan Burke
IT Administrator
Department of Electrical Engineerin
RROR: Can't open/parse the config file /usr/local/etc/clamd.conf
Where are you installing it from? EPEL has up-to-date clamav packages, but
virtually no
prebuilt packages should look in /usr/local. We've seen this before when clamd
from a
package links against libraries in /usr/local from
.0.X then there is still an issue.
$ host geneslinuxbox.net.multi.uribl.com
Host geneslinuxbox.net.multi.uribl.com not found: 3(NXDOMAIN)
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.
Instead of trying to prune the database, is it possible to, say, only load half
the virus database, then just scan twice (with each half)? If memory is the
limiting factor, then perhaps the extra time/IO necessary is a worthy trade-off.
--
Bryan Burke
EECS IT Staff
University of Tennessee
ild techniques, and would even still
be ok if
they changed their minds again and removed them.
Just a thought.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
_
Or strace the clamd process. Yea, that's probably easier... :)
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
___
Help us build a comprehe
l
logic, which
is not immediately apparent, to check whether or not it can access the socket.
Might be more trouble than it's worth, i.e. to solve the problem, but again,
it's
interesting and might be fun for it's own sake.
--
Bryan Burke
IT Administrator
Department of Electrical E
,
and (2)
not in the owning group/in the group class.
Here's a few words from wikipedia about this:
http://en.wikipedia.org/wiki/Filesystem_permissions#Classes
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee
file is:
MD5: 61d315af9cbc0eaba8c0addeeaa1d1e7
SHA256: 58283c9be24bf91a3d8fec15df926bb322931a037b8b4c917c8e71e71ed6bf57
Thanks. And I don't need to hear back, I was just curious if I would.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tenne
a potential FP, so I'm not sure if I should expect to hear back).
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
___
Help us build a
will it be able to separate out its and clamd's log
messages? If
not, can I enable logging to both Syslog and directly to a file (the latter
being purely
for the purpose of reporting stats)? I can't really switch to logging to a file
only,
though. Thanks in advance.
--
Bryan Bu
ve all the Ubuntu-provided packages, you should look at the output
of
$ ldd /path/to/clamd# Perhaps /usr/local/sbin/clamd
To see which libclamav the binary is linked to. My guess is that there isn't
any kind of
tutorial for from repo-clamav to manual-clamav. Hope that helps.
--
Bryan Bu
avis group may not help. If it's still having a
problem, my
first guess would be that /var/spool/amavisd isn't world-executable?
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
__
uot; in the clamd.conf file. For the
places where
they intereact, you then just need to make sure the amavis directories are
accessible by
the amavis group.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tenne
pending something to the file?
#> su -l clamav -s /bin/bash
clamav> echo "test" >> /var/log/clamav/freshclam.log
Not sure... thinking about this abstractly I can't imagine why it would happen.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Comp
> Does your dig use the host table? Mine does not. Same with nslookup.
> I can't imagine why they would, in fact.
Yea, I had to use "getent hosts db.us.clamav.net" to make sure the /etc/hosts
entry was
working.
--
Bryan Burke
IT Administrator
Department of Electrical Eng
ssue? Of course, I tried to see
the page
and didn't get much, but I'm not all that familiar with HTTP:
> curl -H "Host: db.us.clamav.net" 88.198.67.99
403 Forbidden
Forbidden
You don't have permission to access /
on this server.
ms average). Either way, I really doubt
the "high"
latency of 250ms would cause any sort of issue.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
___
the team
to make a
decision one way or the other concerning this host. Even if removed, it can
always be
re-added when the cause of this issue is tracked down and fixed.
At least concerning this issue, is there anything more to be done?
--
Bryan Burke
IT Administrator
Department of Electri
.103.0.0/16.
Not that it'll be the same everywhere if it's even remotely random, but 1/7
failures isn't
a significant problem for me.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk
try to limit the scope of this thread a little more, so it
stays
focused and relevant. As a side-line user on this list, I feel it had long
since gotten
out-of-hand.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer
really anything more to discuss, except perhaps some more details of
the local
directory answer?
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
_
and apparently
the
dependency needed is glibc-2.7.
I could be wrong, but I think that's the problem. You could try compiling it
yourself,
perhaps. If you need an RPM though, you may just have to look for ones built
for RH5.
--
Bryan Burke
IT Administrator
Department of Electrical Enginee
e, just that, FWIW, it can be done
occasionally
without too much trouble
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
___
Help us build a
t around the risk of faking file times, though.
It doesn't I'm pretty sure. I think all three fields (atime, mtime, and ctime)
are all
changeable by the owner of the file.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and C
), because I don't think
you want to
scan device files, pipes, links, etc.
--
Bryan Burke
IT Administrator
Department of Electrical Engineering and Computer Science
University of Tennessee, Knoxville
bbu...@eecs.utk.edu
(865) 974-4694
___
Hel
27 matches
Mail list logo
