Re: [clamav-users] strange "Can't create temporary directory ERROR"

> From: David Raynor [mailto:dray...@sourcefire.com] > Sent: 07 November 2012 14:54 > > On Wed, Nov 7, 2012 at 3:20 AM, Philipp Schwaha > wrote: > > > hi everybody! > > > > I recently set up a combination of exim and clamav which was working > > very nicely until clamav seemingly started to chok

Re: [Clamav-users] LibClamAV Error: cli_dbgets: Line too long for provided buffer?

Markus Egg wrote: >I upgraded bzip2 and clamav to 0.96.3, fetched newest updates and >now I am getting a message >"LibClamAV Error: cli_dbgets: Line too long for provided buffer" >when scanning files. We just started getting the same thing from freshclam. We're using CentOS 5.4, with ClamAV 0.

Re: [Clamav-users] SELinux problem with 0.96.2 on CentOS 5.4

Tomasz Kojm wrote: >https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2200 Thanks Tomasz, that solved it. Moray. "To err is human.  To purr, feline" ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/s

[Clamav-users] SELinux problem with 0.96.2 on CentOS 5.4

Trying to upgrade from 0.96.1 to 0.96.2 on CentOS 5.4. Clamd fails to restart after the upgrade, and "service clamd start" from the command line gives "/bin/bash: line 1: 14077 Segmentation fault clamd" Running clamd from the command line works, as does setting SELinux to permissive mode. The S

[Clamav-users] Mobile devices?

Now that mobile telephones have become advanced (stupid?) enough to require virus protection, can ClamAV be usefully run on a mobile? Or can anyone recommend free AV software for mobile devices? Moray. "To err is human.  To purr, feline" ___ Help

Re: [Clamav-users] create signature for ELF

Andre Hübner wrote: >>> So why don't you just submit the sample at clamav.net/sendvirus? > >ok, i did that yesterday but iam afraid this is not the kind of mailware >which will >included in official virus-db. >the other thing is that i already sometimes submitted a virussample but >never got feedba

[Clamav-users] SelfCheck: Database status OK.

Hi List, Having a regular database check is probably a good thing, but SelfCheck: Database status OK. messages every 10 minutes do tend to fill up the log file for no good purpose. How about moving the "status OK" message to the verbose log level? Moray. "To err is human. To purr, feline"

Re: [Clamav-users] Spontaneous failure to read DB dir

>From: Kris Deugau [mailto:kdeu...@vianet.ca] >Seems this was a SELinux issue after all. *nrgh* What's worse, I >discovered a number of other things from the upstream CentOS repos that >*also* seem to have bad SELinux permissions (or more likely, my local >procedures and policies conflict with th

Re: [Clamav-users] Problems with clamdscan : access denied

>From: Rob MacGregor [mailto:rob.macgre...@gmail.com] ><---SNIP---> >> When I invoke clamdscan [filename or folder] I get >> dpatt...@quarantine:~$ clamdscan po.conf >> /home/dpatters/po.conf: Access denied. ERROR >> >> This happens on all directories except /tmp. My directories are world >> reada

Re: [Clamav-users] Why 0.95 doesn't have"contrib/init/RedHat/clamd"?

>From: Dennis Peterson [mailto:denni...@inetnw.com] > >Such scripts are rather easily constructed using a basic template: > > >#!/bin/sh ># set environment variables ># example: > >LD_LIBRARY_PATH="/somewhere/over/the/rainbow:/usr/lib" >ClamdOptions="--this --that --whatever" > ># T

Re: [Clamav-users] test for SafeBrowsing?

>From: Török Edwin [mailto:edwinto...@gmail.com] >>> Try using for the URL. >>> >> Is that a requirement? If so we should get the spammers on board because >some of >> them may not know this :). > >No, there are more places from where URLs can be extracted, but "href" is one that must work. With

Re: [Clamav-users] Virus not detected on Linux/MacOSX

>> > ./clamscan/.libs/clamscan file.exe >> > Linux Wally 2.6.18-53.1.6.el5 #1 SMP Wed Jan 23 11:28:47 EST 2008 >> > x86_64 x86_64 x86_64 GNU/Linux >> > MD5(file.exe)= e7e7dc7981a4089cdcb42d32247dc6e0 >> > ClamAV 0.94/8284/Thu Sep 18 18:54:57 2008 >> > file.exe: OK >> > >> > --- SCAN

Re: [Clamav-users] Starting clamd [FAILED]

>From: Török Edwin [mailto:[EMAIL PROTECTED] >On 2008-07-16 12:58, Gavin Bartle wrote: >> Hi, as far as i know clamd-0.93.3-1.el5.rf.i386.rpm is the latest >> version , and i have that installed. > >Do you have SELinux enabled? >If yes, you'll need to check that the paths configured in its policy i

Re: [Clamav-users] Upgrading form 0.83

>From: Sripati Prasad Padhy [mailto:[EMAIL PROTECTED] >I have removed clam av by rpm -e clamav nodeps >After this If I rum yum clamav..i get nothing, prior to running the rpm >command I was getting some details by running " yum info clamav" > >Now is it safe to update the clamav by rpm -Uvh.Please

Re: [Clamav-users] SELinux blocks meminfo access

>From: T?r?k Edwin <[EMAIL PROTECTED]> >Apparently qsort() reads /proc/meminfo, trying to determine if the >temporary storage needed for sorting can be allocated in physical memory. >If it can't determine how much memory is available it will always assume >there is enough. Hi Edwin, Thanks for th

Re: [Clamav-users] List Archives?

>From: Charles Gregory <[EMAIL PROTECTED]> > >Second question about RPM locations has been answered, thanks. > http://packages.sw.be/clamav/ I notice that the el5 build of 0.93.1 in that repository puts things in /var/clamav: $rpm -qlp clamav-db-0.93.1-1.el5.rf.i386.rpm /etc/cron.daily/fresh

[Clamav-users] SELinux blocks meminfo access

Hi List. Using CentOS 5, when clamd starts as part of the boot sequence, I get an audit log message type=AVC msg=audit(1213094476.199:1203): avc: denied { read } for pid=10661 comm="clamd" name="meminfo" dev=proc ino=-268435454 scontext=system_u:system_r:clamd_t:s0-s0:c0.c1023 tcontext=sys