ntly it appears clamav stops it's scanning and
my box eventually grinds to a halt, I guess as the fanotify queue
continues to build
Any other suggestions on how to run the two together?
Regards
Rob
___
clamav-users mailing list
clamav-users@l
/better solution; it just works for me.
--
Rob
___
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
You also installed the accompanying development OpenSSL package?
--
Rob
-Original Message-
From: clamav-users [mailto:clamav-users-boun...@lists.clamav.net] On Behalf Of
bondo vine
Sent: Friday, 20 May 2016 13:18
To: clamav-users@lists.clamav.net
Subject: [clamav-users] checking for
Well, I feel dumb now... not sure why I didn't try that before.
Thanx Mickey!
Rob.
On 05/04/2016 06:00 PM, Mickey Sola wrote:
Hi Rob,
Just tested this, and it seems setting both "StructuredSSNFormatNormal" and
"StructuredSSNFormatStripped" to "no" in clamd
Hello!
We are getting some false positive results with
Heuristics.Structured.SSN. Is there a way to disable the SSN check,
but keep the CreditCard check?
For now I have just increased the SSN count to 1000 to get around this.
Setting it to 0 did not disable it :(
Rob
On 04/01/2016 11:40 AM, Bowie Bailey wrote:
On 4/1/2016 11:16 AM, Rob McKennon wrote:
On 04/01/2016 11:01 AM, Vladislav Kurz wrote:
On Friday 01 of April 2016 Rob McKennon wrote:
Hello,
One of the reasons we use clamav is to not accept emails with
credit
card numbers. And it works
On 04/01/2016 11:01 AM, Vladislav Kurz wrote:
On Friday 01 of April 2016 Rob McKennon wrote:
Hello,
One of the reasons we use clamav is to not accept emails with credit
card numbers. And it works great to bounce the message back to the
sender. However, according to PCI, sending the
sending it to us in the first place.
Is there a way to tell clamav to send the bounce message with the
"INFECTED: Heuristics.Structured.CreditCardNumber" data, but NOT include
the original email?
Thank you,
Rob McKennon
___
Help
So there *is* a clamav user in /etc/passwd, which has /var/lib/clamav as home
directory. It is probably configured by apt-get. I don't know where clamd.conf5
comes from: the file is usually called clamd.conf.
Install from source or from apt-get, not both, so remove either one. If you
remove the
me and was meant for you to use.
- If still can't find such username, create it.
- If such username does exist, modify your freshclam.conf and/or clamd.conf to
use this username.
- chown the directory and set permissions accordingly.
This is basic *nix stuff, not really ClamAV related..
--
Rob
You skipped my first step: "make sure the directory exists". This means: if it
doesn't exist, create it and set the owner/group to the user clamav runs as and
permissions accordingly. When you've done that, run freshclam again.
--
Rob
-Original Message
- Make sure directory /usr/local/share/clamav exists.
- Start freshclam to update your virus definition databases.
--
Rob
-Original Message-
From: clamav-users [mailto:clamav-users-boun...@lists.clamav.net] On Behalf Of
farbod emami
Sent: Wednesday, 9 March 2016 15:55
To: clamav-users
you give this a try and let me
know how it goes? http://ix.io/8fk
This seems to solve the problem for me; no more compile error.
--
Rob
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/support/ml
On 09/24/2013 03:51 PM, Shawn Webb wrote:
On Mon, Sep 23, 2013 at 5:04 PM, Dennis Peterson wrote:
On 9/23/13 1:59:42PM, Shawn Webb wrote:
Maybe this time I'll actually attach the patch. ;)
I believe the list server discourages attachments.
dp
Did the patch not go through?
No it di
ll then find /usr which contains zlib-1.2.3), then
clamav will compile successfully. Other software compiles and works just
fine when using zlib from /usr/local/zlib.
CentOS 5 zlib = 1.2.3-7 (mine is)
CentOS 6 zlib = 1.2.3-29 (according to the CentOS packages website)
--
Rob
_
've been looking into the clamd.conf file but there is no
option to specify the folders it has to scan.
Which is why clamdscan is used, instead of clamscan.
--
Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
se keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive ClamAV guide: visit http://
On 08/22/2012 08:51 PM, Alain Zidouemba wrote:
> Look for the signature: WIN.Worm.Dorifel
Great, thanks a bunch!
--
Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
e specific virus has been submitted to your
>> Anti Virus database.
>>
>> Any information would be much appreciated.
>>
>> Kind regards,
>> Jeroen
>
>
> I'll take a look this morning, thanks for emailing.
I'd like to know if there'
7;t download daily.cvd from some mirror, it will be
trying other mirrors for that.
--
Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
orge.net/projects/clamav/files/clamav/0.97.5/clamav-0.97.5.tar.gz/download
Direct download link:
http://downloads.sourceforge.net/project/clamav/clamav/0.97.5/clamav-0.97.5.tar.gz?r=http%3A%2F%2Fwww.clamav.net%2Flang%2Fen%2Fdownload%2Fsources%2F&ts=134997&
le.
>
> Finally, we would like to thank all who have trusted ClamAV for
> scanning
> and protecting some of the most valuable data on their networks.
>
> Sincerely,
>
> Tomasz Kojm (twitter: @tkojm)
> Luca Gibelli (twitter: @nervous)
> Albe
use clamdscan instead of clamscan for
scanning (the file(s) in) your email.
--
Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
mmended in the ClamAV documentation in this IRIXS environment.
> Any suggestions as to how run some unit tests that would indicate
> that an infected file would actually be found?
You could use the Eicar test file. It's not a virus and meant to check
if a/your virusscanner is working.
, it's up to ClamAV to tell the MTA what to
do so I guess there's a task for ClamAV too..
--
Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
ase keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive ClamAV guide: vi
, even with an EOL Debian. Simple
as that.
-- Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
uot; I don't mean specifically *you*.
Everytime a posting pops up asking why their ClamAV doesn't work anymore, the
thread gets hijacked by rants like these. This is not helping the OP want way
OT. If you'd just stay in the already polluted threads and post your rants
there, the list
re
manually running a different one.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build
erribly different. All that is required is reasonable effort
to notify and while I'm not a lawyer I'm pretty confident that the
ClamAV's teams efforts would be described as reasonable (based upon
dealings with real lawyers).
--
Please keep list traffic on the list
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive ClamAV guide:
(I saw a post here mentioning that the build even
succeeds on a distro as old as RH7.2.)
> Is there no more support for this Debian Release?
Debian Woody (Debian 3.0) is also pretty old and EOL'ed..
--
Rob
___
Help us build a comprehensiv
> > In the interest of eliminating any further waste of my time or
> > computer resources, I am now instigating a kill filter on this
> > thread.
>
> +1
+1
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.n
Apple had
taken the decisions to:
1) Install ClamAV on xServe
2) Not keep people even vaguely up to date
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster
ool/qscan/tmp directories?
> Is there a way to reinject all of them as new emails?
It sounds like the answer would be specific to QMail, it's probably
best to check it's documentation/lists.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights
k it may be time for an upgrade to your OS - you'll run into
many similar problems with other packages that assume you've got a
vaguely recent set of packages or kernel.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it tha
tecture specific about them.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
He
rver. So can this be fixed or can clamav be turned off
or removed. Any help or suggestions would be greatly appreciated. Thanks, Rob
Jennings. ___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
On Sun, Dec 6, 2009 at 09:41, Mark Gregory wrote:
> Hi Rob,
>
> Thank you for the information.
>
> I should mention that I have clamd running as a service under windows
> server 2003. From my reading and I may be confusing things, I thought I
> had to use clamdscan in this
27;t a full AV product and doesn't include
quarantining. For that you'll want clamscan. Again the man page
tells you what you want, but something like:
clamscan -l=c:\example\log.file.txt --move c:\quarantine\ c:\
--
Please keep list traffic on the list.
Rob MacGregor
That depends on how you installed ClamAV (and possibly on the version)
- did you install it from source? What version did you install? What
OS did you install it on?
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to i
On Mon, Aug 24, 2009 at 18:30, Scott Mohnkern wrote:
> Did the 770, no luck.
df -h /var/clamav
df -i /var/clamav
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a
doesn't work, what
other kernel modules do you have loaded (apparmour etc)?
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster.
t/faq
> ERROR: getfile: Can't create new file
> /var/clamav/clamav-37cffbcbac17f3fecf92527459691294 in /var/clamav
> Hint: The database directory must be writable for UID 441 or GID 204
What do the following show:
ls -lnd /var/clamav
id clamav
--
Please keep li
ntents of the file - the error message does
include the fact that it's also about the contents, not just the file
permissions.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive ClamAV g
world
> readable and executable, as are the files. The clamd user is clamav.
So, the user clamav almost certainly doesn't have access to the file.
Have you considered using clamscan (as a user with access to the
file) instead?
--
Please keep list traffic on the list.
some libs but I am still at a loss as to why the make check is not
> successful. Following is output from the make && make check.
Looks like you don't have the bzip2 headers or libraries installed.
--
Please keep list traffic on the list.
Rob MacGregor
Who
ottom of every list email - you can't do
anything about stupidity I'm afraid.
I'll now go back to watching the thread spiral out of control ;)
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the proces
On Sun, Feb 15, 2009 at 11:45, chen wrote:
>
> clamscan --version
> ClamAV 0.93/6688/Wed Apr 9 16:40:38 2008
Then you haven't removed your old version of ClamAV. How did you install 0.93?
--
Please keep list traffic on the list.
Rob MacGregor
Whoever f
up to you to handle in
any way you chose.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
start the milter - look in /usr/local/etc/rc.d/.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
ignature FOUND
Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
ad when they prepare the
package/port and it is that fingerprint that is checked when you
install.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Fr
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive C
On Wed, Nov 12, 2008 at 13:43, Juergen Dankoweit
<[EMAIL PROTECTED]> wrote:
>
> Yes. The reason is, that FBSD 6 or 7 does not run anymore on my hardware
> (SCSI problems).
Did you report those so that they can be looked into?
--
Please keep list traffic on
uko --disable-ipv6
Is there a good reason you can't upgrade to at least FreeBSD 6, or
even better FreeBSD 7?
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't be
s the MaxScanSize and MaxFileSize will be relevant to you.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
__
Is there an explanation anywhere of how to update the version that's
included with OS X Server (Tiger)?
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
e EOL process
works can be found at http://www.freebsd.org/security/#sup
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help
rade to 6.3 or 7.0 (6.4 and
7.1 are due for release next month), or track RELENG_7 or RELENG_6. I
would advise that 7.x is a better choice as 6.x is the legacy release.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the proces
http://www.clamav.net/support/faq/
http://wiki.clamav.net/Main/FAQ#What_does_WARNING_Current_functi
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a mo
the heck out of (I don't know perl
and I can manage) and "just works".
The MD mailing list is also pretty helpful for those times when you
discover that you're not so much in over your head, but you no longer
know which way "up" is supposed to be ;)
--
Rob MacGregor
lamav-users>,
<mailto:[EMAIL PROTECTED]>
--
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
On Mon, Jun 2, 2008 at 9:18 PM, alex liveti <[EMAIL PROTECTED]> wrote:
> Hi there? is not a viros is just a pape work just to take look at correcy
> and send it bac to
> please just test can i send t.
You may want to read the reply to your post yesterday.
--
Rob MacGregor
mad?
Yes/Maybe. If you were a little more specific it might be possible to
provide an answer.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster.
#x27;t
> install it; we particularly welcome reports on platform compatibility.
Compiles on FreeBSD 6.3 and 7.0.
I was able to give it a quick test on 7.0 and freshclam, clamscan,
clamd and clamdscan all work.
--
Rob MacGregor
Whoever fights monsters shoul
ith new version of
> new clamav?
If nothing else, at some point you'll stop getting signature updates
and will then start letting malware through.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't
planning on blocking other random characters from appearing in the
> recipient adres?
Are you certain that clamav is behind this? What other software are
you using with your mailserver and exactly what is the error message?
--
Please keep list traffic on the list.
Rob MacGregor
Whoever figh
IP address or hostname of server(s) running clamd (when using
TCPsocket and --external). ...
--
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
H
mav.net/cgi-bin/mailman/listinfo/clamav-users>,
<mailto:[EMAIL PROTECTED]>
And the "Visit subscriptions page" button that's found from the URL at
the bottom of every posting:
http://lurker.clamav.net/list/clamav-users.html
;-)
--
Please keep list traffic on the l
I attempted to do, mind you. The answer to the question I did
> not ask was "use clamd". I can use clamd now without this product.
Until today you made no mention of static linking in this thread, if
you had you may have had different answers ;)
--
Please keep list traffic on the lis
er.
gave you the full answer:
Link against libclamav - yes you have to rebuild
Call clamd - no you don't
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
_
nted Applications:
http://www.clamav.org/2007/09/03/detection-of-potentially-unwanted-applications/
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
_
ith GMP4 or not and if so how?
Have you tried installing ClamAV from ports, so that it handles this for you?
--
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Hel
need to use something to provide that integration - as
others have told you.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
__
ssible to clamav problem ? Errors from sendmail logs below:
Version of Sendmail? Version of ClamAV? Operating System? Which
milter are you using? Are there any other log entries?
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to i
body
> know why?
With so little information, nobody will be able to help you. Maybe if
you provided details such as the version of clamav, what OS you're
using, whether there is anything in the log files and other such
information.
--
Please keep list traffic on t
look at OnUpdateExecute in freshclam.conf
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
__
there these differences?
Try asking the person who created the packages.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster.
ulti GB) scans.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive ClamA
ARNING: Unable to determine FPU endianess, some features may
> not be available in this build
<---SNIP--->
> Has anyone an idea to get rid of the configure-Warning message?
Search the list archive - there was a thread about this just the other day.
--
Please keep l
toring the signatures and where
ClamTK is looking for them.
It's also possible that you have a mis-match between the clamd and
freshclam configurations.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it t
t running clamd as root)?
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a compr
x27;re also often very persistent and highly skilled. At
the end of the day there would be real money behind an exploit that
could give any form of remote access to a host running ClamAV.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters shou
ations ;)
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help u
programs will use that instead of /tmp (as mentioned in David's
initial post with this subject) for temporary files.
Using this means that you break assumptions about temporary files
appearing in /tmp, which complicates an attackers life.
--
Please keep list traffic on t
rtition and stick with Windows as that would then be
best for all of us (including you).
> Compliments of the season to all.
Perhaps a bit early, but, merry Christmas to everyone!
Grts,
Rob
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://lurker.clamav.net/list/clamav-users.html
ery product there are vulnerabilities in both.
David's original comment about ClamAV's vulnerability history doesn't
appear too far from the mark, regardless of the obviously high
emotions on either "side".
--
Please keep list traffic on the list.
R
n numbers and how you're calling clamav
from amavis ;)
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
his only occur once the virus
> database contains virus signatures that aren't supported with the older
> binary.
Freshclam will warn you when your installed version is out of date.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights mon
See the last post in the thread titled "ClamAV patch download not
working in South Africa"
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsc
ame and see what other products call it. Somebody else
used to manage a page like this, but I don't know if it's still being
done.
Not perfect I know, but right now I suspect it's the only way.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever f
On 10/23/07, oboltus <[EMAIL PROTECTED]> wrote:
>
> Could You set an example of practical realization with use clamav-milter?
See the documentation/man page/google.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see t
amavisd-new, to name but a few.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
__
n your mail server, which
you make no mention of.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
the time to
search the list archive ;)
Remove the old versions from your system.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
ist traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
___
Help us build a comprehensive ClamAV guide: visit http://w
which is
> not needed in this case. Hence the request ...
No, freshclam will check DNS to see whether an update is required.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
On 9/24/07, McGlynn, Sean (DOB) <[EMAIL PROTECTED]> wrote:
> Rob,
>
> Thank you for your reply.
>
> So to be clear, cron is calling a script (below). I assume even though
> cron is calling a script, rather than the individual commands in the
> script, your same sugges
1 - 100 of 382 matches
Mail list logo
