Your configure line shows you installed to /usr, but ldd shows it loaded
libclamav from /usr/local. I suggest you try removing ClamAV from
/usr/local. BTW if you run clamconf it should about the functionality level
mismatch too.
--Sent from my mobile
On Aug 23, 2010 5:46 PM, "Jean Jacques Siebrit
Your debug shows that the bytecode selftest failed in JIT mode (with llvm)
The selftest runs always, so it shouldn't matter what db you load, or what
file you scan.Please open bug. Also it should timeout after 1m.
-- sent from mobile, sorry if it gets top posted
On Aug 18, 2010 5:41 PM, "George R
On Mon, Apr 13, 2009 at 19:26, Jay Deiman wrote:
> Jay Deiman wrote:
>> Török Edwin wrote:
[snip]
>>> Also there is some info here on how to trace leaks on FreeBSD:
>>> http://keramida.wordpress.com/2008/10/15/extracting-useful-info-from-freebsd-malloc-tracing/
>>> Unfortunately that trace only gi
On Thu, Mar 20, 2008 at 5:44 AM, Walter Bürger
<[EMAIL PROTECTED]> wrote:
> Hi,
>
> clamav-0.93rc1.tar.gz compiles successfully on
> OpenBSD 4.2 GENERIC.MP#0 i386
> (4x Dual-Core AMD Opteron 8218 2.62 GHz)
>
> but then, after starting clamd, it does nothing.
> It just sits there and does nothi
On Jan 11, 2008 9:46 AM, Jean Jacques Siebrits <[EMAIL PROTECTED]> wrote:
>
> Hey everyone
>
> I got another error when configuring ClamAV on FC4. During configuration I
> get this:
>
> checking for a supported version of gcc... ok (4.0.2)checking for gcc bug
> PR27603... ok, bug not presentchec
On 10/24/07, P T <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I have a requirement to virus check anything on windows before it is
> installed.
>
> When I virus scan clamav-0.91.2.tar.gz with Norton anti virus 8.0.0 I get a
> virus alert.
>
> Name:
> phishcheck.c
>
> Detected as:
> Exploit-URLsPOOF.gen
On 10/16/07, Sean McGlynn <[EMAIL PROTECTED]> wrote:
> Just to be certain (It's not my first day with Linux, but I'm still
> relatively new to it), you mean NFS as in Network File System, as in mounting
> a remote file system on the Linux server, correct? If correct, then no, NFS
> is not invol
On 9/28/07, Jeff Thurston <[EMAIL PROTECTED]> wrote:
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:clamav-users-
> > [EMAIL PROTECTED] On Behalf Of Chris Adams
> > Sent: Friday, September 28, 2007 11:48 AM
> > To: 'ClamAV users ML'
> > Subject: Re: [Clamav-users] clamd stuck at
On 9/24/07, Christopher X. Candreva <[EMAIL PROTECTED]> wrote:
> On Mon, 24 Sep 2007, [EMAIL PROTECTED] wrote:
>
> > after a while I get this:
> >
> > /sys/devices/pci:00/:00:06.0/config: OK
> > /sys/devices/pci:00/:00:06.0/:17:00.0/host1/sfp: OK
> > /sys/devices/pci:00/
On 9/19/07, Jan-Pieter Cornet <[EMAIL PROTECTED]> wrote:
> the heuristic detection causes lots of false positives: in only a
> few samples I detected legitimate paypal mails (and I know it's
> legit because it's DomainKeys signed),
please submit them as false-positives at http://www.clamav.org/sen
On 9/19/07, Roberto Ullfig <[EMAIL PROTECTED]> wrote:
> We restart sendmail/clamd every morning. This morning this restart
> failed on several servers. The startup hung when clamd was trying to
> startup. I deleted everything in /var/lib/clamav (database files) and
> everything started up just fine
On 9/18/07, Dennis Peterson <[EMAIL PROTECTED]> wrote:
>
> Build but don't install clamav. Edit the config.status file to add the
> library references where appropriate (should be obvious). There are just
> a few files that have regex.h included and can be found with
>
Or you can upgrade to latest
On 8/12/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> Sorry for all the replies to myself, but don't know if any of this
> info might be helpful. I thought I'd try to keep 0.91.1 going, and if
> it hosed again, run a dtrace (at least the dtruss script from the
> DTraceToolkit) to see what was
On 7/31/07, Wyle Coyote <[EMAIL PROTECTED]> wrote:
> The phishing engine is still having trouble under
> heavy load, segmentation fault mi_stop.
How do you know it is the phishing engine?
>
> The problem was not fixed in the latest svn as of
> yesterday evening.
Have you opened a bug on the bugz
On 7/25/07, Milich Gregory A (Greg) <[EMAIL PROTECTED]> wrote:
> Ok,
> It wasn't clear to me (from the documentation) if freshclam did anything
> Special to "install" the cvd files. If I can just periodically download
> the cvd files from the clamav site and manually put them in the db
> directory
On 7/25/07, Landry Fekwoua <[EMAIL PROTECTED]> wrote:
> Hi
> This is a sample of the entire messages displayed
>
> " audit(1166776014.817:7): avc: denied { read } for pid=2076 comm="pwd"
> name="supervise" dev=dm-0 ino=1786489 scontext=system_u:system_r:spamd_t:s0
> tcontext=system_u;object_r:usr_
On 7/23/07, Lystopad Oleksandr <[EMAIL PROTECTED]> wrote:
>
> But there no any debug messages in the logs.
It doesn't write to any logs, it outputs to stdout, so you'll need to
run it in the foreground to
see anything.
>
> > > And first server, where I make ``Debug no'' in config about 3 hours
>
On 7/23/07, Lystopad Oleksandr <[EMAIL PROTECTED]> wrote:
> (gdb) info thread
> 3 Thread 0x8057000 (LWP 100087) 0x282c377f in accept () from /lib/libc.so.6
> 2 Thread 0x9fb6100 (LWP 100078) 0x2830f83b in __vfprintf () from
> /lib/libc.so.6
> * 1 Thread 0x9bc3400 (LWP 100099) 0x2830f83b in _
On 7/23/07, Lystopad Oleksandr <[EMAIL PROTECTED]> wrote:
> hi!
>
> I have a problem with latest clamav 0.91.1 on my FreeBSD server
> 6.2-p5.
>
> I run clamav from fresh ports, several times rebuild and reinstall,
> check all configs, and it anyway eat about 95% CPU after 1..1,5
> hours. My mail se
On 7/19/07, Steven <[EMAIL PROTECTED]> wrote:
> I am running many different versions of FreeBSD but I only see this problem on
> 6.0. I have tried it on versions 4.10, 4.11, 5.3, 5.4, 6.1, and 6.2 without
> any problems. I have two boxes running 6.0 and they both exhibit this
> problem.
> One is
On 7/19/07, Trevor Dodds <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I'm also running Solaris 10 I have a similar problem, Clamd (0.91.1)
> runs fine but after exactly 1 hour the socket disappears and clamd needs
> to be restarted, this happens exactly after 1 hour after clamd has
> spawned. CPU load is
On 7/13/07, Jeff Thurston <[EMAIL PROTECTED]> wrote:
> I've looked in the documentation briefly and not found the answer so I
> figured I would ask.
>
> I was running 0.88.4 on Ubuntu 6.06.1 with Amavis-new.
> Before upgrading, I was getting a log entry for every infection found.
>
> Now, with vers
On 7/15/07, Robert Blayzor <[EMAIL PROTECTED]> wrote:
> Tomasz Kojm wrote:
> >> there is a Segementation Fault with clamscan 0.91 (Solaris 10
> >> on sparc, compiled with gcc 4.11). It seems to occur sometimes
> >> when a virus is found. I have two files to verify this
> >> (Sorry, I cannot send th
On 7/13/07, Robert Schetterer <[EMAIL PROTECTED]> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi @ll
>
> can someone explain this virus type
>
> Phishing.Heuristics.Email.SpoofedDomain
PhishingScanURLs BOOL
Scan URLs found in mails for phishing attempts using
he
On 7/12/07, Ugo Bellavance <[EMAIL PROTECTED]> wrote:
> Hi,
>
> Very weird problem here...
>
> [EMAIL PROTECTED] bin]# freshclam
> ClamAV update process started at Thu Jul 12 10:17:16 2007
> WARNING: Your ClamAV installation is OUTDATED!
> WARNING: Local version: 0.90.2 Recommended version:
On 7/4/07, BG Mahesh <[EMAIL PROTECTED]> wrote:
> I heard there is a flag --no-phishing-scan-urls and if I switch this off it
> will be fine.
> Is that the cause of my problem? If so, how do I specify in the conf file
> not to scan urls for phishing.
that option is for Phishing.Email.*, or Phishin
On 7/3/07, Ronald Cole <[EMAIL PROTECTED]> wrote:
> I've poked and prodded an rpm specfile to put all the directories and files
> where system-config-selinux says it expects them to be... and it mostly
> works without complaint.
>
> However, selinux is still complaining about clamd trying to read()
On 6/26/07, edward francisco <[EMAIL PROTECTED]> wrote:
> Hi,
>
>
> Im posting the error I recieved during make. Please advise how to correct
> this.
>
> thanks/Edward
>
>
>
> /usr/bin/ld: cannot find -lcom_err
Are you building from sources yourself? Using some build script?
Configure doesn't co
On 6/22/07, タフ テカネ」 <[EMAIL PROTECTED]> wrote:
> hi.. my mail serveris clamv 0.90.2 and qmail-scanner 2.01
> before i used 0.88.7 and 1.25.
> problem is server load is high(20~30 i saw uptime)
What are your clamd.conf settings? Your hardware? How many incoming
emails/second?
Maybe your server j
On 6/17/07, Thomas Spuhler <[EMAIL PROTECTED]> wrote:
> I posted on another list as well, but thought this may gets more attention
> from the developers:
> Clamscan is extremely slow and CPU hungry. clamscan a pdf file of about 1.2 MB
> and it takes about 1 minute.
Use clamdscan instead of clamsca
On 6/13/07, Cheng Guangyao <[EMAIL PROTECTED]> wrote:
> yes,i didn't know how to del the redundancy one :(
> but i didn't find ClamAV for opensolaris X86,i want to install a anti-virus
> on opensolaris X86.
Try searching for an _x86_ solaris package.
If you don't find any, you can download the so
On 6/13/07, Cheng Guangyao <[EMAIL PROTECTED]> wrote:
> Can I install the ClamAV for Solaris 10 SPARC 64-bit package to OpenSolaris
> X86?
> Today,I install the OpenSolaris,and want to install the ClamAV on it.
> I download "ClamAV-s10-0.91rc1.bz2 - Solaris 10 package " to / ,in globel
> Zone,ins
On 6/13/07, Lukas Pataki <[EMAIL PROTECTED]> wrote:
> Hello
>
> I`ve even uptdated to clamav 0.90.3 and wondering why to reload the Database
> took so long => about 44sec.
> The older Version (0.88.3) on the same Hardware (kern:2.4 i686 Intel Xeon cpu)
> with the same load etc.. took only 4-5 sec t
On 6/4/07, Fajar A. Nugraha <[EMAIL PROTECTED]> wrote:
> # ls -sR1 /var/clamav.bad
> 9145 main.cvd
>0 main.inc
You have both a main.inc, and a main.cvd. Thus those signatures are
loaded twice.
This problem has been discussed on this list a while ago, look in the archives.
--Edwin
On 5/29/07, zck570 <[EMAIL PROTECTED]> wrote:
> who can tell me the flags in daily.wdb ? in phishsigs_howto.pdf only explains
> the "R" and "H" flags,but i saw the new daily.wdb ,
> it has "M" and "X" flags,what mean is it ?
R and H are for .pdb, M and X are for .wdb. I didn't update the documen
On 4/13/07, Rob Mangiafico <[EMAIL PROTECTED]> wrote:
> On Fri, 13 Apr 2007, Török Edvin wrote:
> > On 4/13/07, Rob Mangiafico <[EMAIL PROTECTED]> wrote:
> > > On Fri, 9 Mar 2007, Rob Mangiafico wrote:
> > > > On Fri, 9 Mar 2007, Nigel Horne wrote:
>
On 4/13/07, Rob Mangiafico <[EMAIL PROTECTED]> wrote:
> On Fri, 9 Mar 2007, Rob Mangiafico wrote:
> > On Fri, 9 Mar 2007, Nigel Horne wrote:
> > > >>> When compiling the latest clamav 0.90.1 on an older RH server (gcc
> > > >>> version
> > > >>> 2.91.66), I received the following error:
> > > >>>
On 4/9/07, Brian Morrison <[EMAIL PROTECTED]> wrote:
> On Thu, 5 Apr 2007 19:56:44 +0100
> Brian Morrison <[EMAIL PROTECTED]> wrote:
>
> > Since updating to 0.9x I have noticed that from time to time after a
> > cdiff update via freshclam, clamd reports a much smaller value for the
> > number of si
On 3/30/07, Shanmuga sundaram Krishnasamy <[EMAIL PROTECTED]> wrote:
Hi,
Could any one let me know why I should be getting
No anti-spam code loaded, skipping spam_scan
I've Postfix on Debian with amavis+clamav+spamassassin.
Hint: spam_scan is not related to clamav, you might want to check
On 3/19/07, Dennis Peterson <[EMAIL PROTECTED]> wrote:
And I notice that the cpu usage approaches 90% for nearly 60 seconds -
Does it behave the same when you start clamd?
ramping up to max in about 10 seconds, holding for about 30 seconds,
then backing down. It's reading the databases, of co
On 3/24/07, Obantec Support <[EMAIL PROTECTED]> wrote:
Hi
just built 0.90.1 and did ldconfig -v
on start of clamd
fails,log shows
+++ Started at Sat Mar 24 12:39:36 2007
clamd daemon 0.90.1 (OS: linux-gnu, ARCH: i386, CPU: i686)
Log file size limited to 2097152 bytes.
Reading databases from /va
On 3/23/07, Luinetti, Charlie (US - Hermitage) <[EMAIL PROTECTED]> wrote:
I emailed to report the issue through the site and received the attached
email indicating that AIX was no longer supported. The clamav product is
not available on either site that is linked in the email.
Does anyone know w
On 3/16/07, Robert <[EMAIL PROTECTED]> wrote:
On 16 Mar 2007, at 17:20, Zbigniew Szalbot wrote:
> Hello,
>
>> Do you mean it rejects it or tempfails it? A tempfail is a legitimate
>> condition when your processes are in a failed state. So too is
>> reject, but
>> certainly more drastic and like
On 3/16/07, Jens Strohschnitter <[EMAIL PROTECTED]> wrote:
Hi
I have upgraded my 0.88.7 installations (round about 120 servers)
to the new 0.90.1. A proofscript tests always one time per day,
if main.cvd exists.
So on 40 servers the main.cvd does not exist. For that the file
is in main.inc/main.
On 3/16/07, Dana Kashubeck <[EMAIL PROTECTED]> wrote:
On 3/15/07 7:04 PM, John Rudd wrote:
> Dana Kashubeck wrote:
>> I am not able to compile the latest stable version on Mac OS X Server
>> 10.3. There are a few different warnings here and there, most of them
>> are shown while compiling unrar.
On 3/15/07, Christian Kuehn <[EMAIL PROTECTED]> wrote:
Hi,
ClamAV 0.90.1 on Solaris 10/i86 (Generic_118855-19)
We found several entries like this:
Thu Mar 15 04:59:45 2007 -> Client disconnected
Thu Mar 15 04:59:50 2007 -> Client disconnected
Thu Mar 15 05:00:00 2007 -> Client disconnected
Thu
On 3/15/07, Alex Moore <[EMAIL PROTECTED]> wrote:
On Mon, 12 Mar 2007 15:01:06 +0200 (SAST)
"[EMAIL PROTECTED]" <[EMAIL PROTECTED]> wrote:
> I am experiencing the same problems.
>
> We have two quad CPU E450's running Solaris 9 handling the incomming
> mail on our domains. These servers are gene
On 3/15/07, jean-paul natola <[EMAIL PROTECTED]> wrote:
>On 3/15/07, jean-paul natola <[EMAIL PROTECTED]> wrote:
>
>>is this the entry you are referring to?
>># Initialize supplementary group access (clamd must be started by root).
>># Default: no
>>AllowSupplementaryGroups yes
>
>Yes
Still cra
On 3/15/07, Rob MacGregor <[EMAIL PROTECTED]> wrote:
I've had problems where clamd was crashing at the database reload
(check your clamd log). I've tried a fresh install of 0.90.1 and it's
still crashing.
Open a bugzilla entry, and attach clamd.log/freshclam.log (preferably
with timestamps),
On 3/11/07, Gerard Seibert <[EMAIL PROTECTED]> wrote:
On Sat, 10 Mar 2007 20:20:37 -0800
[...]
Personally, I think you are being slightly naive if you actually
believe that everyone is going to be running an AV scanner on their
outgoing traffic.
Why are we having this discussion on the usefulne
On 3/10/07, Marc Haber <[EMAIL PROTECTED]> wrote:
Hi,
Is there any possibility to pack up a daily.inc into a "local"
daily.cvd file which can be verified with sigtool?
No.
Or are we better off with just distributing main.cvd in conjunction
with the entire daily.inc directory?
There can b
On 3/9/07, Rob Mangiafico <[EMAIL PROTECTED]> wrote:
Hi,
When compiling the latest clamav 0.90.1 on an older RH server (gcc version
2.91.66), I received the following error:
---
./configure --sysconfdir=/etc --disable-zlib-vcheck
make
mbox.c: In function `getURL':
mbox.c:4379: `in_port_t' u
On 3/7/07, Abdul Rehman Gani <[EMAIL PROTECTED]> wrote:
On 06 Mar 2007, at 4:55 PM, Scott Oertel wrote:
>
> Just installed the 0.90_3 port, same problem, except it took a
> little bit less time for the IO to get real high, for some reason
> clam just can't keep up. I guess I'll wait until the n
On 3/7/07, Don Drake <[EMAIL PROTECTED]> wrote:
I'm running 0.90.1 and started to get a bunch of these messages when
scanning PDF's (usually inside a zip file).
I have unzipped the .zip files containing the PDF's, and tried scanning
those manually and I get the same error. I use clamdscan (with
On 2/28/07, David Fröhlich <[EMAIL PROTECTED]> wrote:
Hi all,
But unfortunately clamd crashed about five seconds after starting it. I
tried both, using sockets and tcp communication.
What did you do in those 5 seconds? Did you scan a file with clamdscan?
If you have more details please open a
On 2/25/07, Simon Péter <[EMAIL PROTECTED]> wrote:
Hi,
> Do you have any suggestion?
Some debugging suggestions:
How does you clamd.conf look like?
Does clamd have permission to read amavis-new's temp dirs?
Next, test clamdscan on clamav's test files, or an eicar file.
Next try these:
- clam
On 2/15/07, Jason Frisvold <[EMAIL PROTECTED]> wrote:
Hi all,
I could use some debug tips. I have clamav installed on CentOS 4.0
along side qmail, spamassassin, simscan and some other software. I've
been running 0.88.7 since it's release with no problems. In fact,
I've been running Clamav sin
On 2/15/07, Dennis Peterson <[EMAIL PROTECTED]> wrote:
*bump*
Dennis Peterson wrote:
> What is the current significance of the daily.inc directory?
After a scripted update (.cdiff), you will get a daily.inc instead of daily.cvd.
> It is
> present in my rc3 environment but not in 0.90.
It s
On 2/2/07, Stephen Gran <[EMAIL PROTECTED]> wrote:
On Fri, Feb 02, 2007 at 12:58:18PM +0100, Didi Rieder said:
What breaks? I agree that at first glance it seems like an unnecessary
include, but I'm curious what error you get.
FYI this has already been fixed in CVS, thanks for the patch [its t
On 2/1/07, Dennis Peterson <[EMAIL PROTECTED]> wrote:
It built to completion when I left out --enable-experimental. It
definitely does not like that.
Thanks - haven't analyzed the problem yet, but am using the exact
environment and configure options as used to build RC2, and it builds
fine -
On 1/27/07, Jean-Marc Pigeon <[EMAIL PROTECTED]> wrote:
Bonjour a Tous,
I would like to know if more data has been collected on that
subject.
Regarding the test of the OP:
I made a test on x86_64, and clamav thought it detected an html file
inside the random file, a 500M+ html
On 1/5/07, heze54 <[EMAIL PROTECTED]> wrote:
No ubuntu edgy repositories
Ubuntu edgy has 0.88.4, and feisty has 0.88.7, see:
http://packages.ubuntu.com/cgi-bin/search_packages.pl?searchon=names&version=all&exact=1&keywords=clamav
Best regards,
Edwin
On 11/26/06, Dennis Peterson <[EMAIL PROTECTED]> wrote:
Root isn't feeding files to clamd - it is feeding paths to files to
clamd. At least that is what happens here.
To have root feed files to clamd, try:
$ cat | clamdscan -
You'll need the clamdscan from 0.90rc2, (or cvs) for fd-passing t
On 10/26/06, fchan <[EMAIL PROTECTED]> wrote:
Hello,
I'm noticed on several system I manage at this moment that the
daily.cvd is 2107 but one of them is daily.cvd is 2108. So I did an
freshclam -v --no-dns on the systems with 2107 and it showed:
Current working dir is /var/lib/clamav
Max retrie
On 10/17/06, Stephen Gran <[EMAIL PROTECTED]> wrote:
On Tue, Oct 17, 2006 at 08:39:40AM +1300, Steve Holdoway said:
With
curl 7.15.5 (i486-pc-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8c zlib/1.2.3
libidn/0.6.5
I can download the url you supplied just fine. Either there is a bug in
curl or in how
On 10/13/06, clamav <[EMAIL PROTECTED]> wrote:
Hi,
Hi,
How can I test/check my clamd to see
if it is running multi threaded.
Start clamd (/etc/init.d/clamav-daemon start). Start top in another
console, select user clamav (u clamav), and turn on show threads (H).
Run 2 (or more) clamdscans in
On 10/6/06, Robert Allerstorfer <[EMAIL PROTECTED]> wrote:
On Wed, 4 Oct 2006, 10:59 GMT+03 Török Edvin wrote:
> For now the only change is: The two-field form, is valid only for type
> 'H', and means:
> match the host part of realURL, i.e. displayedURL can be an
On 10/4/06, zen <[EMAIL PROTECTED]> wrote:
Dear users,
i`ve just updated my clamav installation to the latest tarball,
but after this, my clamd service periodicly shutdown with this error
messages:
Wed Oct 4 15:47:07 2006 -> No stats for Database check - forcing reload
Wed Oct 4 15:47:07 2006
On 10/3/06, Robert Allerstorfer <[EMAIL PROTECTED]> wrote:
Hi,
Reading phishsigs_howto.pdf from the latest snapshot tarball, it says
that each line must consist of *three* fields, in the form
Flags RealURL DisplayedURL
Is there an updated documentation where the two-fields form will be
explai
Hi,
A new phishing detection algo written by me as a part of the Google Summer of
Code program is available in the cvs version of clamav.
Documentation on daily.pdb/daily.wdb, is available in docs/phishsigs_howto.pdf
Algorithm docs are at: http://wiki.clamav.net/index.php/phishing_design.
The p
70 matches
Mail list logo