Jan 6 00:44:15 ges clamav-milter[4212]: clamfi_header: X-Priority: 3
Jan 6 00:44:15 ges clamav-milter[4212]: clamfi_header: X-MSMail-Priority:
Normal
Jan 6 00:44:15 ges clamav-milter[4212]: clamfi_header: X-Mailer: Microsoft
Outlook Express 6.00.2462.
Jan 6 00:44:15 ges clamav-milter[4212]:
On Wed, 2004-01-07 at 03:50, Marino, Santiago Maximiliano wrote:
> Jan 6 00:59:43 ges sendmail[15421]: i05Nxha7015421: Milter
> (clamav): error connecting to filter:
> Connection refused by /var/run/clamav.sock
This (^^^) makes it look like clamd died or your
sendmail milter isn't looking for
On Wed, 2004-01-07 at 05:43, Marino, Santiago Maximiliano wrote:
> Yes, the clamd died when:
...
> but why??
>
> sendmail 8.12.10
>
> clamav 0.60
I think you answered your own question. Please upgrade to at least
ClamAV 0.65.
Cheers,
Mike
---
On Wed, 2004-01-07 at 05:53, Marino, Santiago Maximiliano wrote:
> ok, but with clamAV 0.60 (died) the sendmail service run anyway, with
> ClamAV0.65 when clamd die the smtp service die too...
Have you tried one of the latest CVS snapshots?
> Do you think about this?
I'm going to assume you're a
> I tested using http://www.testvirus.org/
> The very first virus ("Eicar virus sent using base64 encoding") was NOT
> caught :((
I tried it and got this e-mail:
"A message sent from <[EMAIL PROTECTED]> to
<[EMAIL PROTECTED]>
contained a virus and has not been delivered.
stream:
Hi,
I found in the manpage docs some commands to send to clamd like PING.
Question is now, HOW ?
Directly to the port or throu the socket ( in which case the how is a how^2
:) ).
We discovered 2 typical crash situations with clamd and build a detection
script
which restarts clamd wenn needed..
On Wednesday 07 Jan 2004 12:02 pm, Power-Netz \(Schwarz\) wrote:
> Hi,
>
> I found in the manpage docs some commands to send to clamd like PING.
> Question is now, HOW ?
You don't say which operating system you're using. Let's assume it's Linux since
most people here use that system.
You should h
> You should have a program called nc, you can use that thus:
>
> [EMAIL PROTECTED] njh]$ echo PING | nc 192.168.1.9 3310
> PONG
> [EMAIL PROTECTED] njh]$
>
looks like it's configured to use unix sockets only...
unix 2 [ ACC ] STREAM H™RT 19872360 11751/clamd
/tmp/clamd
uni
On Wed, 2004-01-07 at 07:02, Power-Netz (Schwarz) wrote:
> I found in the manpage docs some commands to send to clamd like PING.
> Question is now, HOW ?
I hacked out a little perl script to connect to clamd via LocalSocket
(unix socket) and put it here:
http://mikecathey.com/postfix-cyrus-amavis
On Wed, 7 Jan 2004 11:46:03 -, Nigel Horne <[EMAIL PROTECTED]> wrote:
I tested using http://www.testvirus.org/
The very first virus ("Eicar virus sent using base64 encoding") was NOT
caught :((
I tried it and got this e-mail:
"A message sent from <[EMAIL PROTECTED]> to
<[EMAIL PROTECTED]>
co
> This could be hacked into a nagios/netsaint plugin quite easily.
can snmp access local unix sockets from external? and what would it do?
I think its not a good solution if you need to restart it anyway :)
max. 1 minute later clamd would be restartet anyway ( we run our cronscript
*/1 ).
Your
Hi,
I'm testing clam-av and some viruses are getting tro.
This is a header of mail when i sent a mail from
"http://www.testvirus.org/";
-
Return-Path: <[EMAIL PROTECTED]>
Delivered-To:
On Wed, 2004-01-07 at 08:57, Power-Netz (Schwarz) wrote:
> > This could be hacked into a nagios/netsaint plugin quite easily.
>
> can snmp access local unix sockets from external? and what would it do?
I was thinking in terms of people that use a tcp socket that was
listening on a public (not loc
, and then built
and installed the devel-20040107 version. Both programs had the same results.
Most virus email was caught. There were three that passed the check on both
versions. They are:
Nbr 4) EICAR virus sent using uuencoding
Nbr 5) EICAR virus sent using BinHex encoding
Nbr 4) EICAR virus
On Wed, 2004-01-07 at 09:12, [EMAIL PROTECTED] wrote:
> The script could also be extended to ask clamav to scan a file that's
> known to be infected and make sure that scanning is actually working.
> I thought about putting the EICAR test signature in the file and then
> changing the PING to a requ
Hi,
i was using a cvs version of clamav on my network since the happen of
the v0.65.
I'm now using this one and I'm very happy with it (I protect a network
which receive 10 000 mails each day).
What are improvement in the cvs relase ? Is it a good choice to use it
instead the stable one in a produ
I saw on another mailing list someone trying out some test viruses through
email that clamav wasnt catching. I've tried the tests myself and out of
about 20 tests, i think 4 were caught by my mailserver running clamav with
the newest virus definitions. Does anyone else have these results? What
c
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Dilip M
> # clamdscan -V ; clamscan -V
> clamscan / ClamAV version 0.65
> clamscan / ClamAV version 0.65
Please update to the latest version in CVS, that may help.
-Nigel
-
> Nbr 5) EICAR virus sent using BinHex encoding
This was also missed on my ClamAV 0.65 running as clamd, however it was
picked up by Amavisd-new for its extension.
(Running ClamAV 0.65, Postfix 2.0.13, Amavisd-new-20030616-p5)
> I do not care about the second section of the test virus web page, s
I am wondering if there exists any descriptions of the viruses found by
ClamAV, similary to McAfee/Symantec/...
Many of my customers would like to find out more about the virus they got
and how they could protect themselves, and that's why I want to give them a
link to the virus in the report (whi
On Wed, 2004-01-07 at 10:59, Power-Netz (Schwarz) wrote:
> Your script code does work, but does not recognize the crashed child :-(
> The parent task seems to life and answere the PING , but the actual
> used child does no longer react. Thx to you will can check the clamd a bit
> better.
Are you u
On Wed, 7 Jan 2004 12:28:33 -0500
"Hanford, Seth" <[EMAIL PROTECTED]> wrote:
> > Nbr 5) EICAR virus sent using BinHex encoding
>
> This was also missed on my ClamAV 0.65 running as clamd, however it was
> picked up by Amavisd-new for its extension.
> (Running ClamAV 0.65, Postfix 2.0.13, Amavisd-
> > > Nbr 5) EICAR virus sent using BinHex encoding
> >
> > This was also missed on my ClamAV 0.65 running as clamd, however it was
> > picked up by Amavisd-new for its extension.
> > (Running ClamAV 0.65, Postfix 2.0.13, Amavisd-new-20030616-p5)
> >
>
> I am using the latest sendmail with clamd an
On Wed, 2004-01-07 at 10:59, Power-Netz (Schwarz) wrote:
> Your script code does work, but does not recognize the crashed child :-(
> The parent task seems to life and answere the PING , but the actual
> used child does no longer react. Thx to you will can check the clamd a bit
> better.
Try this
On 07 Jan 2004 16:50:34 +0100
Cedric Foll <[EMAIL PROTECTED]> wrote:
> Hi,
>
> i was using a cvs version of clamav on my network since the happen of
> the v0.65.
> I'm now using this one and I'm very happy with it (I protect a network
> which receive 10 000 mails each day).
> What are improvement
Hi,
I'm running clamd on two production mail servers, and it seems to lock up
fairly regularly for reasons unknown to me. On one server it only happens
rarely, like every few weeks. But on the other (new) server, it locks up
every few hours, which is obviously unacceptable. Is there any known s
ice a day.
>
> I used the released 0.65 version, which I built on 2003-12-04, and then built
> and installed the devel-20040107 version. Both programs had the same results.
> Most virus email was caught. There were three that passed the check on both
> versions. They are:
>
Last night I had clamav-milter die & refuse to restart. Clamd was running
just fine though.
I finally had to (warm) boot the server to get it going. Very strange!
Never before have I had to reboot a server to be able to startup a service!
At any rate, is there way to make clamav-milter produce
28 matches
Mail list logo
