Since I upgraded to 0.80 I am seeing many false positives for the
Oversized.zip virus, I have posted samples at the ClamAV website but in
the mean time is there a way of removing the signatures for this virus
from my copy of the database?
FAS
___
http
If only I'd waited a bit longer... I now find the answer to my own
question in the FAQ (should have looked first... a case of engaging the
maillist before the brain... sorry). I post the correct answer here in
case anyone else is a stupid as me!!
#
I get many false positives of Oversized.zip
I don't feel so stupid now... I've set ArchiveMaxCompressionRatio to 0
to disable the limit and I still get the "Oversized.zip FOUND" message
with clamscan and clamdscan. With clamscan I can use --max-ratio=0 and
everything is OK but I'm actually using amavisd-new so this isn't an
option. Anyo
So I'm slightly stupid... I now know that clamscan doesn't seem to read
the options in /etc/clamd.conf but clamdscan does (or rather clamd
does), but of course you have to restart clamd after changing a value.
Obviously "must try harder" as they used to say at school.
FAS
Francis Stevens wrote:
On Mon, 25 Oct 2004 at 0:56:57 -0400, Forrest Aldrich wrote:
> I have ClamAV 0.80 (via FreeBSD ports) installed.
>
> I just sent someone a file.tar.gz that had some patches included (along
> with *.orig files). I saw this in the logs:
>
> Oct 25 00:51:26 forrie MailScanner[4303]: ProcessClamAV
Hi there. I just started receiving these messages from freshclam.
freshclam daemon 0.80 (OS: linux-gnu, ARCH: i386, CPU: i386)
ClamAV update process started at Mon Oct 25 13:39:46 2004
WARNING: DNS record is older than 3 hours.
WARNING: Invalid DNS reply.
main.cvd is up to date (version: 27, sigs:
Tarjei Knapstad wrote:
> Hi there. I just started receiving these messages from freshclam.
>
> freshclam daemon 0.80 (OS: linux-gnu, ARCH: i386, CPU: i386)
> ClamAV update process started at Mon Oct 25 13:39:46 2004
> WARNING: DNS record is older than 3 hours.
> WARNING: Invalid DNS reply.
> main
On Oct 24, 2004, at 3:29 PM, Mark Adams wrote:
Matt wrote:
What's the worst that can happen? It fails to compile, and you still
need
to find a packaged version. You'll be no worse off than you are now.
The worst that can happen? I descend once again into dependency hell
and spend hours loosing
On Mon, 2004-10-25 at 08:00 -0400, Bart Silverstrim wrote:
> On Oct 24, 2004, at 3:29 PM, Mark Adams wrote:
> When you only install programs from source, how do you know when
> upgrading them that there aren't remnants of binaries or libraries
> scattered around the OS?
Well designed programs
On Mon, 2004-10-25 at 13:49, Matt wrote:
> Tarjei Knapstad wrote:
>
> Search the archive.
>
Argh, I did... :-S
Can't believe I missed it - sorry.
--
T
___
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
On Mon, 25 Oct 2004, Bart Silverstrim wrote:
> When you only install programs from source, how do you know when upgrading
> them that there aren't remnants of binaries or libraries scattered around the
> OS? I grew up having to use Windows, so please forgive the question; I had
> one too many ins
Daniel J McDonald wrote:
On Mon, 2004-10-25 at 08:00 -0400, Bart Silverstrim wrote:
Well designed programs have a "make uninstall" option. So, you would go
back to the orignial source, run make uninstall, then make install on
the new source.
except 'make uninstall' seems to be deprecated on perl
Bart Silverstrim wrote:
On Oct 24, 2004, at 3:29 PM, Mark Adams wrote:
Matt wrote:
What's the worst that can happen? It fails to compile, and you still
need
to find a packaged version. You'll be no worse off than you are now.
The worst that can happen? I descend once again into dependency hell
Hello all.
I've been using clamav with amavisd-new with success.
The only problem so far is when a file which is gives me "Possibly
broken PE file" when I run 'clamscan --verbose --debug file' but the
file is not marked as "Broken.Executable" as I thought it would be.
In my clamd.conf I have:
On Mon, 25 Oct 2004 10:58:02 -0300
Ricardo Campos Passanezi <[EMAIL PROTECTED]> wrote:
> Is there anything i'm missing?
--detect-broken
--
oo. Tomasz Kojm <[EMAIL PROTECTED]>
(\/)\. http://www.ClamAV.net/gpg/tkojm.gpg
\..._ 0DCA5A08407D5
Bart Silverstrim wrote:
On Oct 24, 2004, at 3:29 PM, Mark Adams wrote:
Matt wrote:
What's the worst that can happen? It fails to compile, and you still
need
to find a packaged version. You'll be no worse off than you are now.
The worst that can happen? I descend once again into dependency hell
Bogusław Brandys wrote:
Tomasz Kojm wrote:
On Thu, 21 Oct 2004 14:28:58 -0500
Dale Bohl <[EMAIL PROTECTED]> wrote:
/home/cheetah/dbohl/proj/hsm/terabyte: OK
/home/cheetah/dbohl/proj/hsm/archiving: OK
/home/cheetah/dbohl/proj/uit/home_links_reasons: OK
LibClamAV Error: Can't create temporary file :
Dale Bohl wrote:
Bogusław Brandys wrote:
Tomasz Kojm wrote:
On Thu, 21 Oct 2004 14:28:58 -0500
Dale Bohl <[EMAIL PROTECTED]> wrote:
/home/cheetah/dbohl/proj/hsm/terabyte: OK
/home/cheetah/dbohl/proj/hsm/archiving: OK
/home/cheetah/dbohl/proj/uit/home_links_reasons: OK
LibClamAV Error: Can't create
Hi,
I had recently upgrade from 0.75.1 to 0.80. The upgrade was sucessfull. But
i keep getting the below errors. I am running on RedHat 9. Has anyone come
across this?
/etc/cron.daily/clamscan:
'/' will now be scanned for viruses with ClamAV clamscan version
Virus Signature Daily Database versio
Hi, I have installed version 0.80 on fedora core 2 and I have used file .rpm.
The installation it's ok and at boot of my machine to start demon 'clamd' and
'freshclam' correctly.
Now for schedule update, default is:
/etc/cron.daily/freshclam
.. therefore the update is to do every day, but if I w
On Mon, 2004-10-25 at 21:10 +0200, Salvatore Basso wrote:
> Now for schedule update, default is:
>
> /etc/cron.daily/freshclam
>
> .. therefore the update is to do every day, but if I want to schedule
> update every hour (and no every day) I must move the file freshcleam
> from directory /etc/cro
On Mon, 25 Oct 2004 21:10:25 +0200 in
[EMAIL PROTECTED] "Salvatore Basso"
<[EMAIL PROTECTED]> wrote:
> Hi, I have installed version 0.80 on fedora core 2 and I have used
> file .rpm. The installation it's ok and at boot of my machine to start
> demon 'clamd' and 'freshclam' correctly. Now for sche
Salvatore Basso wrote:
> Hi, I have installed version 0.80 on fedora core 2 and I have used
file .rpm.
> The installation it's ok and at boot of my machine to start demon
'clamd' and 'freshclam' correctly.
> Now for schedule update, default is:
>
> /etc/cron.daily/freshclam
>
> .. therefore the u
Salvatore Basso wanted us to know:
>/etc/cron.daily/freshclam
>.. therefore the update is to do every day, but if I want to schedule update every
>hour (and no every day) I must move the file freshcleam from directory
>/etc/cron.daily/ to /etc/cron.hourly ??
Yes.
--
Regards... Tod
Todd Lyons wrote:
> >.. therefore the update is to do every day, but if I want to schedule update every
> >hour (and no every day) I must move the file freshcleam from >>directory
> >/etc/cron.daily/ to /etc/cron.hourly ??
>
> Yes.
..now my file is in '/etc/cron.daily/' but why the the update
Salvatore Basso wrote:
> ..why this to happen also if the file 'freshcleam' is in the
> /etc/cron.daily/ and not in /etc/cron.hourly ??
> I add which I excute freshclam how demon (freshclam -d). thanks.
If you run freshclam -d then it only needs to be started ONCE (put it in init.rd, for
example)
Brian Morrison wrote
> No, the Checks parameter in freshclam.conf determines the update
> frequency for the pattern files.
>
> The /etc/cron.daily/freshclam entry is used to clean up/var/lib/clamav
> if any files in there have not been accessed in 72 hours. Except for the
> .cvd files of course,
[EMAIL PROTECTED] wrote:
>If you run freshclam -d then it only needs to be started ONCE (put it in init.rd, for
>example)
>
>If you run freshclam from /etc/cron.something/ then don't use the -d flag.
.. after installed clamav (with file .rpm) I excute:
#freshclam -d
.. and in '/etc/init.d/' the
Salvatore Basso wrote:
> .. and in '/etc/init.d/' there is a file called 'freshclam' (and at
> boot of my machine start freshclam) , now in the my situation the
> file '/etc/cron.daily/freshclam' is not important ? if is this where
> I can modify the update frequency ? in what file ? thanks.
Ple
Dennis Skinner wrote:
> First, don't start a new thread by replying to an existing one and
> changing the subject. You break threading and your email will likely be
> ignored by anyone not reading that thread. Just start a new message.
.. sorry for this but I don't find previous thread when t
[EMAIL PROTECTED] wrote:
> Please post results of:
>cat /etc/init.d/freshclam
# Source function library
. /etc/init.d/functions
# Get network config
. /etc/sysconfig/network
test -f /etc/freshclam.conf || exit 0
RETVAL=0
start() {
echo -n $"Starting freshclam: "
# Start me up!
daemon /usr/bin/
Salvatore Basso wrote:
> [EMAIL PROTECTED] wrote:
>
>> Please post results of:
>> cat /etc/init.d/freshclam
boils down to "run freshclam -d"
>> cat /etc/cron.daily/freshclam
boils down to "remove unused files in /var/lib/clamav/"
>> cat /etc/freshclam.conf
> # Number of database checks per day.
Matthew.van.Eerde wrote:
>>> cat /etc/freshclam.conf
>> # Number of database checks per day.
>> # Default: 12 (every two hours)
>> Checks 24
> OK, so it checks 24 times a day - once every hour
> If you want it to check every 30 minutes, change this to 48
> If you want it to check every two hours, c
Hello,
I am a ClamAV newbie - I just inherited a FreeBSD 4.10 server running
postfix and clamav and am trying to figure out a strange issue.
I have one user who occasionally gets duplicate attachments with his
incoming mail. The only thing consistant about this problem is that the
attachments ar
[EMAIL PROTECTED] wrote:
>Um, because there are 24 hours in a day
.. at least on this we are all agreement :-)
.. ok, now all is clear !! many thanks Matthew and thanks to all for aid !
Salvatore.
---
[This E-mail scanned for viruses by Declude Virus]
___
On Mon, 25 Oct 2004 22:34:33 +0200 in
[EMAIL PROTECTED] "Salvatore Basso"
<[EMAIL PROTECTED]> wrote:
> Brian Morrison wrote
>
> > No, the Checks parameter in freshclam.conf determines the update
> > frequency for the pattern files.
> >
> > The /etc/cron.daily/freshclam entry is used to clean
> >
Paul Porter wrote:
> Hello,
>
> I am a ClamAV newbie - I just inherited a FreeBSD 4.10 server running
> postfix and clamav and am trying to figure out a strange issue.
>
> I have one user who occasionally gets duplicate attachments with his
> incoming mail. The only thing consistant about this
Sorry, I forgot to mention that we are also using SpamAssassin on this
server.
On Mon, 2004-10-25 at 14:45, Matt wrote:
> Paul Porter wrote:
>
> > Hello,
> >
> > I am a ClamAV newbie - I just inherited a FreeBSD 4.10 server running
> > postfix and clamav and am trying to figure out a strange is
Paul Porter wrote:
> Sorry, I forgot to mention that we are also using SpamAssassin on this
> server.
>
And the filtering software is? Eg: Amavis, ClamSMTP, Inflex.
Matt
___
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Amavis. Thanks Matt!
On Mon, 2004-10-25 at 15:49, Matt wrote:
> Paul Porter wrote:
>
> > Sorry, I forgot to mention that we are also using SpamAssassin on this
> > server.
> >
>
>
> And the filtering software is? Eg: Amavis, ClamSMTP, Inflex.
>
>
> Matt
> __
I built a new 4 cpu/1 gig ram qmail/vpopmail/qmailscanner/clamv
mail server. (Four (4) Pentium® III Xeon 700 MHz/ 1 MB Cache)
I put it in last Thursday with it running great, then
yesterday, about 6pm, the cpu usage went to near 100% with about 800
smtp transfers per hour.
This morning about 8am, t
Eric Worthy wrote:
I built a new 4 cpu/1 gig ram qmail/vpopmail/qmailscanner/clamv
mail server. (Four (4) Pentium® III Xeon 700 MHz/ 1 MB Cache)
I put it in last Thursday with it running great, then
yesterday, about 6pm, the cpu usage went to near 100% with about 800
smtp transfers per hour.
This m
* Eric Worthy <[EMAIL PROTECTED]> [20041026 07:02]: wrote:
> I built a new 4 cpu/1 gig ram qmail/vpopmail/qmailscanner/clamv
> mail server. (Four (4) Pentium® III Xeon 700 MHz/ 1 MB Cache)
> I put it in last Thursday with it running great, then
> yesterday, about 6pm, the cpu usage went to near 100
43 matches
Mail list logo
