> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Bill Landry
> Sent: Wednesday, May 20, 2009 8:27 AM
> To: sanesecur...@freelists.org; clamav-users@lists.clamav.net
> Subject: Re: [Clamav-users] Deletion of loc
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Bill Landry
> Sent: Wednesday, May 20, 2009 9:46 AM
> To: ClamAV users ML; sanesecur...@freelists.org
> Subject: Re: [Clamav-users] Deletion of local.ign
>
>
>
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Tomasz Kojm
> Sent: Wednesday, May 20, 2009 12:39 PM
> To: clamav-users@lists.clamav.net
> Subject: Re: [Clamav-users] Deletion of local.ign
>
> the .ign databa
I was unable to get updates for about an hour and a half this morning. Was
this a known issue? Log at pastebin has EDT (UTC-04:00) timestamps.
http://pastebin.com/m3871d92a
Jason A. Bertoch
Network Administrator
ja...@electronet.net
Electronet Broadband Communications
3411 Capital Medical Blvd
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Jari Fredriksson
> Sent: Wednesday, September 23, 2009 9:14 AM
> To: ClamAV Users
> Subject: [Clamav-users] DHL invoices
>
>
> I get lots of 'invoices' from DH
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Marianna Cavone
> Sent: Friday, October 30, 2009 9:09 AM
> To: clamav-users@lists.clamav.net
> Subject: [Clamav-users] problem with Packed.Generic.261 virus
>
>
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Lima Union
> Sent: Monday, December 21, 2009 12:41 PM
> To: ClamAV users ML
> Subject: Re: [Clamav-users] lstat() failed: Permission denied. ERROR
>
>
> You m
make check fails building 0.96 on CentOS 5.4 64-bit using:
./configure --prefix=/usr --sysconfdir=/etc --enable-milter \
--enable-llvm --enable-check --enable-clamdtop
Output of make & make check at pastebin:
http://pastebin.com/qCst5vgY
configure: Summary of detected features follows
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Török Edwin
> Sent: Thursday, April 01, 2010 11:03 AM
>
> Please pastebin the contents of unit_tests/test-suite.log (or run make
> check VERBOSE=1).
>
http://
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Török Edwin
> Sent: Thursday, April 01, 2010 11:25 AM
>
> > ERROR: check version mismatch!
> > Version from header: 0.9.6
> > Version from librar
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Török Edwin
> Sent: Thursday, April 01, 2010 12:08 PM
> >
> > I'm removing both versions, reinstalling only 64-bit, recompiling as we
> > speak, and will report
On 2010/04/16 10:28 AM, Simon Hobson wrote:
So keeping up to date has it's own risks - hence why many people take
the attitude of "if it aint broke, don't fix it".
It's broke...please go fix it.
--
/Jason
smime.p7s
Description: S/MIME Cryptographic Signature
__
On 2010/04/16 11:32 AM, Moretza wrote:
Howdy,
ClamAV has been installed on all our Ensim servers, they're outdated. Since
yesterday /tmp directory is full of clamav folders, each containing files like
this:
# ll -h /tmp/clamav-15831ee031ce5b07/
total 55M
-rw--- 1 root root 18K Apr 16 10
On 2010/04/16 3:56 PM, Giampaolo Tomassoni wrote:
The ClamAV team have commanded old versions of its product to stop working.
Not even Microsoft do this.
I can't tell you how many support calls I've received over the years
with people saying "my Internet stopped working" and it was due to thei
On 2010/04/22 6:23 AM, jef moskot wrote:
Try scanning the same file mimedefang scans.
It cleans up after itself, so I'm not sure exactly what's in the working
directory that causes the trouble.
Try mimedefang's -d switch:
-d The -d switch causes mimedefang not to delete the
On 2010/05/04 12:00 PM, Alan Stern wrote:
I've been getting messages like this:
main.cld is up to date (version: 52, sigs: 704727, f-level: 44, builder:
sven)
Trying host db.local.clamav.net (155.98.64.87)...
I'm not sure where db.local came from...the freshclam docs say:
# Uncomme
On 2010/05/04 12:56 PM, Jason Bertoch wrote:
On 2010/05/04 12:00 PM, Alan Stern wrote:
I've been getting messages like this:
main.cld is up to date (version: 52, sigs: 704727, f-level: 44,
builder: sven)
Trying host db.local.clamav.net (155.98.64.87)...
I'm not sure where db.local
On 2010/05/05 9:30 AM, Paul Whelan wrote:
Yes, as I read http://www.clamav.net/mirrors.html
That's certainly a bit more helpful than the link included in the
freshclam logs: http://www.clamav.net/support/mirror-problem
However, shouldn't freshclam be rotating through the mirrors, especiall
On 2010/05/05 9:58 AM, Török Edwin wrote:
What does 'freshclam --list-mirrors' show?
Maybe freshclam has blacklisted the other mirrors for some reason.
http://pastebin.com/U4u4Ygvg
Only one mirror apeears blacklisted, 64.246.134.219. The problem
mirror, 155.98.64.87, hasn't logged any failu
On 2010/05/05 11:51 AM, Török Edwin wrote:
Try running freshclam with -v (or LogVerbose) to see when mirrors are
blacklisted.
Does it still keep trying the same mirror over and over, and the others
are not blacklisted?
Yes, it continues to try 155.98.64.87 over and over again.
--
/Jason
s
On 2010/05/11 3:03 PM, Shawn Bakhtiar wrote:
I have been trying to get clamav-milter to work on Linux FC 8:
Perhaps you're not waiting long enough for clamd to start before loading
clamav-milter. Your logs show it takes a full 4 seconds for clamd to
start.
I suppose it could also be the mi
On 2010/05/11 8:48 PM, Shawn Bakhtiar wrote:
I don't know what the F= parameter does
F= tells sendmail what to do if the milter fails. I prefer F=T.
F=T means a temporary error, F=R means a permanent error, and no F=
means pass through as if the filter did not exist.
--
/Jason
smime.p
On 2010/07/06 4:55 PM, Bowie Bailey wrote:
In my freshclam.conf file, I have the following line:
OnOutdatedExecute 'mail -s "ClamAV %v available" bow...@buc.com<
/dev/null> /dev/null'
When I execute the mail command as the clamav user, the message comes
through, but I don't think freshclam has
While building 0.96.3, I ran into warnings during make check like the
following:
/usr/bin/ld: skipping incompatible /usr/lib/libpthread.so when searching
for -lpthread
Shouldn't it be looking in /usr/lib64?
Although other warnings occurred during the build, this one concerns me
the most.
I currently use clamav-milter with 3rd party sigs in sendmail and am
writing the list to see how people are handling special accounts like
abuse@ or postmas...@. clamav-milter has the ability to whitelist
e-mail accounts, but it's all or nothing. Obviously, the abuse@ address
will receive s
On 2010/09/29 3:38 PM, Chuck Swiger wrote:
Do you perform egress filtering of all of the mail traffic coming from your domain(s)? If so, then (modulo signature updates), any genuine abuse report about
mail which actually did come from you should be allowed back in.
Yes, I use clam for egress f
On 9/29/2010 6:41 PM, Ted Hatfield wrote:
I configured clamav-milter to accept on infected rather than reject on
infected.
I then created two custom spamassassin rules to score the message.
That's certainly a viable workaround which conserves memory as compared
to running a second clamd, but
On Thursday, February 07, 2008 10:30 AM [EMAIL PROTECTED] wrote:
>
> Thu Feb 7 10:27:47 2008 ->
> /var/spool/MailScanner/incoming/13948/29EC821AC463.28768.message:
> Email.Phishing.RB-2646 FOUND
>
> Is there any way to find out what that phishing item is hitting on?
>
Search for Email.Phishin
On Tuesday, February 12, 2008 10:00 PM Steven Stern wrote:
>
> Clam is reporting that one of my MX servers is a 'virus' source. How
> do I tell it that the mailhop.org server is innocent and that the
> source of the mail is farther up the line?
>
> The infected machine is likely to be here:
> f
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of Luis Miguel R.
> Sent: Monday, March 31, 2008 2:50 PM
> To: clamav-users@lists.clamav.net
> Subject: [Clamav-users] virus database maintainer team overloaded?
>
> Hi, I send a new trojan t
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
> Sent: Wednesday, July 23, 2008 12:47 PM
> To: clamav-users@lists.clamav.net
> Subject: Re: [Clamav-users] No support for digital signatures.
>
> I have clamav 93.3 inst
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of Brandon Perry
> Sent: Tuesday, September 02, 2008 12:06 PM
> To: ClamAV users ML
> Subject: [Clamav-users] ClamAV 0.94 release
>
Configuring on CentOS 5.2 x64 produces the following warni
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of Tomasz Kojm
> Sent: Thursday, September 04, 2008 4:00 AM
> To: clamav-users@lists.clamav.net
> Subject: Re: [Clamav-users] 0.94-exp
>
> The warning should not be displayed when compiled wi
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of Justin Piszcz
> Sent: Thursday, September 11, 2008 7:55 AM
> To: clamav-users@lists.clamav.net
> Subject: [Clamav-users] clamd using 200-300MiB of memory? (normal..or a
> memory leak?)
>
>
While scanning my users' home directories with clamscan, I found a
mailbox that generated an error. I eventually sorted out that the problem
was with a pdf attached to one of the messages. I pulled the pdf out and
scanned with clamscan which produced an error of:
LibClamAV Error:
n Thu, 11 Sep 2008 13:54:00 -0400
> "Jason Bertoch" <[EMAIL PROTECTED]> wrote:
>
> > Should I open a bug report over something as simple as a strange pdf
> > problem?
>
> Yes, please do.
>
Bug 1181 opened and the pdf can be found as an attachment t
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of James Kosin
> Sent: Thursday, September 11, 2008 3:14 PM
> To: ClamAV users ML
> Subject: Re: [Clamav-users] Error scanning specific .pdf file
>
> Well, since nobody has access now to bug
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of Clayton Keller
> Sent: Wednesday, September 17, 2008 10:34 AM
> To: ClamAV users ML
> Subject: Re: [Clamav-users] bzip2 1.0.5 for CentOS
>
> I wanted to ask for those of you using CentOS a
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of Clayton Keller
> Sent: Wednesday, September 17, 2008 10:57 AM
> To: ClamAV users ML
> Subject: Re: [Clamav-users] bzip2 1.0.5 for CentOS
>
>
> Thanks Jason. What version of bzip2 is runni
In configure, I see bzlib warnings that aren't present in 0.94.
(./configure --prefix=/usr --sysconfdir=/etc --enable-milter)
0.94:
checking bzlib.h usability... yes
checking bzlib.h presence... yes
checking for bzlib.h... yes
checking for CVE-2008-1372... ok
0.94.1 RC1:
checking bzlib.h usabilit
Are the following warnings anything to worry about, or is this a libmilter
issue?
clamav-milter.c: In function ‘clamfi_connect’:
clamav-milter.c:2868: warning: passing argument 1 of ‘hosts_ctl’ discards
qualifiers from pointer target type
clamav-milter.c: In function ‘clamfi_eom’:
c
Is Bugzilla search having problems? I'm looking for a bug I filed in
September related to a PDF issue, but searching for PDF returns Zarro Boogs
found. Any suggestions?
Jason A. Bertoch
Network Administrator
[EMAIL PROTECTED]
Electronet Broadband Communications
3411 Capital Medical Blvd.
Tallah
> Use the advanced search tab. Or select 'All' instead of 'Open Bugs'.
>
I suppose I should have mentioned I tried that. Even with all components,
versions, statuses, resolutions, severities, priorities, hardware, and OS's
checked, a search for PDF in summary or comment returns Zarro Boogs.
___
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:clamav-users-
> [EMAIL PROTECTED] On Behalf Of Kurt Fitzner
> Sent: Friday, November 14, 2008 12:12 AM
> To: ClamAV users ML
> Subject: [Clamav-users] Problems with virus submission
>
> I am becoming concerned about the reporting proce
I understand this is harmless, but shouldn't there be some logic in
freshclam to avoid this error?
freshclam[29375]: Your ClamAV installation is OUTDATED!
freshclam[29375]: Local version: 0.94.2 Recommended version: 0.94.1
Jason A. Bertoch
Network Administrator
[EMAIL PROTECTED]
Electronet Bro
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Nathan Brink
> Sent: Sunday, March 01, 2009 4:11 PM
> To: ClamAV users ML
> Subject: Re: [Clamav-users] Two suggestions
>
> > * When running configure, it could
I'm trying to build my clamav-milter conf file prior to installing 0.95 as
0.94.2 must be uninstalled before make check will work for 0.95 (Bug 1491).
If I execute make-clamav-milter-conf.pl, I get the following error:
FAIL: No socket provided at make-clamav-milter-conf.pl
What is the correct s
I use "OnInfected Reject" in my clamav-milter.conf and it seems the new
behavior is to reject with an error of "5.7.1 Command rejected" instead of
the matching signature name. In the event of a false positive, it is
extremely handy to have the signature logged both in the error to the sender
and
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of James Kosin
> Sent: Monday, April 13, 2009 10:09 AM
> To: ClamAV users ML
> Subject: Re: [Clamav-users] clamav-milter 0.95.1 reject message
>
>
> Check the con
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Matt Forbis
> Sent: Thursday, April 30, 2009 9:44 AM
> To: clamav-users@lists.clamav.net
> Subject: [Clamav-users] Scan flow of signature files?
>
>
> The reas
50 matches
Mail list logo
