-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Sunday 2008-01-27 at 08:43 +0800, Joe Morris wrote:
On 01/27/2008 04:03 AM, Carlos E. R. wrote:
I'll give clamav a try, but I have to find a way to disable "antivir": I do not want both running. I'll check the config.
Check the clamd entry in amavisd.conf. All you would need to do is comment out the entry for antivir for it not to be used.
I had to do way more. First, comment out the section for antivir in amavis: ### Avira AntiVir (formerly H+BEDV) or (old) CentralCommand Vexira Antivirus #Cer # ['Avira AntiVir', ['antivir','vexira'], # '--allfiles -noboot -nombr -rs -s -z {}', [0], qr/ALERT:|VIRUS:/, # qr/(?x)^\s* (?: ALERT: \s* (?: \[ | [^']* ' ) | # (?i) VIRUS:\ .*?\ virus\ '?) ( [^\]\s']+ )/ ], # # NOTE: if you only have a demo version, remove -z and add 214, as in: # # '--allfiles -noboot -nombr -rs -s {}', [0,214], qr/ALERT:|VIRUS:/, Activating/disabling an scanner should be way easier than editing code. It is fine for programmers and techies, but not for users (and I'm the techie kind) :-/ After installing clamav and started its daemon, amavis only detected clamav as secondary scanner and as program, not daemon. I had to un-comment clamd section: # ### http://www.clamav.net/ # Cer ['ClamAV-clamd', \&ask_daemon, ["CONTSCAN {}\n", "/var/run/clamav/clamd"], qr/\bOK$/, qr/\bFOUND$/, qr/^.*?: (?!Infected Archive)(.*) FOUND$/ ], # # NOTE: run clamd under the same user as amavisd, or run it under its own # # uid such as clamav, add user clamav to the amavis group, and then add # # AllowSupplementaryGroups to clamd.conf; # # NOTE: match socket name (LocalSocket) in clamav.conf to the socket name in # # this entry; when running chrooted one may prefer socket "$MYHOME/clamd". But amavis failed to use it, because the socket was wrong. I had to edit "/etc/clamd.conf": # Path to a local socket file the daemon will listen on. # Default: disabled (must be specified by a user) #LocalSocket /var/lib/clamav/clamd-socket #Cer LocalSocket /var/run/clamav/clamd And still clamd would fail because of no write permissions to the socket and because the directory does not exist. I had to create /var/run/clamav/ and chown it to vscan, and then, only then, it worked. Quite a nuisance, they are not integrated. Another nuisance was that "rcamavis restart" failed to restart the service: apparently there was an amavis daemon running, but the PID file did not match, so it wasn't killed. I had to kill it manually, meaning that perhaps amavis was failing previously with no warning. - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFHnH8RtTMYHG2NR9URAo5IAJwOgX9z5CpXCW9GC4jUDJi/6VCHlwCfeTpw 8yfY9Fn5w/nK4Y5FtQmNK28= =y3dT -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org