ClamAV Permissions Issue on 9.2
Running SuSE 9.2; used YaST to update to the latest ClamAV version (.80). Freshclam returns an error: outside:/home/lmstone # freshclam ClamAV update process started at Mon Nov 15 14:25:36 2004 main.cvd is up to date (version: 27, sigs: 23982, f-level: 2, builder: tomek) Downloading daily.cvd [*] daily.cvd updated (version: 588, sigs: 2875, f-level: 3, builder: tkojm) Database updated (26857 signatures) from database.clamav.net (212.14.28.36). ERROR: Clamd was NOT notified: Can't connect to clamd on 127.0.0.1:3310 connect(): Connection refused I stopped and restarted clamavd manually, and it works OK. I can also telnet from a command prompt on the host machine on port 3310 OK: lmstone@outside:~> telnet 127.0.0.1 3310 Trying 127.0.0.1... Connected to 127.0.0.1. So it's not clear to me what this error is all about, if it is benign, or how to fix it if not. Any ideas? Thanks, Mark -- _______________________________________________________ A Message From... L. Mark Stone Reliable Networks of Maine, LLC 477 Congress Street Portland, ME 04101 Tel: (207) 772-5678
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I wrote this down from the last time I had this problem. If you are using amavis, the problem is the clamav.conf file. CLAMAV.CONF FILE [Here is where I messed up initially the following has to be commented out to create a shared socket with amavisd - these are also out of order in the file but are related] Code: # This option allows you to save the process identifier of the listening # daemon (main thread). # PidFile /var/lib/clamav/clamd.pid ... # TCP port address. # TCPSocket 3310 ... [This is the shared socket data which must match and be writable by amavisd (vscan.vscan). /var/lib/clamav] Code: # Path to the local socket. The daemon doesn't change the mode of the # created file (portability reasons). You may want to create it in a directory # which is only accessible for a user running daemon. LocalSocket /var/lib/clamav/clamd-socket ... L. Mark Stone wrote: | Running SuSE 9.2; used YaST to update to the latest ClamAV version (.80). | | Freshclam returns an error: | | outside:/home/lmstone # freshclam | ClamAV update process started at Mon Nov 15 14:25:36 2004 | main.cvd is up to date (version: 27, sigs: 23982, f-level: 2, builder: tomek) | Downloading daily.cvd [*] | daily.cvd updated (version: 588, sigs: 2875, f-level: 3, builder: tkojm) | Database updated (26857 signatures) from database.clamav.net (212.14.28.36). | ERROR: Clamd was NOT notified: Can't connect to clamd on 127.0.0.1:3310 | connect(): Connection refused | | I stopped and restarted clamavd manually, and it works OK. I can also telnet | from a command prompt on the host machine on port 3310 OK: | lmstone@outside:~> telnet 127.0.0.1 3310 | Trying 127.0.0.1... | Connected to 127.0.0.1. | | So it's not clear to me what this error is all about, if it is benign, or how | to fix it if not. Any ideas? | | Thanks, | Mark -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBmQvbhs7JGk93PT0RAsv9AJsHaCINfH2eLFRiz67sapg5yxKZ9ACfbcWP bJ3P+gvylH/LfvcdzNR6VVc= =V1TA -----END PGP SIGNATURE-----
Ann, Thanks, but your suggestions didn't do it for me... SuSE is about to update this package, according to a recent security announcement, so I'll wait and see what happens in the next few days. I'll post my results on this thread. Best regards, Mark On Monday, November 15, 2004 03:04 pm, Ann Hopkins wrote:
I wrote this down from the last time I had this problem. If you are using amavis, the problem is the clamav.conf file.
CLAMAV.CONF FILE
[Here is where I messed up initially the following has to be commented out to create a shared socket with amavisd - these are also out of order in the file but are related]
Code:
# This option allows you to save the process identifier of the listening # daemon (main thread). # PidFile /var/lib/clamav/clamd.pid ... # TCP port address. # TCPSocket 3310 ...
[This is the shared socket data which must match and be writable by amavisd (vscan.vscan). /var/lib/clamav]
Code:
# Path to the local socket. The daemon doesn't change the mode of the # created file (portability reasons). You may want to create it in a directory # which is only accessible for a user running daemon. LocalSocket /var/lib/clamav/clamd-socket ...
L. Mark Stone wrote: | Running SuSE 9.2; used YaST to update to the latest ClamAV version (.80). | | Freshclam returns an error: | | outside:/home/lmstone # freshclam | ClamAV update process started at Mon Nov 15 14:25:36 2004 | main.cvd is up to date (version: 27, sigs: 23982, f-level: 2, builder: | tomek) Downloading daily.cvd [*] | daily.cvd updated (version: 588, sigs: 2875, f-level: 3, builder: tkojm) | Database updated (26857 signatures) from database.clamav.net | (212.14.28.36). ERROR: Clamd was NOT notified: Can't connect to clamd on | 127.0.0.1:3310 connect(): Connection refused | | I stopped and restarted clamavd manually, and it works OK. I can also | telnet from a command prompt on the host machine on port 3310 OK: | lmstone@outside:~> telnet 127.0.0.1 3310 | Trying 127.0.0.1... | Connected to 127.0.0.1. | | So it's not clear to me what this error is all about, if it is benign, or | how to fix it if not. Any ideas? | | Thanks, | Mark
-- _______________________________________________________ A Message From... L. Mark Stone Reliable Networks of Maine, LLC 477 Congress Street Portland, ME 04101 Tel: (207) 772-5678
participants (2)
-
Ann Hopkins -
L. Mark Stone