KavDaemonClient (Was Re: F-Secure 4.50 not supported)
Julian Field
mailscanner at ecs.soton.ac.uk
Wed Apr 30 16:43:40 IST 2003
I just ran "kavdaemon.sh" and it started up something which appeared to be
capable of recognising viruses :-)
At 14:58 30/04/2003, you wrote:
>An, 2003-04-29 20:40, Julian Field wrote:
>
> > Run as
> > cd /root/q
> > AvpDaemonClient .
> > works fine. It doesn't need the full pathname.
> >
> > Here is a chunk of the output from it:
> >
> > >Current object: ./eicars/dfh3MENF6X020229
> > >Test result: 4
> > >Known viruses were detected
>
>AvpDaemonClient from Sample1 directory does not find viruses at all,
>even if I run it with full path:
>
># pwd
>/var/virge/temp
>
># kavscanner -I0 .
>
>+-------------------------------------------------------+
>| Kaspersky Anti-Virus for Linux |
>| Copyright(C) Kaspersky Lab. 1998-2002 |
>| Version 4.0.3.0 |
>...
>Current object: /var/virge/temp/
>/var/virge/temp/a infected: EICAR-Test-File
>...
>
># AvpDaemonClient1 .
>Test result: 0
>No viruses were found
>...
>
># AvpDaemonClient1 /var/virge/temp
>Test result: 0
>No viruses were found
>...
>
># AvpDaemonClient1 /var/virge/temp/a
>Test result: 0
>No viruses were found
>
>
>AvpDaemonClient from Sample directory works, but only with full path:
>
># AvpDaemonClient .
>Test result: 1
>Test result: 0x31, flags: 0x100
>Virus scan was not complete
>Found viruses:
>Return code: 1
>
># AvpDaemonClient /var/virge/temp
>Test result: 4
>Test result: 0x34, flags: 0x100
>Known viruses were detected
>Found viruses: /var/virge/temp/a infected: EICAR-Test-File
>
>
> > Please can you work out why yours doesn't work the same way as mine?
> > If you just run the command "AvpDaemonClient ." then please do a "which
> > AvpDaemonClient" to check where it is actually getting it from.
>
>I really don't know why it works for you and doesn't for me. What are
>your kavdaemon parameters? I run it as
>/opt/AVP/kavdaemon -I0 -Y /var/virge/temp/ /var/spool/ :
># ps axw|grep kav
>14755 ? S 0:00
>/opt/AVP/kavdaemon(Logger)
>14756 ? S 0:00 /opt/AVP/kavdaemon -I0 -Y /var/virge/temp/
>/var/spool/
>
>System is RH 7.3.
>I tried running AvpDaemonClient with full path
>(/usr/local/bin/AvpDaemonClient), it doesn't change anything.
>
>The fact is, that it doesn't work here on 2 different systems, and I
>asked kaspersky support about this problem, and they told that "." is
>not supported by kavdaemon for security reasons. So is there any
>possibility to pass full path to kavdaemon client? IMHO it would solve
>all the problems.
>
>Regards,
>Nerijus
--
Julian Field
www.MailScanner.info
MailScanner thanks transtec Computers for their support
More information about the MailScanner
mailing list