ClamAV 0.94

Jose Julian Buda jbuda at noticiasargentinas.com
Tue Sep 9 15:22:00 IST 2008 

----- Original Message ----- 
From: "Jim Barber" <jim.barber at ddihealth.com>
To: "MailScanner discussion" <mailscanner at lists.mailscanner.info>
Sent: Monday, September 08, 2008 10:38 PM
Subject: Re: ClamAV 0.94


> Hugo van der Kooij wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> Scott Silva wrote:
>>
>>>> Now, the clamd daemon is running, how do i tell the mailscanner to use
>>>> it?
>>
>>> You will need to upgrade your mailscanner version. Debian uses a version
>>> that is probably 3 years old by now. In MailScanner time that is like 30
>>> generations.
>>
>> In spam terms that is about 15 generations ago.
>>
>> I would recommend that Jules defines a version policy about how many
>> versions back something is considered too old to be even bothered with
>> and notification is send to the Debian team that their prehistoric
>> version is too old to keep in there system.
>>
>> Keeping up was my greatest concern in regard to building a repository
>> for MailScanner.
>>
>> Hugo.
>>
>> PS: Did anyone bother to check the awstats statistics?
>
> The version of MailScanner in Debian's testing / lenny distribution is 
> 4.68.8.
> That's also really old, but it does have the ability to use clamd (I'm 
> using it successfully).
>
> To use it I needed to add the Debian-exim user to the clamav group.
> I also added the clamav user to the Debian-exim group, but you may be able 
> to avoid that by setting "Incoming Work Group = clamav" in the config 
> below.
>
> Then you need set a few values in your /etc/MailScanner/MailScanner.conf 
> file:
>
> Incoming Work Permissions = 0660
>
> Virus Scanners = clamd
>
> Monitors for ClamAV Updates = /var/lib/clamav/*.inc/* 
> /var/lib/clamav/*.cvd
>
> Regards,
>
> ----------
> Jim Barber
> DDI Health
> -- 
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>
> Before posting, read http://wiki.mailscanner.info/posting
>
> Support MailScanner development - buy the book off the website!
> __________ Informacin de NOD32, revisin 3428 (20080909) __________
>
> Este mensaje ha sido analizado con  NOD32 antivirus system
> http://www.nod32.com
>
>


Can i use a lenny version on a production server ?
If i shouldn't, how can i make this version work?
This problem, i do not saw it yesterday with the clamav 0.93.3.
Is it really a MS problem?
However, i see that the clamav 0.94 is ok , if a try directly the wrapper 
script:

proxymails:~# /etc/MailScanner/wrapper/clamav-wrapper /usr
/root/.rnd: OK
/root/.bashrc: OK
/root/papa.txt: Eicar-Test-Signature FOUND
/root/.viminfo: OK
/root/.bash_history: OK
/root/.profile: OK
/root/balanceo: OK
/root/pepe.zip: Eicar-Test-Signature FOUND
/root/ipt.txt: OK

----------- SCAN SUMMARY -----------
Known viruses: 416286
Engine version: 0.94
Scanned directories: 1
Scanned files: 16
Infected files: 2
Data scanned: 0.61 MB
Time: 3.919 sec (0 m 3 s)
proxymails:~#


I dont want to install a testing version on a production server, if it is 
not necesary
somebody does have tested this lenny version on etch?

Thank you .
Jose Julian Buda

More information about the MailScanner mailing list