Clamd problem
Garrod M. Alwood
Garrod.Alwood at lorodoes.com
Tue Nov 24 18:39:39 GMT 2009
It was apparmor (which I never configured.)
Garrod M. Alwood
Consultant
garrod.alwood at lorodoes.com<mailto:garrod.alwood at lorodoes.com>
904.738.4988
________________________________
From: mailscanner-bounces at lists.mailscanner.info [mailscanner-bounces at lists.mailscanner.info] On Behalf Of shprahi shprahi [shprahi at gmail.com]
Sent: Tuesday, November 24, 2009 1:42 PM
To: MailScanner discussion
Subject: Re: Clamd problem
Please paste the error log and which folder permission clamd giving error
On Tue, Nov 24, 2009 at 11:02 PM, Alex Broens <ms-list at alexb.ch<mailto:ms-list at alexb.ch>> wrote:
On 11/24/2009 6:15 PM, Garrod M. Alwood wrote:
does it use less resources that way?
using TCP instead of sockets? dunno.. but never liked sockets.
guess some socket user can say more...
ClamD/TCP have been very nice to me for a long time :-)
Garrod M. Alwood
Consultant
garrod.alwood at lorodoes.com<mailto:garrod.alwood at lorodoes.com>
904.738.4988
________________________________________
From: mailscanner-bounces at lists.mailscanner.info<mailto:mailscanner-bounces at lists.mailscanner.info> [mailscanner-bounces at lists..mailscanner.info<http://mailscanner.info>] On Behalf Of Alex Broens [ms-list at alexb.ch<mailto:ms-list at alexb.ch>]
Sent: Tuesday, November 24, 2009 12:10 PM
To: MailScanner discussion
Subject: Re: Clamd problem
my setup with Pfix (not using socket!)
clamd.conf
# Path to a local socket file the daemon will listen on.
# Default: disabled (must be specified by a user)
# LocalSocket /tmp/clamd.socket
# Remove stale socket after unclean shutdown.
# Default: yes
#FixStaleSocket yes
# TCP port address.
# Default: no
TCPSocket 3310
# TCP address.
# By default we bind to INADDR_ANY, probably not wise.
# Enable the following to provide some degree of protection
# from the outside world.
# Default: no
TCPAddr 127.0.0.1
relevant part in MailScanner.conf
Clamd Port = 3310
Clamd Socket = /tmp/clamd
Clamd Lock File = # /var/lock/subsys/clamd
Clamd Use Threads = yes
On 11/24/2009 5:52 PM, Garrod M. Alwood wrote:
nope, didn't work.This is really wierd. All of my training says that if I put postfix (which is the chown user) and www-data (which is the chown group) in to clamav then it should be able to access everything that those two can access or am I missing something here? I am including my clamd.conf file below. I really don't want to use 0755 for my permissions as when I googled I saw in one post, unless I really have to.
#Automatically Generated by clamav-base postinst
#To reconfigure clamd run #dpkg-reconfigure clamav-base
#Please read /usr/share/doc/clamav-base/README.Debian.gz for details
LocalSocket /tmp/clamd.socket
FixStaleSocket true
# TemporaryDirectory is not set to its default /tmp here to make overriding
# the default with environment variables TMPDIR/TMP/TEMP possible
User clamav
AllowSupplementaryGroups yes
ScanMail true
ScanArchive true
ArchiveBlockEncrypted false
MaxDirectoryRecursion 15
FollowDirectorySymlinks false
FollowFileSymlinks false
ReadTimeout 180
MaxThreads 12
MaxConnectionQueueLength 15
StreamMaxLength 50M
LogSyslog true
LogFacility LOG_LOCAL6
LogClean false
LogVerbose false
PidFile /var/run/clamav/clamd.pid
DatabaseDirectory /var/lib/clamav
SelfCheck 3600
Foreground false
Debug false
ScanPE true
ScanOLE2 true
ScanHTML true
DetectBrokenExecutables false
MailFollowURLs false
ExitOnOOM false
LeaveTemporaryFiles false
AlgorithmicDetection true
ScanELF true
IdleTimeout 30
PhishingSignatures true
PhishingScanURLs true
PhishingAlwaysBlockSSLMismatch false
DetectPUA false
ScanPartialMessages false
HeuristicScanPrecedence false
StructuredDataDetection false
CommandReadTimeout 5
SendBufTimeout 200
MaxQueue 100
LogFile /var/log/clamav/clamav.log
LogTime true
LogFileUnlock false
LogFileMaxSize 0
Garrod M. Alwood
Consultant
garrod.alwood at lorodoes.com<mailto:garrod.alwood at lorodoes.com>
904.738.4988
________________________________________
From: mailscanner-bounces at lists.mailscanner.info<mailto:mailscanner-bounces at lists.mailscanner.info> [mailscanner-bounces at lists..mailscanner.info<http://mailscanner.info>] On Behalf Of Alex Broens [ms-list at alexb.ch<mailto:ms-list at alexb.ch>]
Sent: Tuesday, November 24, 2009 11:49 AM
To: MailScanner discussion
Subject: Re: Clamd problem
On 11/24/2009 5:37 PM, Garrod M. Alwood wrote:
I am having trouble with the permissions of the clamd. I have put the postfix and www-data users in to the clamav group (both of which have owner permissions) and still clamd gets an permissions error everytime I run it. I have the permissions set to 0640. I am in need of help. oops put the other one with the wrong subject My bad.
clamd.conf
AllowSupplementaryGroups yes
does that help ?
Garrod M. Alwood
Consultant
garrod.alwood at lorodoes.com<mailto:garrod.alwood at lorodoes.com>
904.738.4988--
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
--
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!--
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
--
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!-- MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
--
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20091124/2808e924/attachment.html
More information about the MailScanner
mailing list