> how often are you updating your clam database.
>
Twice daily. It IS up to date. IT (clamscan and clamdscan run as root
or defang) DOES detect the virus. Mimedefang is not calling it or
something.
Hmmm.... but I did notice that I am running freshclam (virus def.
updater) as user clamav, not defang. Should that matter?
root@pwweb /var/spool/MIMEDefang# ps -auxw | grep fresh
clamav 10758 0.0 0.0 1968 0 ?? IWs - 0:00.00
/usr/local/bin/freshclam -d -c 2 -l /var/log/freshclam.log
Could it be clamd run as user defang can not open the files.... I tried
running clamdscan as user defang and it DOES find the virus. Why
doesn't Mimedefang?
> > I have received the new MyDoom virus in email several times.
> > MimeDefang is supposed to use the ClamAV scanner. I have
> run clamscan
> > on the zipped file and it DOES detect it as a virus. So,
> why does not
> > Mimedefang stop it?
> >
> > I've set mimedefang and clamd to run as user defang:
> >
> > root@pwweb /etc/mail/spamassassin# ps -auwx | grep defang
> > root 30234 0.0 0.9 1072 540 p0 S+ 9:56AM 0:00.00 grep
> > defang
> > defang 10998 0.0 3.7 21544 2136 ?? Ss Thu02PM 0:28.70
> > /usr/local/sbin/clamd
> > defang 26780 0.0 0.4 1820 208 ?? I 10:17AM 0:00.29
> > /usr/local/bin/mimedefang-multiplexor -p /var/spool/MIMEDefang/mime
> > defang 26782 0.0 27.4 24720 16132 ?? I 10:17AM 1:22.12
> > /usr/bin/perl -w /usr/local/bin/mimedefang.pl -server
> > defang 26792 0.0 0.9 1480 544 ?? S 10:17AM 0:05.87
> > /usr/local/bin/mimedefang -P /var/spool/MIMEDefang/mimedefang.pid -
> > defang 26794 0.0 1.4 21792 816 ?? I 10:17AM 0:03.91
> > /usr/bin/perl -w /usr/local/bin/mimedefang.pl -server
> >
___________________
Nolug mailing list
nolug@nolug.org
Received on 02/03/04
This archive was generated by hypermail 2.2.0 : 12/19/08 EST