Ubuntu
clamav package

  1. Bug #487631
  2. Activity log

Activity log for bug #487631

Date Who What changed Old value New value Message
2009-11-24 15:16:46 Jacekalex bug added bug
2009-11-24 15:16:46 Jacekalex attachment added clamdscan.log http://launchpadlibrarian.net/36023596/clamdscan.log
2009-11-24 15:16:46 Jacekalex attachment added Dependencies.txt http://launchpadlibrarian.net/36023597/Dependencies.txt
2009-11-24 15:45:33 Jacekalex description Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Configuration file for clamav-daemon: :~$ cat /etc/clamav/clamd.conf AlgorithmicDetection true AllowSupplementaryGroups true ArchiveBlockEncrypted false CommandReadTimeout 5 DatabaseDirectory /var/lib/clamav Debug false DetectBrokenExecutables false DetectPUA false ExitOnOOM false FollowDirectorySymlinks false FollowFileSymlinks true Foreground false HeuristicScanPrecedence true IdleTimeout 30 LeaveTemporaryFiles false LocalSocket /tmp/clamd.sock LogClean false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogFileUnlock false LogFile /var/log/clamav/clamav.log LogSyslog true LogTime true LogVerbose false MailFollowURLs false MaxConnectionQueueLength 15 MaxDirectoryRecursion 15 MaxQueue 100 MaxThreads 12 PhishingAlwaysBlockCloak false PhishingAlwaysBlockSSLMismatch false PhishingScanURLs true PhishingSignatures true PidFile /var/run/clamav/clamd.pid ReadTimeout 180 ScanArchive true ScanELF true ScanHTML true ScanMail true ScanOLE2 true ScanPDF true ScanPE true ScanPartialMessages false SelfCheck 3600 SendBufTimeout 200 StreamMaxLength 10M StructuredDataDetection false TCPSocket 3310 User clamav By contrast, havp the proxy server works with clamav-daemon properly: Access to this site has been blocked because it found the virus ClamAV: EICAR-Test-Signature Powered by HAVP These symptoms appeared recently - did not occur in Ubuntu Jaunty with the same configuration / etc / clamav / clamd.conf . Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed
2009-11-24 15:58:23 Jacekalex description Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Configuration file for clamav-daemon: :~$ cat /etc/clamav/clamd.conf AlgorithmicDetection true AllowSupplementaryGroups true ArchiveBlockEncrypted false CommandReadTimeout 5 DatabaseDirectory /var/lib/clamav Debug false DetectBrokenExecutables false DetectPUA false ExitOnOOM false FollowDirectorySymlinks false FollowFileSymlinks true Foreground false HeuristicScanPrecedence true IdleTimeout 30 LeaveTemporaryFiles false LocalSocket /tmp/clamd.sock LogClean false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogFileUnlock false LogFile /var/log/clamav/clamav.log LogSyslog true LogTime true LogVerbose false MailFollowURLs false MaxConnectionQueueLength 15 MaxDirectoryRecursion 15 MaxQueue 100 MaxThreads 12 PhishingAlwaysBlockCloak false PhishingAlwaysBlockSSLMismatch false PhishingScanURLs true PhishingSignatures true PidFile /var/run/clamav/clamd.pid ReadTimeout 180 ScanArchive true ScanELF true ScanHTML true ScanMail true ScanOLE2 true ScanPDF true ScanPE true ScanPartialMessages false SelfCheck 3600 SendBufTimeout 200 StreamMaxLength 10M StructuredDataDetection false TCPSocket 3310 User clamav By contrast, havp the proxy server works with clamav-daemon properly: Access to this site has been blocked because it found the virus ClamAV: EICAR-Test-Signature Powered by HAVP These symptoms appeared recently - did not occur in Ubuntu Jaunty with the same configuration / etc / clamav / clamd.conf . Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR The log / var / log / clamav / clamav.log appeared this message Tue Nov 24 16:51:54 2009 -> WARNING: lstat() failed on: /root/test/eicar.txt The error appears only if - when the scanning is done by clamdscan Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Configuration file for clamav-daemon: :~$ cat /etc/clamav/clamd.conf AlgorithmicDetection true AllowSupplementaryGroups true ArchiveBlockEncrypted false CommandReadTimeout 5 DatabaseDirectory /var/lib/clamav Debug false DetectBrokenExecutables false DetectPUA false ExitOnOOM false FollowDirectorySymlinks false FollowFileSymlinks true Foreground false HeuristicScanPrecedence true IdleTimeout 30 LeaveTemporaryFiles false LocalSocket /tmp/clamd.sock LogClean false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogFileUnlock false LogFile /var/log/clamav/clamav.log LogSyslog true LogTime true LogVerbose false MailFollowURLs false MaxConnectionQueueLength 15 MaxDirectoryRecursion 15 MaxQueue 100 MaxThreads 12 PhishingAlwaysBlockCloak false PhishingAlwaysBlockSSLMismatch false PhishingScanURLs true PhishingSignatures true PidFile /var/run/clamav/clamd.pid ReadTimeout 180 ScanArchive true ScanELF true ScanHTML true ScanMail true ScanOLE2 true ScanPDF true ScanPE true ScanPartialMessages false SelfCheck 3600 SendBufTimeout 200 StreamMaxLength 10M StructuredDataDetection false TCPSocket 3310 User clamav By contrast, havp the proxy server works with clamav-daemon properly: Access to this site has been blocked because it found the virus ClamAV: EICAR-Test-Signature Powered by HAVP These symptoms appeared recently - did not occur in Ubuntu Jaunty with the same configuration / etc / clamav / clamd.conf . Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed
2009-11-24 16:14:25 Jacekalex description Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR The log / var / log / clamav / clamav.log appeared this message Tue Nov 24 16:51:54 2009 -> WARNING: lstat() failed on: /root/test/eicar.txt The error appears only if - when the scanning is done by clamdscan Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Configuration file for clamav-daemon: :~$ cat /etc/clamav/clamd.conf AlgorithmicDetection true AllowSupplementaryGroups true ArchiveBlockEncrypted false CommandReadTimeout 5 DatabaseDirectory /var/lib/clamav Debug false DetectBrokenExecutables false DetectPUA false ExitOnOOM false FollowDirectorySymlinks false FollowFileSymlinks true Foreground false HeuristicScanPrecedence true IdleTimeout 30 LeaveTemporaryFiles false LocalSocket /tmp/clamd.sock LogClean false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogFileUnlock false LogFile /var/log/clamav/clamav.log LogSyslog true LogTime true LogVerbose false MailFollowURLs false MaxConnectionQueueLength 15 MaxDirectoryRecursion 15 MaxQueue 100 MaxThreads 12 PhishingAlwaysBlockCloak false PhishingAlwaysBlockSSLMismatch false PhishingScanURLs true PhishingSignatures true PidFile /var/run/clamav/clamd.pid ReadTimeout 180 ScanArchive true ScanELF true ScanHTML true ScanMail true ScanOLE2 true ScanPDF true ScanPE true ScanPartialMessages false SelfCheck 3600 SendBufTimeout 200 StreamMaxLength 10M StructuredDataDetection false TCPSocket 3310 User clamav By contrast, havp the proxy server works with clamav-daemon properly: Access to this site has been blocked because it found the virus ClamAV: EICAR-Test-Signature Powered by HAVP These symptoms appeared recently - did not occur in Ubuntu Jaunty with the same configuration / etc / clamav / clamd.conf . Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR The log / var / log / clamav / clamav.log appeared this message Tue Nov 24 16:51:54 2009 -> WARNING: lstat() failed on: /root/test/eicar.txt Permissions to socket is ok: :~$ ls -l /tmp/clamd.sock srwxrwxrwx 1 clamav clamav 0 2009-11-24 04:17 /tmp/clamd.sock The error appears only if - when the scanning is done by clamdscan Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Configuration file for clamav-daemon: :~$ cat /etc/clamav/clamd.conf AlgorithmicDetection true AllowSupplementaryGroups true ArchiveBlockEncrypted false CommandReadTimeout 5 DatabaseDirectory /var/lib/clamav Debug false DetectBrokenExecutables false DetectPUA false ExitOnOOM false FollowDirectorySymlinks false FollowFileSymlinks true Foreground false HeuristicScanPrecedence true IdleTimeout 30 LeaveTemporaryFiles false LocalSocket /tmp/clamd.sock LogClean false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogFileUnlock false LogFile /var/log/clamav/clamav.log LogSyslog true LogTime true LogVerbose false MailFollowURLs false MaxConnectionQueueLength 15 MaxDirectoryRecursion 15 MaxQueue 100 MaxThreads 12 PhishingAlwaysBlockCloak false PhishingAlwaysBlockSSLMismatch false PhishingScanURLs true PhishingSignatures true PidFile /var/run/clamav/clamd.pid ReadTimeout 180 ScanArchive true ScanELF true ScanHTML true ScanMail true ScanOLE2 true ScanPDF true ScanPE true ScanPartialMessages false SelfCheck 3600 SendBufTimeout 200 StreamMaxLength 10M StructuredDataDetection false TCPSocket 3310 User clamav By contrast, havp the proxy server works with clamav-daemon properly: Access to this site has been blocked because it found the virus ClamAV: EICAR-Test-Signature Powered by HAVP These symptoms appeared recently - did not occur in Ubuntu Jaunty with the same configuration / etc / clamav / clamd.conf . Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed
2009-11-24 16:30:27 Jacekalex description Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR The log / var / log / clamav / clamav.log appeared this message Tue Nov 24 16:51:54 2009 -> WARNING: lstat() failed on: /root/test/eicar.txt Permissions to socket is ok: :~$ ls -l /tmp/clamd.sock srwxrwxrwx 1 clamav clamav 0 2009-11-24 04:17 /tmp/clamd.sock The error appears only if - when the scanning is done by clamdscan Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Configuration file for clamav-daemon: :~$ cat /etc/clamav/clamd.conf AlgorithmicDetection true AllowSupplementaryGroups true ArchiveBlockEncrypted false CommandReadTimeout 5 DatabaseDirectory /var/lib/clamav Debug false DetectBrokenExecutables false DetectPUA false ExitOnOOM false FollowDirectorySymlinks false FollowFileSymlinks true Foreground false HeuristicScanPrecedence true IdleTimeout 30 LeaveTemporaryFiles false LocalSocket /tmp/clamd.sock LogClean false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogFileUnlock false LogFile /var/log/clamav/clamav.log LogSyslog true LogTime true LogVerbose false MailFollowURLs false MaxConnectionQueueLength 15 MaxDirectoryRecursion 15 MaxQueue 100 MaxThreads 12 PhishingAlwaysBlockCloak false PhishingAlwaysBlockSSLMismatch false PhishingScanURLs true PhishingSignatures true PidFile /var/run/clamav/clamd.pid ReadTimeout 180 ScanArchive true ScanELF true ScanHTML true ScanMail true ScanOLE2 true ScanPDF true ScanPE true ScanPartialMessages false SelfCheck 3600 SendBufTimeout 200 StreamMaxLength 10M StructuredDataDetection false TCPSocket 3310 User clamav By contrast, havp the proxy server works with clamav-daemon properly: Access to this site has been blocked because it found the virus ClamAV: EICAR-Test-Signature Powered by HAVP These symptoms appeared recently - did not occur in Ubuntu Jaunty with the same configuration / etc / clamav / clamd.conf . Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed Binary package hint: clamav Hi I found an error in the clamav-daemon clamdscan client clamdscan is a client clamav-daemon This error is highly embarrassing for me - because it prevents the virus scanner operation Qmail-scanner - which I installed in my Job as a hedge Qmail SMTP server. Clamdscan not working: root@localhost:~/test# clamdscan eicar.txt /root/test/eicar.txt: lstat() failed: Permission denied. ERROR The log / var / log / clamav / clamav.log appeared this message Tue Nov 24 16:51:54 2009 -> WARNING: lstat() failed on: /root/test/eicar.txt The error appears only if - when the scanning is done by clamdscan Permissions to socket is ok: :~$ ls -l /tmp/clamd.sock srwxrwxrwx 1 clamav clamav 0 2009-11-24 04:17 /tmp/clamd.sock Clamav working properly, but it is not suitable to work with the clam-daemon and Qmail-scanner - because after each completion of the work program of the virus database jestr it loaded again, which generates a very large load drive and very slow compared with the clam-daemon job: root@localhost:~/test# clamscan eicar.txt eicar.txt: Eicar-Test-Signature FOUND ----------- SCAN SUMMARY ----------- Known viruses: 657374 Engine version: 0.95.3 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 1.954 sec (0 m 1 s) root@localhost:~/test# Configuration file for clamav-daemon: :~$ cat /etc/clamav/clamd.conf AlgorithmicDetection true AllowSupplementaryGroups true ArchiveBlockEncrypted false CommandReadTimeout 5 DatabaseDirectory /var/lib/clamav Debug false DetectBrokenExecutables false DetectPUA false ExitOnOOM false FollowDirectorySymlinks false FollowFileSymlinks true Foreground false HeuristicScanPrecedence true IdleTimeout 30 LeaveTemporaryFiles false LocalSocket /tmp/clamd.sock LogClean false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogFileUnlock false LogFile /var/log/clamav/clamav.log LogSyslog true LogTime true LogVerbose false MailFollowURLs false MaxConnectionQueueLength 15 MaxDirectoryRecursion 15 MaxQueue 100 MaxThreads 12 PhishingAlwaysBlockCloak false PhishingAlwaysBlockSSLMismatch false PhishingScanURLs true PhishingSignatures true PidFile /var/run/clamav/clamd.pid ReadTimeout 180 ScanArchive true ScanELF true ScanHTML true ScanMail true ScanOLE2 true ScanPDF true ScanPE true ScanPartialMessages false SelfCheck 3600 SendBufTimeout 200 StreamMaxLength 10M StructuredDataDetection false TCPSocket 3310 User clamav By contrast, havp the proxy server works with clamav-daemon properly: Access to this site has been blocked because it found the virus ClamAV: EICAR-Test-Signature Powered by HAVP These symptoms appeared recently - did not occur in Ubuntu Jaunty with the same configuration / etc / clamav / clamd.conf . Yours Further information - log strace program - in the attached file clamdscan.log ProblemType: Bug Architecture: i386 Date: Tue Nov 24 16:12:13 2009 DistroRelease: Ubuntu 9.10 NonfreeKernelModules: nvidia Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10 ProcEnviron: SHELL=/bin/bash PATH=(custom, no user) LANG=pl_PL.UTF-8 ProcVersionSignature: Ubuntu 2.6.31-15.50-generic SourcePackage: clamav Uname: Linux 2.6.31-15-generic i686 XsessionErrors: (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (gnome-settings-daemon:17742): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed (polkit-gnome-authentication-agent-1:17783): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus:17774): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed (nautilus:17898): Eel-CRITICAL **: eel_preferences_get_boolean: assertion `preferences_is_initialized ()' failed
2009-11-24 18:57:24 Scott Kitterman clamav (Ubuntu): status New Invalid
2009-11-24 19:02:10 Imre Gergely clamav (Ubuntu): status Invalid Incomplete
2009-11-24 19:26:02 Scott Kitterman clamav (Ubuntu): status Incomplete Invalid