[clamav-users] Clamav on Debian
Richard Thibaudeau
rbtajd at aei.ca
Tue Jan 13 15:17:14 UTC 2015
Hi everyone
For at least two weeks I'm searching the Internet to find a solution to:
root at debian:/# freshclam
ERROR: Parse error at line 4: Unknown option LocalSocket
ERROR: Can't open/parse the config file /etc/clamav/freshclam.conf
Please see the attachment to get more details.
Thank you for your help.
Richard
-------------- next part --------------
When I run freshclam, I get this:
richard at debian:/$ freshclam
ERROR: Parse error at line 4: Unknown option LocalSocket
ERROR: Can't open/parse the config file /etc/clamav/freshclam.conf
richard at debian:/$ ls -l /var/lib/clamav
total 188092
-rw-r--r-- 1 clamav clamav 74230 Nov 1 09:44 bytecode.cvd
-rw-r--r-- 1 clamav clamav 81639424 Dec 7 12:01 daily.cld
-rw-r--r-- 1 clamav clamav 22549 Feb 5 2013 honeynet.hdb
-rw-r--r-- 1 clamav clamav 6151447 Dec 9 06:49 junk.ndb
-rw-r--r-- 1 clamav clamav 397125 Dec 16 07:50 jurlbl.ndb
-rw-r--r-- 1 clamav clamav 64720632 Dec 7 12:01 main.cvd
-rw-r--r-- 1 clamav clamav 356 Nov 26 16:47 mbl.ndb
-rw-r--r-- 1 clamav clamav 52 Nov 28 12:08 mirrors.dat
-rw-r--r-- 1 clamav clamav 3671319 Dec 16 05:50 phish.ndb
-rw-r--r-- 1 clamav clamav 11636 Dec 16 05:50 rogue.hdb
-rw-r--r-- 1 clamav clamav 9952 Sep 3 08:31 sanesecurity.ftm
-rw-r--r-- 1 clamav clamav 1867143 Dec 9 05:49 scam.ndb
-rw-r--r-- 1 clamav clamav 200405 Feb 5 2013 securiteinfobat.hdb
-rw-r--r-- 1 clamav clamav 391274 Nov 28 2013 securiteinfodos.hdb
-rw-r--r-- 1 clamav clamav 75040 Jan 21 2014 securiteinfoelf.hdb
-rw-r--r-- 1 clamav clamav 26470927 Nov 18 23:55 securiteinfo.hdb
-rw-r--r-- 1 clamav clamav 4895474 Dec 15 22:11 securiteinfohtml.hdb
-rw-r--r-- 1 clamav clamav 264154 Feb 5 2013 securiteinfooffice.hdb
-rw-r--r-- 1 clamav clamav 468241 Feb 5 2013 securiteinfopdf.hdb
-rw-r--r-- 1 clamav clamav 29520 Feb 5 2013 securiteinfosh.hdb
-rw-r--r-- 1 clamav clamav 1148 Oct 28 12:51 spamimg.hdb
-rw-r--r-- 1 clamav clamav 209989 Dec 14 10:45 winnow_malware.hdb
-rw-r--r-- 1 clamav clamav 986669 Dec 16 07:45 winnow_malware_links.ndb
root at debian:/# netstat -tap
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 localhost:3310 *:* LISTEN 3697/clamd
tcp 0 0 *:57423 *:* LISTEN 2002/rpc.statd
tcp 0 0 *:sunrpc *:* LISTEN 1971/rpcbind
tcp 0 0 *:ssh *:* LISTEN 3403/sshd
tcp 0 0 localhost:ipp *:* LISTEN 3247/cupsd
tcp 0 0 localhost:smtp *:* LISTEN 4334/exim4
tcp 0 0 debian:37253 206.126.112.185:https ESTABLISHED 4656/iceweasel
tcp 0 0 debian:48971 206.126.112.181:https ESTABLISHED 4656/iceweasel
tcp6 0 0 localhost:3310 [::]:* LISTEN 3697/clamd
tcp6 0 0 [::]:sunrpc [::]:* LISTEN 1971/rpcbind
tcp6 0 0 [::]:56817 [::]:* LISTEN 2002/rpc.statd
tcp6 0 0 [::]:ssh [::]:* LISTEN 3403/sshd
tcp6 0 0 localhost:ipp [::]:* LISTEN 3247/cupsd
tcp6 0 0 localhost:smtp [::]:* LISTEN 4334/exim4
Run: clamconf
Checking configuration files in /etc/clamav
Config file: clamd.conf
-----------------------
LogFile = "/var/log/clamav/clamav.log"
StatsHostID = "auto"
StatsEnabled = "yes"
StatsPEDisabled = "yes"
StatsTimeout = "10"
LogFileUnlock disabled
LogFileMaxSize = "4294967295"
LogTime = "yes"
LogClean disabled
LogSyslog = "yes"
LogFacility = "LOG_LOCAL6"
LogVerbose disabled
LogRotate = "yes"
ExtendedDetectionInfo = "yes"
PidFile = "/var/run/clamav/freshclam.pid"
TemporaryDirectory disabled
DatabaseDirectory = "/var/lib/clamav"
OfficialDatabaseOnly disabled
LocalSocket = "/var/run/clamav/clamd.ctl"
LocalSocketGroup = "clamav"
LocalSocketMode = "666"
FixStaleSocket = "yes"
TCPSocket disabled
TCPAddr disabled
MaxConnectionQueueLength = "15"
StreamMaxLength = "26214400"
StreamMinPort = "1024"
StreamMaxPort = "2048"
MaxThreads = "12"
ReadTimeout disabled
CommandReadTimeout = "5"
SendBufTimeout = "200"
MaxQueue = "100"
IdleTimeout = "30"
ExcludePath disabled
MaxDirectoryRecursion = "15"
FollowDirectorySymlinks disabled
FollowFileSymlinks disabled
CrossFilesystems = "yes"
SelfCheck = "1"
DisableCache disabled
VirusEvent disabled
ExitOnOOM disabled
AllowAllMatchScan = "yes"
Foreground disabled
Debug disabled
LeaveTemporaryFiles disabled
User = "clamav"
AllowSupplementaryGroups = "yes"
Bytecode = "yes"
BytecodeSecurity = "TrustSigned"
BytecodeTimeout = "60000"
BytecodeUnsigned disabled
BytecodeMode = "Auto"
DetectPUA disabled
ExcludePUA disabled
IncludePUA disabled
AlgorithmicDetection = "yes"
ScanPE = "yes"
ScanELF = "yes"
DetectBrokenExecutables disabled
ScanMail = "yes"
ScanPartialMessages disabled
PhishingSignatures = "yes"
PhishingScanURLs = "yes"
PhishingAlwaysBlockCloak disabled
PhishingAlwaysBlockSSLMismatch disabled
PartitionIntersection disabled
HeuristicScanPrecedence disabled
StructuredDataDetection disabled
StructuredMinCreditCardCount = "3"
StructuredMinSSNCount = "3"
StructuredSSNFormatNormal = "yes"
StructuredSSNFormatStripped disabled
ScanHTML = "yes"
ScanOLE2 = "yes"
OLE2BlockMacros disabled
ScanPDF = "yes"
ScanSWF = "yes"
ScanArchive = "yes"
ArchiveBlockEncrypted disabled
ForceToDisk disabled
MaxScanSize = "104857600"
MaxFileSize = "26214400"
MaxRecursion = "10"
MaxFiles = "10000"
MaxEmbeddedPE = "10485760"
MaxHTMLNormalize = "10485760"
MaxHTMLNoTags = "2097152"
MaxScriptNormalize = "5242880"
MaxZipTypeRcg = "1048576"
MaxPartitions = "50"
MaxIconsPE = "100"
ScanOnAccess = "yes"
OnAccessIncludePath disabled
OnAccessExcludePath disabled
OnAccessExcludeUID disabled
OnAccessMaxFileSize = "4294967295"
DevACOnly disabled
DevACDepth disabled
DevPerformance disabled
DevLiblog disabled
DisableCertCheck disabled
Config file: freshclam.conf
---------------------------
clamav-milter.conf not found
Software settings
-----------------
Version: 0.98.5
Optional features supported: MEMPOOL IPv6 FRESHCLAM_DNS_FIX AUTOIT_EA06 BZIP2 LIBXML2 JSON RAR JIT
Database information
--------------------
Database directory: /var/lib/clamav
daily.cld: version 19692, sigs: 1277189, built on Fri Nov 28 06:40:39 2014
bytecode.cvd: version 242, sigs: 46, built on Tue Jun 24 18:21:59 2014
[3rd Party] junk.ndb: 49067 sigs
[3rd Party] securiteinfosh.hdb: 404 sigs
[3rd Party] securiteinfopdf.hdb: 6206 sigs
[3rd Party] spamimg.hdb: 18 sigs
[3rd Party] securiteinfoelf.hdb: 1256 sigs
[3rd Party] securiteinfooffice.hdb: 4264 sigs
[3rd Party] securiteinfohtml.hdb: 62389 sigs
[3rd Party] winnow_malware_links.ndb: 7483 sigs
[3rd Party] rogue.hdb: 152 sigs
[3rd Party] phish.ndb: 24663 sigs
main.cvd: version 55, sigs: 2424225, built on Tue Sep 17 10:57:28 2013
[3rd Party] winnow_malware.hdb: 3420 sigs
[3rd Party] sanesecurity.ftm: 159 sigs
[3rd Party] mbl.ndb: 0 sig
[3rd Party] securiteinfo.hdb: 329655 sigs
[3rd Party] jurlbl.ndb: 3984 sigs
[3rd Party] honeynet.hdb: 377 sigs
[3rd Party] scam.ndb: 12282 sigs
[3rd Party] securiteinfodos.hdb: 4509 sigs
[3rd Party] securiteinfobat.hdb: 2600 sigs
Total number of signatures: 4214348
Platform information
--------------------
uname: Linux 3.2.0-4-amd64 #1 SMP Debian 3.2.63-2+deb7u2 x86_64
OS: linux-gnu, ARCH: x86_64, CPU: x86_64
Full OS version: Debian GNU/Linux 7.7 (wheezy)
zlib version: 1.2.7 (1.2.7), compile flags: a9
Triple: x86_64-pc-linux-gnu
CPU: i686, Little-endian
platform id: 0x0a214f4f0804070201040702
Build information
-----------------
GNU C: 4.7.2 (4.7.2)
GNU C++: 4.7.2 (4.7.2)
CPPFLAGS: -D_FORTIFY_SOURCE=2
CFLAGS: -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -Wall -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE
CXXFLAGS:
LDFLAGS: -Wl,-z,relro
Configure: '--build=x86_64-linux-gnu' '--prefix=/usr' '--includedir=/usr/include' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc' '--localstatedir=/var' '--libexecdir=/usr/lib/clamav' '--disable-maintainer-mode' '--disable-dependency-tracking' 'CFLAGS=-g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -Wall -D_FILE_OFFSET_BITS=64' 'CPPFLAGS=-D_FORTIFY_SOURCE=2' 'CXXFLAGS=-g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -Wall -D_FILE_OFFSET_BITS=64' 'LDFLAGS=-Wl,-z,relro' '--with-dbdir=/var/lib/clamav' '--sysconfdir=/etc/clamav' '--disable-clamav' '--disable-unrar' '--enable-milter' '--enable-dns-fix' '--with-libjson' '--with-gnu-ld' '--with-system-tommath' '--without-included-ltdl' '-with-system-llvm=/usr/bin/llvm-config' 'build_alias=x86_64-linux-gnu'
sizeof(void*) = 8
Engine flevel: 79, dconf: 79
///////////
root at debian:/# users
richard richard richard
root at debian:/# groups
root lp lpadmin
root at debian:/# groups clamav
clamav : clamav sudo
root at debian:/# dpkg -l *clam*
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name Version Architecture Description
+++-==============================-====================-====================-==================================================================
ii clamassassin 1.2.4-1 all email virus filter wrapper for ClamAV
ii clamav 0.98.5+dfsg-0+deb7u1 amd64 anti-virus utility for Unix - command-line interface
ii clamav-base 0.98.5+dfsg-0+deb7u1 all anti-virus utility for Unix - base package
ii clamav-daemon 0.98.5+dfsg-0+deb7u1 amd64 anti-virus utility for Unix - scanner daemon
un clamav-data <none> (no description available)
ii clamav-docs 0.98.5+dfsg-0+deb7u1 all anti-virus utility for Unix - documentation
ii clamav-freshclam 0.98.5+dfsg-0+deb7u1 amd64 anti-virus utility for Unix - virus database update utility
ii clamav-unofficial-sigs 3.7.1-3 all update script for 3rd-party clamav signatures
ii clamtk 4.41-1 all graphical front-end for ClamAV
ii libclamav-dev 0.98.5+dfsg-0+deb7u1 amd64 anti-virus utility for Unix - development files
un libclamav2 <none> (no description available)
un libclamav3 <none> (no description available)
ii libclamav6 0.98.5+dfsg-0+deb7u1 amd64 anti-virus utility for Unix - library
ii libclamunrar6 0.96.4-1 amd64 anti-virus utility for Unix - unrar support
More information about the clamav-users
mailing list