[clamav-users] Strange behaviors about syslog on Debian

Yasuhiro KIMURA yasu at utahime.org
Sat Nov 24 15:52:08 UTC 2018

From: Yasuhiro KIMURA <yasu at utahime.org>
Subject: Re: [clamav-users] Strange behaviors about syslog on Debian
Date: Sat, 24 Nov 2018 18:55:05 +0900 (JST)

> And I'm going to setup CentOS 7.x from now and will check how it
> behaves about syslog issue.

I set up CentOS 7.x environment with following conditions.

* CentOS 7.5.1804
* ClamAV 0.100.2 from EPEL(Extra Packages for Enterprise Linux by
  Fedora Project)

Next I made following changes.

1. Add following line in /etc/rsyslog.conf
    *.*;auth,authpriv.none    -/var/log/syslog
2. Set LogSyslog to false in both /etc/freshclam.conf and /etc/clamd.d/scan.conf

And finally I rebooted system. Then result is that clamd didn't write
any message to syslog and executing freshclam didin't either. To make
sure I set LogSyslog to true and reboot again. And this time both
clamd and freshclam wrote message to syslog.

So now syslog issue is proved to be Debian specific. I don't know
where the source of this issue lies. But anyway I'll send bug report
to maintainer of Debian ClamAV package.

Yasuhiro KIMURA

More information about the clamav-users mailing list