[clamav-users] clamav-freshclam service issue
Eric Broch
ebroch at whitehorsetc.com
Mon Jul 5 17:53:36 UTC 2021
Freshclam doesn't start because databases are now updated by cron job
'/etc/cron.d/clamav-update' in 'freshclam.service' file. If cron job
file exists freshclam daemon is not necessary.
Pick one of two options:
1)
vi /usr/lib/systemd/system/clamav-freshclam.service
replace
ConditionPathExists=!/etc/cron.d/clamav-update
with
#ConditionPathExists=!/etc/cron.d/clamav-update
vi /etc/cron.d/clamav-update
replace
0 */3 * * * root /usr/share/clamav/freshclam-sleep > /dev/null
with
#0 */3 * * * root /usr/share/clamav/freshclam-sleep > /dev/null
or
2)
vi /usr/bin/toaststat
replace
for sv in clamd at scan clamav-freshclam spamassassin ... ... ...
with
for sv in clamd at scan spamassassin ... ... ...
On 7/5/2021 1:18 AM, ChandranManikandan wrote:
> Hi Folks,
>
> Any way to resolve this issue clamav-freshclam service?
>
> When I ran the freshclam command, it showed the log without any issue,
> but when I ran toaststat it stopped.
>
>
>
> On Fri, Jul 2, 2021 at 12:17 PM ChandranManikandan <kandakc at gmail.com
> <mailto:kandakc at gmail.com>> wrote:
>
> Hi Eric,
>
> Am running Centos 7 64 Bit with the Qmailtoaster system. Usually
> update through the command line .
> I have seen the clamav 102-2.elf version update on my system in
> the webmin control panel and updated through the panel.
> The freshclam command is running without issue, but when I ran
> toaststat clamav-freshclam was stopped and unable to be active and
> run.
>
> My output below.
> *cat /usr/lib/systemd/system/clamav-freshclam.service*
>
> [Unit]
> Description=ClamAV virus database updater
> Documentation=man:freshclam(1) man:freshclam.conf(5)
> https://www.clamav.net/documents <https://www.clamav.net/documents>
> # If user wants it run from cron, don't start the daemon.
> ConditionPathExists=!/etc/cron.d/clamav-update
> Wants=network-online.target
> After=network-online.target
>
> [Service]
> ExecStart=/usr/bin/freshclam -d --foreground=true
>
> [Install]
> WantedBy=multi-user.target
>
> *cat /etc/freshclam.conf*
>
> ## Example config file for freshclam
> ## Please read the freshclam.conf(5) manual before editing this file.
> ##
>
>
> # Comment or remove the line below.
> #Example
>
> # Path to the database directory.
> # WARNING: It must match clamd.conf's directive!
> # Default: hardcoded (depends on installation options)
> #DatabaseDirectory /var/lib/clamav
>
> # Path to the log file (make sure it has proper permissions)
> # Default: disabled
> #UpdateLogFile /var/log/clamav/freshclam.log
> #UpdateLogFile /var/log/freshclam.log
>
> # Maximum size of the log file.
> # Value of 0 disables the limit.
> # You may use 'M' or 'm' for megabytes (1M = 1m = 1048576 bytes)
> # and 'K' or 'k' for kilobytes (1K = 1k = 1024 bytes).
> # in bytes just don't use modifiers. If LogFileMaxSize is enabled,
> # log rotation (the LogRotate option) will always be enabled.
> # Default: 1M
> LogFileMaxSize 2M
>
> # Log time with each message.
> # Default: no
> LogTime yes
>
> # Enable verbose logging.
> # Default: no
> LogVerbose yes
>
> # Use system logger (can work together with UpdateLogFile).
> # Default: no
> #LogSyslog yes
>
> # Specify the type of syslog messages - please refer to 'man syslog'
> # for facility names.
> # Default: LOG_LOCAL6
> #LogFacility LOG_MAIL
>
> # Enable log rotation. Always enabled when LogFileMaxSize is enabled.
> # Default: no
> LogRotate yes
>
> # This option allows you to save the process identifier of the daemon
> # Default: disabled
> #PidFile /var/run/freshclam.pid
>
> # By default when started freshclam drops privileges and switches
> to the
> # "clamav" user. This directive allows you to change the database
> owner.
> # Default: clamav (may depend on installation options)
> #DatabaseOwner clamupdate
>
> # Use DNS to verify virus database version. Freshclam uses DNS TXT
> records
> # to verify database and software versions. With this directive
> you can change
> # the database verification domain.
> # WARNING: Do not touch it unless you're configuring freshclam to
> use your
> # own database verification domain.
> # Default: current.cvd.clamav.net <http://current.cvd.clamav.net>
> #DNSDatabaseInfo current.cvd.clamav.net
> <http://current.cvd.clamav.net>
>
> # database.clamav.net <http://database.clamav.net> is now the
> primary domain name to be used world-wide.
> # Now that CloudFlare is being used as our Content Delivery
> Network (CDN),
> # this one domain name works world-wide to direct freshclam to the
> closest
> # geographic endpoint.
> # If the old db.XY.clamav.net <http://db.XY.clamav.net> domains
> are set, freshclam will automatically
> # use database.clamav.net <http://database.clamav.net> instead.
> DatabaseMirror database.clamav.net <http://database.clamav.net>
>
> # How many attempts to make before giving up.
> # Default: 3 (per mirror)
> #MaxAttempts 5
>
> # With this option you can control scripted updates. It's highly
> recommended
> # to keep it enabled.
> # Default: yes
> #ScriptedUpdates yes
>
> # By default freshclam will keep the local databases (.cld)
> uncompressed to
> # make their handling faster. With this option you can enable the
> compression;
> # the change will take effect with the next database update.
> # Default: no
> #CompressLocalDatabase no
>
> # With this option you can provide custom sources for database files.
> # This option can be used multiple times. Support for:
> # http(s)://, ftp(s)://, or file://
> # Default: no custom URLs
> #DatabaseCustomURL http://myserver.example.com/mysigs.ndb
> <http://myserver.example.com/mysigs.ndb>
> #DatabaseCustomURL https://myserver.example.com/mysigs.ndb
> <https://myserver.example.com/mysigs.ndb>
> #DatabaseCustomURL https://myserver.example.com:4567/whitelist.wdb
> <https://myserver.example.com:4567/whitelist.wdb>
> #DatabaseCustomURL ftp://myserver.example.com/example.ldb
> <ftp://myserver.example.com/example.ldb>
> #DatabaseCustomURL ftps://myserver.example.com:4567/example.ndb
> <http://myserver.example.com:4567/example.ndb>
> #DatabaseCustomURL file:///mnt/nfs/local.hdb
> # This option allows you to easily point freshclam to private mirrors.
> # If PrivateMirror is set, freshclam does not attempt to use DNS
> # to determine whether its databases are out-of-date, instead it will
> # use the If-Modified-Since request or directly check the headers
> of the
> # remote database files. For each database, freshclam first attempts
> # to download the CLD file. If that fails, it tries to download the
> # CVD file. This option overrides DatabaseMirror, DNSDatabaseInfo
> # and ScriptedUpdates. It can be used multiple times to provide
> # fall-back mirrors.
> # Default: disabled
> #PrivateMirror mirror1.example.com <http://mirror1.example.com>
> #PrivateMirror mirror2.example.com <http://mirror2.example.com>
>
> # Number of database checks per day.
> # Default: 12 (every two hours)
> #Checks 24
>
> # Proxy settings
> # The HTTPProxyServer may be prefixed with [scheme]:// to specify
> which kind
> # of proxy is used.
> # http:// HTTP Proxy. Default when no scheme or proxy type
> is specified.
> # https:// HTTPS Proxy. (Added in 7.52.0 for OpenSSL, GnuTLS
> and NSS)
> # socks4:// SOCKS4 Proxy.
> # socks4a:// SOCKS4a Proxy. Proxy resolves URL hostname.
> # socks5:// SOCKS5 Proxy.
> # socks5h:// SOCKS5 Proxy. Proxy resolves URL hostname.
> # Default: disabled
> #HTTPProxyServer https://proxy.example.com <https://proxy.example.com>
> #HTTPProxyPort 1234
> #HTTPProxyUsername myusername
> #HTTPProxyPassword mypass
>
> # If your servers are behind a firewall/proxy which applies User-Agent
> # filtering you can use this option to force the use of a different
> # User-Agent header.
> # Default: clamav/version_number
> #HTTPUserAgent SomeUserAgentIdString
>
> # Use aaa.bbb.ccc.ddd as client address for downloading databases.
> Useful for
> # multi-homed systems.
> # Default: Use OS'es default outgoing IP address.
> #LocalIPAddress aaa.bbb.ccc.ddd
>
> # Send the RELOAD command to clamd.
> # Default: no
> #NotifyClamd /path/to/clamd.conf
>
> # Run command after successful database update.
> # Default: disabled
> #OnUpdateExecute command
> # Run command when database update process fails.
> # Default: disabled
> #OnErrorExecute command
>
> # Run command when freshclam reports outdated version.
> # In the command string %v will be replaced by the new version number.
> # Default: disabled
> #OnOutdatedExecute command
>
> # Don't fork into background.
> # Default: no
> #Foreground yes
>
> # Enable debug messages in libclamav.
> # Default: no
> #Debug yes
>
> # Timeout in seconds when connecting to database server.
> # Default: 30
> #ConnectTimeout 60
>
> # Timeout in seconds when reading from database server.
> # Default: 0
> #ReceiveTimeout 1800
>
> # With this option enabled, freshclam will attempt to load new
> # databases into memory to make sure they are properly handled
> # by libclamav before replacing the old ones.
> # Default: yes
> #TestDatabases yes
>
> # This option enables support for Google Safe Browsing. When
> activated for
> # the first time, freshclam will download a new database file
> # (safebrowsing.cvd) which will be automatically loaded by clamd and
> # clamscan during the next reload, provided that the heuristic
> phishing
> # detection is turned on. This database includes information about
> websites
> # that may be phishing sites or possible sources of malware. When
> using this
> # option, it's mandatory to run freshclam at least every 30 minutes.
> # Freshclam uses the ClamAV's mirror infrastructure to distribute the
> # database and its updates but all the contents are provided under
> Google's
> # terms of use.
> # See https://transparencyreport.google.com/safe-browsing/overview
> <https://transparencyreport.google.com/safe-browsing/overview>
> # and https://www.clamav.net/documents/safebrowsing
> <https://www.clamav.net/documents/safebrowsing> for more information.
> # Default: no
> #SafeBrowsing yes
> # This option enables downloading of bytecode.cvd, which includes
> additional
> # detection mechanisms and improvements to the ClamAV engine.
> # Default: yes
> #Bytecode no
>
> # Include an optional signature databases (opt-in).
> # This option can be used multiple times.
> #ExtraDatabase dbname1
> #ExtraDatabase dbname2
>
> # Exclude a standard signature database (opt-out).
> # This option can be used multiple times.
> #ExcludeDatabase dbname1
> #ExcludeDatabase dbname2
>
>
>
>
>
> On Thu, Jul 1, 2021 at 9:54 PM Eric Broch via clamav-users
> <clamav-users at lists.clamav.net
> <mailto:clamav-users at lists.clamav.net>> wrote:
>
> # cat /etc/freshclam.conf
>
> Show output on list.
>
> On 7/1/2021 2:46 AM, ChandranManikandan via clamav-users wrote:
>> Hi Folks,
>>
>> I have updated the below packages through the webmin panel.
>> Jul 01 13:27:50 Updated: clamav-filesystem-0.103.2-2.el7.noarch
>> Jul 01 13:27:51 Updated: clamav-lib-0.103.2-2.el7.x86_64
>> Jul 01 13:27:52 Updated: clamav-update-0.103.2-2.el7.x86_64
>> Jul 01 13:27:52 Updated: clamav-0.103.2-2.el7.x86_64
>> Jul 01 13:27:52 Updated: clamd-0.103.2-2.el7.x86_64
>>
>> After updating i got the below clamav-freshclam error.
>>
>> systemd service: clamav-freshclam: [ FAILED ]
>>
>> I have restarted the clamav-freshclam service but still the
>> below message came.
>>
>> ● clamav-freshclam.service - ClamAV virus database updater
>> Loaded: loaded
>> (/usr/lib/systemd/system/clamav-freshclam.service; enabled;
>> vendor preset: disabled)
>> Active: inactive (dead) since Thu 2021-07-01 13:28:11 +08;
>> 1h 8min ago
>> Condition: start condition failed at Thu 2021-07-01 14:19:49
>> +08; 17min ago
>> ConditionPathExists=!/etc/cron.d/clamav-update was not met
>> Docs: man:freshclam(1)
>> man:freshclam.conf(5)
>> https://www.clamav.net/documents
>> <https://www.clamav.net/documents>
>> Main PID: 1164 (code=exited, status=0/SUCCESS)
>>
>> systemd[1]: Stopped ClamAV virus database
>>
>> Appreciate anyone assisting me?
>>
>> --
>> */Regards,
>> Manikandan.C
>> /*
>>
>> _______________________________________________
>>
>> clamav-users mailing list
>> clamav-users at lists.clamav.net <mailto:clamav-users at lists.clamav.net>
>> https://lists.clamav.net/mailman/listinfo/clamav-users <https://lists.clamav.net/mailman/listinfo/clamav-users>
>>
>>
>> Help us build a comprehensive ClamAV guide:
>> https://github.com/vrtadmin/clamav-faq <https://github.com/vrtadmin/clamav-faq>
>>
>> http://www.clamav.net/contact.html#ml <http://www.clamav.net/contact.html#ml>
>
> _______________________________________________
>
> clamav-users mailing list
> clamav-users at lists.clamav.net
> <mailto:clamav-users at lists.clamav.net>
> https://lists.clamav.net/mailman/listinfo/clamav-users
> <https://lists.clamav.net/mailman/listinfo/clamav-users>
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
> <https://github.com/vrtadmin/clamav-faq>
>
> http://www.clamav.net/contact.html#ml
> <http://www.clamav.net/contact.html#ml>
>
>
>
> --
> */Regards,
> Manikandan.C
> /*
>
>
>
> --
> */Regards,
> Manikandan.C
> /*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20210705/482d5d49/attachment.htm>
More information about the clamav-users
mailing list