[clamav-users] clamav-freshclam service issue
Eric Broch
ebroch at whitehorsetc.com
Mon Jul 5 17:55:48 UTC 2021
You could also just delete file
# rm /etc/cron.d/clamav-update
but I imagine it will be there on next update.
On 7/5/2021 11:53 AM, Eric Broch wrote:
>
> Freshclam doesn't start because databases are now updated by cron job
> '/etc/cron.d/clamav-update' in 'freshclam.service' file. If cron job
> file exists freshclam daemon is not necessary.
>
> Pick one of two options:
>
> 1)
>
> vi /usr/lib/systemd/system/clamav-freshclam.service
>
> replace
>
> ConditionPathExists=!/etc/cron.d/clamav-update
>
> with
>
> #ConditionPathExists=!/etc/cron.d/clamav-update
>
> vi /etc/cron.d/clamav-update
>
> replace
>
> 0 */3 * * * root /usr/share/clamav/freshclam-sleep > /dev/null
>
> with
>
> #0 */3 * * * root /usr/share/clamav/freshclam-sleep > /dev/null
>
> or
>
> 2)
>
> vi /usr/bin/toaststat
>
> replace
>
> for sv in clamd at scan clamav-freshclam spamassassin ... ... ...
>
> with
>
> for sv in clamd at scan spamassassin ... ... ...
>
>
> On 7/5/2021 1:18 AM, ChandranManikandan wrote:
>> Hi Folks,
>>
>> Any way to resolve this issue clamav-freshclam service?
>>
>> When I ran the freshclam command, it showed the log without any
>> issue, but when I ran toaststat it stopped.
>>
>>
>>
>> On Fri, Jul 2, 2021 at 12:17 PM ChandranManikandan <kandakc at gmail.com
>> <mailto:kandakc at gmail.com>> wrote:
>>
>> Hi Eric,
>>
>> Am running Centos 7 64 Bit with the Qmailtoaster system. Usually
>> update through the command line .
>> I have seen the clamav 102-2.elf version update on my system in
>> the webmin control panel and updated through the panel.
>> The freshclam command is running without issue, but when I ran
>> toaststat clamav-freshclam was stopped and unable to be active
>> and run.
>>
>> My output below.
>> *cat /usr/lib/systemd/system/clamav-freshclam.service*
>>
>> [Unit]
>> Description=ClamAV virus database updater
>> Documentation=man:freshclam(1) man:freshclam.conf(5)
>> https://www.clamav.net/documents <https://www.clamav.net/documents>
>> # If user wants it run from cron, don't start the daemon.
>> ConditionPathExists=!/etc/cron.d/clamav-update
>> Wants=network-online.target
>> After=network-online.target
>>
>> [Service]
>> ExecStart=/usr/bin/freshclam -d --foreground=true
>>
>> [Install]
>> WantedBy=multi-user.target
>>
>> *cat /etc/freshclam.conf*
>>
>> ## Example config file for freshclam
>> ## Please read the freshclam.conf(5) manual before editing this file.
>> ##
>>
>>
>> # Comment or remove the line below.
>> #Example
>>
>> # Path to the database directory.
>> # WARNING: It must match clamd.conf's directive!
>> # Default: hardcoded (depends on installation options)
>> #DatabaseDirectory /var/lib/clamav
>>
>> # Path to the log file (make sure it has proper permissions)
>> # Default: disabled
>> #UpdateLogFile /var/log/clamav/freshclam.log
>> #UpdateLogFile /var/log/freshclam.log
>>
>> # Maximum size of the log file.
>> # Value of 0 disables the limit.
>> # You may use 'M' or 'm' for megabytes (1M = 1m = 1048576 bytes)
>> # and 'K' or 'k' for kilobytes (1K = 1k = 1024 bytes).
>> # in bytes just don't use modifiers. If LogFileMaxSize is enabled,
>> # log rotation (the LogRotate option) will always be enabled.
>> # Default: 1M
>> LogFileMaxSize 2M
>>
>> # Log time with each message.
>> # Default: no
>> LogTime yes
>>
>> # Enable verbose logging.
>> # Default: no
>> LogVerbose yes
>>
>> # Use system logger (can work together with UpdateLogFile).
>> # Default: no
>> #LogSyslog yes
>>
>> # Specify the type of syslog messages - please refer to 'man syslog'
>> # for facility names.
>> # Default: LOG_LOCAL6
>> #LogFacility LOG_MAIL
>>
>> # Enable log rotation. Always enabled when LogFileMaxSize is enabled.
>> # Default: no
>> LogRotate yes
>>
>> # This option allows you to save the process identifier of the daemon
>> # Default: disabled
>> #PidFile /var/run/freshclam.pid
>>
>> # By default when started freshclam drops privileges and switches
>> to the
>> # "clamav" user. This directive allows you to change the database
>> owner.
>> # Default: clamav (may depend on installation options)
>> #DatabaseOwner clamupdate
>>
>> # Use DNS to verify virus database version. Freshclam uses DNS
>> TXT records
>> # to verify database and software versions. With this directive
>> you can change
>> # the database verification domain.
>> # WARNING: Do not touch it unless you're configuring freshclam to
>> use your
>> # own database verification domain.
>> # Default: current.cvd.clamav.net <http://current.cvd.clamav.net>
>> #DNSDatabaseInfo current.cvd.clamav.net
>> <http://current.cvd.clamav.net>
>>
>> # database.clamav.net <http://database.clamav.net> is now the
>> primary domain name to be used world-wide.
>> # Now that CloudFlare is being used as our Content Delivery
>> Network (CDN),
>> # this one domain name works world-wide to direct freshclam to
>> the closest
>> # geographic endpoint.
>> # If the old db.XY.clamav.net <http://db.XY.clamav.net> domains
>> are set, freshclam will automatically
>> # use database.clamav.net <http://database.clamav.net> instead.
>> DatabaseMirror database.clamav.net <http://database.clamav.net>
>>
>> # How many attempts to make before giving up.
>> # Default: 3 (per mirror)
>> #MaxAttempts 5
>>
>> # With this option you can control scripted updates. It's highly
>> recommended
>> # to keep it enabled.
>> # Default: yes
>> #ScriptedUpdates yes
>>
>> # By default freshclam will keep the local databases (.cld)
>> uncompressed to
>> # make their handling faster. With this option you can enable the
>> compression;
>> # the change will take effect with the next database update.
>> # Default: no
>> #CompressLocalDatabase no
>>
>> # With this option you can provide custom sources for database files.
>> # This option can be used multiple times. Support for:
>> # http(s)://, ftp(s)://, or file://
>> # Default: no custom URLs
>> #DatabaseCustomURL http://myserver.example.com/mysigs.ndb
>> <http://myserver.example.com/mysigs.ndb>
>> #DatabaseCustomURL https://myserver.example.com/mysigs.ndb
>> <https://myserver.example.com/mysigs.ndb>
>> #DatabaseCustomURL
>> https://myserver.example.com:4567/whitelist.wdb
>> <https://myserver.example.com:4567/whitelist.wdb>
>> #DatabaseCustomURL ftp://myserver.example.com/example.ldb
>> <ftp://myserver.example.com/example.ldb>
>> #DatabaseCustomURL ftps://myserver.example.com:4567/example.ndb
>> <http://myserver.example.com:4567/example.ndb>
>> #DatabaseCustomURL file:///mnt/nfs/local.hdb
>> # This option allows you to easily point freshclam to private
>> mirrors.
>> # If PrivateMirror is set, freshclam does not attempt to use DNS
>> # to determine whether its databases are out-of-date, instead it will
>> # use the If-Modified-Since request or directly check the headers
>> of the
>> # remote database files. For each database, freshclam first attempts
>> # to download the CLD file. If that fails, it tries to download the
>> # CVD file. This option overrides DatabaseMirror, DNSDatabaseInfo
>> # and ScriptedUpdates. It can be used multiple times to provide
>> # fall-back mirrors.
>> # Default: disabled
>> #PrivateMirror mirror1.example.com <http://mirror1.example.com>
>> #PrivateMirror mirror2.example.com <http://mirror2.example.com>
>>
>> # Number of database checks per day.
>> # Default: 12 (every two hours)
>> #Checks 24
>>
>> # Proxy settings
>> # The HTTPProxyServer may be prefixed with [scheme]:// to specify
>> which kind
>> # of proxy is used.
>> # http:// HTTP Proxy. Default when no scheme or proxy type
>> is specified.
>> # https:// HTTPS Proxy. (Added in 7.52.0 for OpenSSL, GnuTLS
>> and NSS)
>> # socks4:// SOCKS4 Proxy.
>> # socks4a:// SOCKS4a Proxy. Proxy resolves URL hostname.
>> # socks5:// SOCKS5 Proxy.
>> # socks5h:// SOCKS5 Proxy. Proxy resolves URL hostname.
>> # Default: disabled
>> #HTTPProxyServer https://proxy.example.com
>> <https://proxy.example.com>
>> #HTTPProxyPort 1234
>> #HTTPProxyUsername myusername
>> #HTTPProxyPassword mypass
>>
>> # If your servers are behind a firewall/proxy which applies
>> User-Agent
>> # filtering you can use this option to force the use of a different
>> # User-Agent header.
>> # Default: clamav/version_number
>> #HTTPUserAgent SomeUserAgentIdString
>>
>> # Use aaa.bbb.ccc.ddd as client address for downloading
>> databases. Useful for
>> # multi-homed systems.
>> # Default: Use OS'es default outgoing IP address.
>> #LocalIPAddress aaa.bbb.ccc.ddd
>>
>> # Send the RELOAD command to clamd.
>> # Default: no
>> #NotifyClamd /path/to/clamd.conf
>>
>> # Run command after successful database update.
>> # Default: disabled
>> #OnUpdateExecute command
>> # Run command when database update process fails.
>> # Default: disabled
>> #OnErrorExecute command
>>
>> # Run command when freshclam reports outdated version.
>> # In the command string %v will be replaced by the new version
>> number.
>> # Default: disabled
>> #OnOutdatedExecute command
>>
>> # Don't fork into background.
>> # Default: no
>> #Foreground yes
>>
>> # Enable debug messages in libclamav.
>> # Default: no
>> #Debug yes
>>
>> # Timeout in seconds when connecting to database server.
>> # Default: 30
>> #ConnectTimeout 60
>>
>> # Timeout in seconds when reading from database server.
>> # Default: 0
>> #ReceiveTimeout 1800
>>
>> # With this option enabled, freshclam will attempt to load new
>> # databases into memory to make sure they are properly handled
>> # by libclamav before replacing the old ones.
>> # Default: yes
>> #TestDatabases yes
>>
>> # This option enables support for Google Safe Browsing. When
>> activated for
>> # the first time, freshclam will download a new database file
>> # (safebrowsing.cvd) which will be automatically loaded by clamd and
>> # clamscan during the next reload, provided that the heuristic
>> phishing
>> # detection is turned on. This database includes information
>> about websites
>> # that may be phishing sites or possible sources of malware. When
>> using this
>> # option, it's mandatory to run freshclam at least every 30 minutes.
>> # Freshclam uses the ClamAV's mirror infrastructure to distribute the
>> # database and its updates but all the contents are provided
>> under Google's
>> # terms of use.
>> # See
>> https://transparencyreport.google.com/safe-browsing/overview
>> <https://transparencyreport.google.com/safe-browsing/overview>
>> # and https://www.clamav.net/documents/safebrowsing
>> <https://www.clamav.net/documents/safebrowsing> for more information.
>> # Default: no
>> #SafeBrowsing yes
>> # This option enables downloading of bytecode.cvd, which includes
>> additional
>> # detection mechanisms and improvements to the ClamAV engine.
>> # Default: yes
>> #Bytecode no
>>
>> # Include an optional signature databases (opt-in).
>> # This option can be used multiple times.
>> #ExtraDatabase dbname1
>> #ExtraDatabase dbname2
>>
>> # Exclude a standard signature database (opt-out).
>> # This option can be used multiple times.
>> #ExcludeDatabase dbname1
>> #ExcludeDatabase dbname2
>>
>>
>>
>>
>>
>> On Thu, Jul 1, 2021 at 9:54 PM Eric Broch via clamav-users
>> <clamav-users at lists.clamav.net
>> <mailto:clamav-users at lists.clamav.net>> wrote:
>>
>> # cat /etc/freshclam.conf
>>
>> Show output on list.
>>
>> On 7/1/2021 2:46 AM, ChandranManikandan via clamav-users wrote:
>>> Hi Folks,
>>>
>>> I have updated the below packages through the webmin panel.
>>> Jul 01 13:27:50 Updated: clamav-filesystem-0.103.2-2.el7.noarch
>>> Jul 01 13:27:51 Updated: clamav-lib-0.103.2-2.el7.x86_64
>>> Jul 01 13:27:52 Updated: clamav-update-0.103.2-2.el7.x86_64
>>> Jul 01 13:27:52 Updated: clamav-0.103.2-2.el7.x86_64
>>> Jul 01 13:27:52 Updated: clamd-0.103.2-2.el7.x86_64
>>>
>>> After updating i got the below clamav-freshclam error.
>>>
>>> systemd service: clamav-freshclam: [ FAILED ]
>>>
>>> I have restarted the clamav-freshclam service but still the
>>> below message came.
>>>
>>> ● clamav-freshclam.service - ClamAV virus database updater
>>> Loaded: loaded
>>> (/usr/lib/systemd/system/clamav-freshclam.service; enabled;
>>> vendor preset: disabled)
>>> Active: inactive (dead) since Thu 2021-07-01 13:28:11
>>> +08; 1h 8min ago
>>> Condition: start condition failed at Thu 2021-07-01 14:19:49
>>> +08; 17min ago
>>> ConditionPathExists=!/etc/cron.d/clamav-update was not met
>>> Docs: man:freshclam(1)
>>> man:freshclam.conf(5)
>>> https://www.clamav.net/documents
>>> <https://www.clamav.net/documents>
>>> Main PID: 1164 (code=exited, status=0/SUCCESS)
>>>
>>> systemd[1]: Stopped ClamAV virus database
>>>
>>> Appreciate anyone assisting me?
>>>
>>> --
>>> */Regards,
>>> Manikandan.C
>>> /*
>>>
>>> _______________________________________________
>>>
>>> clamav-users mailing list
>>> clamav-users at lists.clamav.net <mailto:clamav-users at lists.clamav.net>
>>> https://lists.clamav.net/mailman/listinfo/clamav-users <https://lists.clamav.net/mailman/listinfo/clamav-users>
>>>
>>>
>>> Help us build a comprehensive ClamAV guide:
>>> https://github.com/vrtadmin/clamav-faq <https://github.com/vrtadmin/clamav-faq>
>>>
>>> http://www.clamav.net/contact.html#ml <http://www.clamav.net/contact.html#ml>
>>
>> _______________________________________________
>>
>> clamav-users mailing list
>> clamav-users at lists.clamav.net
>> <mailto:clamav-users at lists.clamav.net>
>> https://lists.clamav.net/mailman/listinfo/clamav-users
>> <https://lists.clamav.net/mailman/listinfo/clamav-users>
>>
>>
>> Help us build a comprehensive ClamAV guide:
>> https://github.com/vrtadmin/clamav-faq
>> <https://github.com/vrtadmin/clamav-faq>
>>
>> http://www.clamav.net/contact.html#ml
>> <http://www.clamav.net/contact.html#ml>
>>
>>
>>
>> --
>> */Regards,
>> Manikandan.C
>> /*
>>
>>
>>
>> --
>> */Regards,
>> Manikandan.C
>> /*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20210705/9e8d7778/attachment.htm>
More information about the clamav-users
mailing list