From owner-freebsd-questions@FreeBSD.ORG Tue Nov 16 17:17:16 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3B4F016A4CE for ; Tue, 16 Nov 2004 17:17:16 +0000 (GMT) Received: from pony.ultraservers.net (pony.fastservers.net [64.62.155.197]) by mx1.FreeBSD.org (Postfix) with ESMTP id EC66343D2D for ; Tue, 16 Nov 2004 17:17:15 +0000 (GMT) (envelope-from adam@fastservers.net) Received: from [192.104.109.162] (helo=adam) by pony.ultraservers.net with esmtp (Exim 4.43) id 1CU6x7-0003Lr-Sj; Tue, 16 Nov 2004 09:17:14 -0800 From: "Adam M Ryan" To: Date: Tue, 16 Nov 2004 11:17:13 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.6353 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.181 Thread-Index: AcTMABznw4fNNkryTvmgAaumvwVDaw== X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - pony.ultraservers.net X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [47 12] X-AntiAbuse: Sender Address Domain - fastservers.net X-Source: X-Source-Args: X-Source-Dir: Message-Id: <20041116171715.EC66343D2D@mx1.FreeBSD.org> cc: freebsd-questions@slightlystrange.org Subject: Re: Exiscan+clamav X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Nov 2004 17:17:16 -0000 Thanks for all the replies. Yes Clamd is running: ps uaxww | grep clamav clamav 53191 0.0 1.6 10576 8128 ?? Is 8:48AM 0:00.00 /usr/local/sbin/clamd I have also went ahead and changed the settings in clamd to log everything. Still not seeing anything in the clamd log. Not sure what else I am missing? I used clamscan on some test files and they seemed to get deteceted without issue. Any other help? Maybe a posting of your clamd.conf and exim.conf? Thanks Adam --tThc/1wpZn/ma/RB Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Nov 15, 2004 at 08:20:31PM -0600, Adam M Ryan wrote: > Right now I am using Exim 4.43 and clamav-0.80_1 both installed from port= s. > I am trying to get clamav to scan incoming email. I have altered my exim > configure file with the following: >=20 > av_scanner=3Dclamd:/var/run/clamav/clamd >=20 >=20 >=20 > deny message =3D This message contains malware ($malware_name) > demime =3D * > malware =3D * This is fine - exactly the settings I am using. > I have also double checked everything in > /usr/ports/mail/exim/files/POST-INSTALL-NOTES.clamd. >=20 > But I still can't get my emailed scanned by clamav. Someone else asked if clamd is really running. Have you edited the clamd conf file? The first item in the file needs to commented out to activate the config: # Comment or remove the line below. #Example It may be useful to turn on LogVerbose in clamd.conf too - it will log everything it scans, not just infected streams. Once you are happy it is working, you can disable LogVerbose to save your /var. > Does anyone have a working configure file that they could post? Your config is what is in the documentation and the default Exim configure file anyway. HTH Dan --=20 Daniel Bye PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc PGP Key fingerprint: 3B9D 8BBB EB03 BA83 5DB4 3B88 86FC F03A 90A1 BE8F _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ --tThc/1wpZn/ma/RB Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQFBmddzhvzwOpChvo8RAq+AAJ0VvDnFznA0ev/6qAAKDrf3v8AfxQCg0/6D 0IPEYfZKxEXw4ewdpifbWUA= =aIkv -----END PGP SIGNATURE----- --tThc/1wpZn/ma/RB--