Date: Mon, 20 Apr 2009 09:52:15 GMT From: Michael Scheidell <scheidell@secnap.net> To: freebsd-gnats-submit@FreeBSD.org Subject: ports/133868: security/clamav add reload to rs. script to load third party sig updates Message-ID: <200904200952.n3K9qFvn032382@www.freebsd.org> Resent-Message-ID: <200904201000.n3KA0GcV038525@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 133868
>Category: ports
>Synopsis: security/clamav add reload to rs. script to load third party sig updates
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Mon Apr 20 10:00:15 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator: Michael Scheidell
>Release: 6.4/7.1
>Organization:
SECNAP Network Security
>Environment:
na
>Description:
as of clamav .94.1, the clamdscan program will accept the --reload option and send a reload to the clamd socket.
this is needed to load third party signatures, such as sanesecurity sigs, or user generated signatures.
comparing this to restart to load sigs:
a restart has to stop the clamd socket, this blocking or rejecting email during the process, and may take 60 to 120 seconds or more on a busy system.
--reload doesn't stop any current clamd/ clamdscan processes and is much quicker and less likely to cause email rejects or delays.
>How-To-Repeat:
load new sigs,
do ../rc.d/clamav-clamd reload
(illegal option)
do ../rc.d/clamav-clamd restart
watch mail and /var/log/clamav/clamd.logs.
type:
clamdscan --reload
tail mail and clamd.logs.. you will see no mail loss or delay and you will see sigs reloaded.
>Fix:
need to bump the portversion only if its important for new full package to be rebuild. but don't bump portversion because it is not all that necessarily. if user didn't miss functionality, then they didn't need it.
suggest rather that this be added to next clamav (minor) update.
maybe those two sitting in pr.
diff -bBru /tmp/clamav/ ./
diff -bBru /tmp/clamav/files/clamav-clamd.in ./files/clamav-clamd.in
--- /tmp/clamav/files/clamav-clamd.in 2009-03-27 07:52:22.000000000 -0400
+++ ./files/clamav-clamd.in 2009-04-18 07:25:00.000000000 -0400
@@ -41,4 +41,12 @@
fi
}
+extra_commands="reload"
+reload_cmd=clamd_reload
+
+clamd_reload()
+{
+ %%PREFIX%%/bin/clamdscan --reload
+}
+
run_rc_command "$1"
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200904200952.n3K9qFvn032382>