Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Dear friend
I m using FC7 in my server. And using postfix as mail server.
SO i configured amavis, clamav antivirus. My problem is when I send any mail, amavised try to scan it but failure...
Quote:
Oct 7 10:30:17 Server1 amavis[10025]: (10025-03) (!)run_av (ClamAV-clamd, built-in i/f): Too many retries to talk to /var/spool/amavisd/clamd.sock (Can't connect to UNIX socket /var/spool/amavisd/clamd.sock: Con nection refused) at (eval 45) line 310.
Oct 7 10:30:17 Server1 amavis[10025]: (10025-03) (!!)ClamAV-clamd av-scanner FAILED: CODE(0x8d38600) Too many retries to talk to /var/spool/amavisd/clamd.sock (Can't connect to UNIX socket /var/spool/amavisd/cla md.sock: Connection refused) at (eval 45) line 310. at (eval 45) line 511.
Oct 7 10:30:17 Server1 amavis[10025]: (10025-03) (!!)WARN: all primary virus scanners failed, considering backups
the file already exit and user is amavise permission set to 644 later 777. I don't know whats wrong with me. please help.........
there is no amavised log., all in maillog, the msg is........
Quote:
Oct 9 09:46:10 Server1 amavis[2991]: (02991-14) (!)ClamAV-clamd: Can't connect to UNIX socket /var/spool/amavisd/clamd.sock: Connection refused, retrying (2)
Oct 9 09:46:16 Server1 amavis[2991]: (02991-14) (!)run_av (ClamAV-clamd, built-in i/f): Too many retries to talk to /var/spool/amavisd/clamd.sock (Can't connect to UNIX socket /var/spool/amavisd/clamd.sock: Connection refused) at (eval 45) line 310.
Oct 9 09:46:16 Server1 amavis[2991]: (02991-14) (!!)ClamAV-clamd av-scanner FAILED: CODE(0x9b245a0) Too many retries to talk to /var/spool/amavisd/clamd.sock (Can't connect to UNIX socket /var/spool/amavisd/clamd.sock: Connection refused) at (eval 45) line 310. at (eval 45) line 511.
Oct 9 09:46:16 Server1 amavis[2991]: (02991-14) (!!)WARN: all primary virus scanners failed, considering backups
In clamd.conf, what do you have for LocalSocket, and what do you have set in amavisd.conf along the lines of
# ### http://www.clamav.net/
['ClamAV-clamd',
\&ask_daemon, ["CONTSCAN {}\n", "/var/run/clamav/clamd.socket"],
qr/\bOK$/, qr/\bFOUND$/,
qr/^.*?: (?!Infected Archive)(.*) FOUND$/ ],
# # NOTE: run clamd under the same user as amavisd, or run it under its own
# # uid such as clamav, add user clamav to the amavis group, and then add
# # AllowSupplementaryGroups to clamd.conf;
# # NOTE: match socket name (LocalSocket) in clamav.conf to the socket name in
# # this entry; when running chrooted one may prefer socket "$MYHOME/clamd".
They need to be the same file and if they are, then it's probably a permissions issue
Do you have clamd running ("chkconfig clamd on" and "service clamd start" - second command before first reboot only)?
Last edited by billymayday; 10-09-2007 at 05:38 AM.
I had this same issue and your answer lead me to the proper fix billmayday. Thanks for that. I am using FC6 and with amavisd and clamav the actual script to start is clamd.amavisd, so....
chkconfig clamd.amavisd on
service clamd.amavisd start
service postfix restart
This got me up and running. Thanks so much for the help.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.