Hello,
I hope someone can help me out with this. I'm trying to setup kavdaemon
support, with exiscan 4.04-6, and exim 4.04. (I'm looking for the increased
performance that will hopefully arise with this setup. The command line
scanner works fine, but tends to be slow.)
Exican config:
exiscan_scanner = kavdaemon
exiscan_crypt_salt = fo
exiscan_unpack_mime = true
exiscan_kavdaemon_socket = /usr/local/share/AVP/AvpCtl
I've started the kavdaemon with: ./kavdaemon -f=/usr/local/share/AVP /
In this test, kavdaemon is running as root, and exim runs as it's own user.
the AvpCtl file has the following permissions:
srwxrwxrwx 1 root wheel 0 May 16 11:37 AvpCtl
Every time I send the server an email that it needs to scan, the following
appears in the log:
2002-05-16 11:38:29 178Q8z-000G6J-00 temporarily rejected by local_scan():
exiscan: kavdaemon reported error (retcode 15)
However, Kaspersky is finding the virus (from the kaspersky log file):
Query for the tests: <0>04 Apr
05:00:00:/var/spool/exim/scan/178Q8z-000G6J-00
/var/spool/exim/scan/178Q8z-000G6J-00/178Q8z-000G6J-00-complete archive:
Mail
/var/spool/exim/scan/178Q8z-000G6J-00/178Q8z-000G6J-00-complete/[From Bryce
Burnip <bryce@???>][Date Thu, 16 May 2002
11:38:27 -0700]/sexyvirgin.ziparchive: ZIP
/var/spool/exim/scan/178Q8z-000G6J-00/178Q8z-000G6J-00-complete/[From Bryce
Burnip <bryce@???>][Date Thu, 16 May 2002
11:38:27 -0700]/sexyvirgin.zip/sexy virgin.scr infected: I-Worm.Hybris.b
File /var/spool/exim/scan/178Q8z-000G6J-00/178Q8z-000G6J-00-complete
contains a virus.
Current object: <0>04 Apr 05:00:00:/var/spool/exim/scan/178Q8z-000G6J-00
I'm running this all under FreeBSD 4.5.
Any idea what might be wrong? Is anyone out there using exiscan and
kavdaemon support?
Thanks,
Bryce