Re: [Exim] ClamAV Problem

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMOdhiambo G. Washington at <-
MOliver Eikemeier at ->
Delete this message
Reply to this message
Author: Sheldon Hearn
Date:  
To: Wolf-Guido Lutz
CC: exim-users
Subject: Re: [Exim] ClamAV Problem
On (2003/10/16 17:12), Wolf-Guido Lutz wrote:

> I have updated to Exim 4.24 recently with exiscan, clamav and spamassassin.
> Now when I enable antivirus scanning in exim's configure file, I get
>
> 2003-10-16 16:55:37 1AA9XN-0000Gd-0n malware acl condition: clamd: ClamAV
> returned /var/spool/exim/scan/1AA9XN-0000Gd-0n: Can't access the file ERROR

Here's my ClamAV configuration checklist. It's FreeBSD-specific, but
about the only thing that affects are directory paths and usernames.
Adjust accordingly.

Ciao,
Sheldon.
--
http://starjuice.net/

--------------------------------------------------------------------------
The following steps will enable clamd malware scanning using exiscan ACLs.
It is important to follow them in sequence.

* Install security/clamav from the ports tree.

* Add user clamav to the mail group in /etc/group.

* Create /var/log/clamav and /var/run/clamav, and change the ownership
of both to clamav:clamav.

* In Exim's configure file, set av_scanner=clamd:/var/run/clamav/clamd

* Adjust the exiscan ACLs in Exim's configure file. Make sure you use
the demime option with the malware check, e.g.: 

   deny message = This message contains malware ($malware_name)
    demime  = *
    malware = *


* Edit clamav.conf as follows: 

    LogFile /var/log/clamav/clamd.log
    PidFile /var/run/clamav/clamd.pid
    LocalSocket /var/run/clamav/clamd
    User clamav
    AllowSupplementaryGroups
    ScanArchive


You may wish to make other changes as well.

* Install the shell script included at the end of these instructions as
/usr/local/etc/rc.d/clamd.sh, taking care to make it executable.

* Run freshclam.

* Add a cron job that runs freshclam --daemon-notify --quiet at least
once a day.

* Start clamd with /usr/local/etc/rc.d/clamd.sh start .

* Start Exim with %%RC_DIR%%/exim%%RC_SUFX%% start .

Sheldon Hearn <sheldonh@???>

#!/bin/sh
#
PREFIX=/usr/local
CLAMAV_BIN=${PREFIX}/sbin 

case $1 in
start)
    [ -x ${CLAMAV_BIN}/clamd ] && {
    ${CLAMAV_BIN}/clamd
    echo -n ' clamd'
    }
    ;;


stop)
    kill `cat /var/run/clamav/clamd.pid`
    if [ $? = 0 ] ; then
        echo -n ' clamd'
    fi
    ;;


restart)
    /usr/local/etc/rc.d/clamd.sh stop && \
        /usr/local/etc/rc.d/clamd.sh start
    ;;


*)
    echo "usage: `basename $0` {start|stop|restart}" >&2
    exit 64
    ;;
esac



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [Exim] conditions....Re: [Exim] Re: LDAP virtual users ACL condition->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)