From: Thomas N. <th...@xy...> - 2008-11-09 21:49:20
|
I switched to another scanner, F-Prot. The current version, V6, is not available as a FreeBSD port and had to be installed manually on my system. mkdir /usr/local/src cd /usr/local/src wget http://files.f-prot.com/files/unix-trial/fp-FreeBSD-i386-ws.tar.gz tar -zxvf fp-FreeBSD-i386-ws.tar.gz mv f-prot /usr/local/ cd /usr/local/f-prot ./install-f-prot.pl (default on all questions is OK) Add entry to amavisd.conf / av_scanners_backup. Use example-entry from amavisd.conf-dist. Works fine! Rgds -----Original Message----- From: Thomas Novin <th...@xy...> To: ama...@li... Subject: [AMaViS-user] Bug in amavisd-new using virus-scanner BitDefender Date: Fri, 07 Nov 2008 10:55:08 +0100 Mailer: Evolution 2.24.1 Hello I have tried to add a backup virus scanner. I took the example for BitDefender from amavisd.conf-dist (provided with amavisd-new-2.6.1_1,1 in FreeBSD). When I enable full debug I can see that something goes wrong when scanning and the email is wrongfully marked as clean (I'm sending an attachment with the EICAR test-virus). Relevant config from amavisd.conf: @av_scanners_backup = ( ### http://www.bitdefender.com/ #['BitDefender', 'bdscan', # new version # '--action=ignore --no-list {}', qr/^Infected files *:0+(?!\d)/, # qr/^(?:Infected files|Identified viruses|Suspect files) *:0*[1-9]/, # qr/(?:suspected|infected): (.*)(?:\033|$)/ ], ### http://www.bitdefender.com/ ['BitDefender', 'bdc', # old version '--arc --mail --alev 10 --flev 10 --nowarn {}', qr/^Infected files *:0+(?!\d)/, qr/^(?:Infected files|Identified viruses|Suspect files) *:0*[1-9]/, qr/(?:suspected|infected): (.*)(?:\033|$)/ ], # consider also: --all --nowarn --alev=15 --flev=15. The --all argument may # not apply to your version of bdc, check documentation and see 'bdc --help' # always succeeds (uncomment to consider mail clean if all other scanners fail) # ['always-clean', sub {0}], ); Log excerpt: Nov 7 10:48:08 <mail.err> xyz amavis[82618]: (82618-06) (!!)WARN: all primary virus scanners failed, considering backups Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) run_av (BitDefender): query template(0,0): --arc --mail --alev 10 --flev 10 --nowarn {} Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) prolong_timer run_av: timer set to 10 s Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) prolong_timer run_av: timer set to 10 s Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) run_av Using (BitDefender): /usr/local/bin/bdc --arc --mail --alev 10 --flev 10 --nowarn /var/amavis/tmp/amavis-20081107T094933-82618/parts Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) run_command: [83935] /usr/local/bin/bdc --arc --mail --alev 10 --flev 10 --nowarn /var/amavis/tmp/amavis-20081107T094933-82618/parts </dev/null 2>&1 Nov 7 10:48:08 <mail.debug> xyz amavis[83935]: (82618-06) open_on_specific_fd: target fd0 closing, to become < /dev/null Nov 7 10:48:08 <mail.debug> xyz amavis[83935]: (82618-06) open_on_specific_fd: target fd2 closing, to become > &1 Nov 7 10:48:08 <mail.debug> xyz amavis[83935]: (82618-06) open_on_specific_fd: target fd2 dup2 from fd1 > &1 Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) collect_results from [83935] (BitDefender), 448 bytes, (limit 204800) Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) prolong_timer run_av: timer set to 10 s Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) run_av: /usr/local/bin/bdc exit 0, BDC/FreeBSD 5.x-Console (v7.0-2545) (i386) (Dec 22 2004 19:56:57)\nCopyright (C) 1996-2004 SOFTWIN SRL. All rights reserved.\n\nError: Invalid path: '/home/var/amavis/tmp/amavis-20081107T094933-82618/parts/10'\nError: Invalid path: '/home/var/amavis/tmp/amavis-20081107T094933-82618/parts/10'\n\n \nResults:\nFolders ...:1\nFiles ...:1\nPacked ...:0\nArchives ...:0 \nInfected files :0\nSuspect files ...:0\nI/O errors ...:0\n Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) run_av (BitDefender): CLEAN Nov 7 10:48:08 <mail.debug> xyz amavis[82618]: (82618-06) run_av (BitDefender) result: clean Has anyone got a working setup for BDC? Rgds -- Thomas Novin <th...@xy...> GPG Key ID CF62C14F http://xyz.pp.se/~thnov/gpg.asc |