Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-security

From: Nik <n.murino@××××××××.it>
To: gentoo-security@l.g.o
Subject: [gentoo-security] amavisd new clamav problem .....BUG???
Date: Fri, 30 Jul 2004 07:11:20
Message-Id: 5.1.1.6.0.20040730091030.0249dff0@mail.itia.cnr.it
1 Hi list,
2
3 I'm having some trouble with my mail server, I use postfix 2.0.19,
4 amavisd-new20030616_p8 and clamav 0.70,
5
6 I have problem with nested virus, if for example I send
7 sample-virus-nested.txt.gz the mail arrive to my mailbox and the virus is
8 not detected, here are my log
9
10 Jul 26 14:26:09 mail postfix/smtpd[15653]: starting TLS engine
11 Jul 26 14:26:09 mail postfix/smtpd[15653]: connect from unknown[127.0.0.1]
12 Jul 26 14:26:09 mail postfix/smtpd[15653]: EE1893F9B: client=unknown[127.0.0.1]
13 Jul 26 14:26:10 mail postfix/cleanup[27151]: EE1893F9B:
14 message-id=<20040726122609.BDDFF3F96@×××××××××××××××××.com>
15 Jul 26 14:26:10 mail postfix/qmgr[2253]: EE1893F9B:
16 from=<root@××××××××××××.com>, size=2058, nrcpt=1 (queue active)
17 Jul 26 14:26:10 mail postfix/smtpd[15653]: disconnect from unknown[127.0.0.1]
18 Jul 26 14:26:10 mail amavis[19503]: (19503-01) Passed,
19 <root@××××××××××××.com> -> <n.murino@××××××××××××.com>, Message-ID:
20 <20040726122609.BDDFF3F96@×××××××××××××××××.com>, Hits: 0.691
21 Jul 26 14:26:10 mail amavis[19503]: (19503-01) TIMING [total 246 ms] - SMTP
22 LHLO: 3 (1%), SMTP pre-MAIL: 0 (0%), mkdir tempdir: 0 (0%), create
23 email.txt: 1 (0%), SMTP pre-DATA-flush: 4 (1%), SMTP DATA: 32 (13%), body
24 hash: 1 (0%), mkdir parts: 1 (0%), mime_decode: 10 (4%), get-file-type: 6
25 (2%), decompose_part: 7 (3%), get-file-type: 5 (2%), parts: 1 (0%),
26 AV-scan-1: 12 (5%), SA msg read: 1 (1%), SA parse: 1 (0%), SA check: 56
27 (23%), fwd-connect: 19 (8%), fwd-mail-from: 1 (1%), fwd-rcpt-to: 1 (0%),
28 write-header: 2 (1%), fwd-data: 0 (0%), fwd-data-end: 80 (32%),
29 fwd-rundown: 1 (0%), unlink-1-files: 4 (1%), rundown: 0 (0%)
30 Jul 26 14:26:10 mail postfix/lmtp[22367]: BDDFF3F96:
31 to=<n.murino@××××××××××××.com>, relay=127.0.0.1[127.0.0.1], delay=1,
32 status=sent (250 2.6.0 Ok, id=19503-01, from MTA: 250 Ok: queued as EE1893F9B)
33 Jul 26 14:26:10 mail postfix/local[21220]: EE1893F9B:
34 to=<murino@××××××××××××.com>, orig_to=<n.murino@××××××××××××.com>,
35 relay=local, delay=1, status=sent (maildir)
36
37
38 the same configuration file for amavisd-new, postfix and clamav on trustix
39 2.1 find the virus and block the mail, in this setup however I have used
40 amavisd-new20030616_p7,
41
42 This problem is specific for gentoo? is caused by amavis? or is a my
43 misconfiguration?
44
45 thanks
46 Nicola
47
48
49 --
50 gentoo-security@g.o mailing list
Report Message
Find on MARC Find on Google Groups