[ZendTo] ClamAV error
Dean Sherwood
Dean at tropmedres.ac
Mon Oct 18 08:41:47 BST 2021
Dear all
We updated our Ubuntu 18.04.6 LTS server with below commands and now have the upload error “The attempt to virus-scan your drop-off failed. Please notify the system administrator.”
sudo apt update
sudo apt upgrade
---
Checking the clamav service we see
systemctl status clamav-daemon.service
● clamav-daemon.service - Clam AntiVirus userspace daemon
Loaded: loaded (/lib/systemd/system/clamav-daemon.service; enabled; vendor preset: enabled)
Drop-In: /etc/systemd/system/clamav-daemon.service.d
└─extend.conf
Active: failed (Result: exit-code) since Mon 2021-09-27 11:33:58 +07; 3min 59s ago
Docs: man:clamd(8)
man:clamd.conf(5)
Process: 1323 ExecStart=/usr/sbin/clamd --foreground=true (code=exited, status=1/FAILURE)
Process: 1317 ExecStartPre=/bin/chown clamav /run/clamav (code=exited, status=0/SUCCESS)
Process: 1097 ExecStartPre=/bin/mkdir -p /run/clamav (code=exited, status=0/SUCCESS)
Main PID: 1323 (code=exited, status=1/FAILURE)
Sep 27 11:33:51 zend2 systemd[1]: Starting Clam AntiVirus userspace daemon...
Sep 27 11:33:53 zend2 systemd[1]: Started Clam AntiVirus userspace daemon.
Sep 27 11:33:58 zend2 systemd[1]: clamav-daemon.service: Main process exited, code=exited, status=1/FAILURE
Sep 27 11:33:58 zend2 clamd[1323]: ERROR: lchown to user 'clamav' failed on
Sep 27 11:33:58 zend2 clamd[1323]: log file '/var/log/clamav/clamav.log'.
Sep 27 11:33:58 zend2 clamd[1323]: Error was 'Operation not permitted'
Sep 27 11:33:58 zend2 clamd[1323]: Mon Sep 27 11:33:58 2021 -> ^lchown to user 'clamav' failed on log file '/var/log/clamav/clamav.log'. Error was 'Operation not permitted'
Sep 27 11:33:58 zend2 systemd[1]: clamav-daemon.service: Failed with result 'exit-code'.
---
Reinstalled and skipped all parts except for “Install and configure virus scanner, including SELinux and AppArmor support for it.”
Become root with "su -" if using CentOS, RedHat, Debian or SuSE, or "sudo su -" if using Ubuntu.
Download the installer:
curl -O zend.to path
Unpack it and cd into it:
tar xzf install.ZendTo.tgz
cd install.ZendTo
Run the installer:
./install.sh
=================================================================
Install and configure ClamAV
=================================================================
Installing ClamAV packages
Reading package lists... Done
Building dependency tree
Reading state information... Done
clamav is already the newest version (0.103.2+dfsg-0ubuntu0.18.04.2).
clamav-daemon is already the newest version (0.103.2+dfsg-0ubuntu0.18.04.2).
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Making clamd notice new signatures much faster
Stop freshclam daemon so we can update signatures
Updating signatures
1. Ignore errors about not being able to notify clamd
2. Expect a delay after downloading main.cvd
3. Expect a long delay after downloading daily.cvd
WARNING: Ignoring deprecated option SafeBrowsing at /etc/clamav/freshclam.conf:22
Mon Sep 27 11:32:42 2021 -> ClamAV update process started at Mon Sep 27 11:32:42 2021
Mon Sep 27 11:32:42 2021 -> ^Your ClamAV installation is OUTDATED!
Mon Sep 27 11:32:42 2021 -> ^Local version: 0.103.2 Recommended version: 0.103.3
Mon Sep 27 11:32:42 2021 -> DON'T PANIC! Read
Mon Sep 27 11:32:42 2021 -> daily.cld database is up-to-date (version: 26304, sigs: 1936445, f-level: 90, builder: raynman)
Mon Sep 27 11:32:42 2021 -> main.cld database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
Mon Sep 27 11:32:42 2021 -> bytecode.cld database is up-to-date (version: 333, sigs: 92, f-level: 63, builder: awillia2)
Allowing ClamAV to read Apache files
Allowing ClamAV through AppArmor to read ZendTo uploads
No need, already done.
Ubuntu 18: may need to work around a bug in the clamd AppArmor profile
Good, they have fixed it. No change needed
* Unloading AppArmor profiles [ OK ]
[ ok ] Starting apparmor (via systemctl): apparmor.service.
[ ok ] Reloading apparmor configuration (via systemctl): apparmor.service.
I am going to have to override the systemd definition for
apache2 so it starts up with PrivateTmp=false.
I am creating /etc/systemd/system/apache2.service.d/PrivateTmp_zendto.conf
And tell systemd about the change
Starting ClamAV and freshclam daemons
ClamAV has been setup for you to work with ZendTo.
---
However we still have the upload error “The attempt to virus-scan your drop-off failed. Please notify the system administrator.”
Best regards,
Dean
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://jul.es/pipermail/zendto/attachments/20211018/42fe06cc/attachment-0001.html>
More information about the ZendTo
mailing list