[ZendTo] ClamAV error
Scott Silva
ssilva at sgvwater.com
Thu Oct 21 19:12:21 BST 2021
Nevermind… A reboot seemed to clear this up…
Not used to having to reboot a linux box after an update unless there is a kernel update…
From: ZendTo <zendto-bounces at zend.to> On Behalf Of Scott Silva via ZendTo
Sent: Thursday, October 21, 2021 10:35 AM
To: ZendTo Users <zendto at zend.to>
Cc: Scott Silva <ssilva at sgvwater.com>
Subject: Re: [ZendTo] ClamAV error
Getting this error now on a Centos 7 system
Trying to see if there is some equivalent fix like the apparmour fix for Ubuntu, but I assume with SELinux
From: ZendTo <zendto-bounces at zend.to<mailto:zendto-bounces at zend.to>> On Behalf Of HILLENBRAND Marita via ZendTo
Sent: Monday, October 18, 2021 3:20 AM
To: ZendTo Users <zendto at zend.to<mailto:zendto at zend.to>>
Cc: HILLENBRAND Marita <m.hillenbrand at montgeron.fr<mailto:m.hillenbrand at montgeron.fr>>
Subject: Re: [ZendTo] ClamAV error
Dear all,
I have also the problem, I updated our Ubuntu 18.04.5 LTS (en root) with the commands below and got the upload error “The attempt to virus-scan your drop-off failed. Please notify the system administrator.”
apt update
apt upgrade zendto
# systemctl status clamav-daemon
● clamav-daemon.service - Clam AntiVirus userspace daemon
Loaded: loaded (/lib/systemd/system/clamav-daemon.service; enabled; vendor preset: enabled)
Drop-In: /etc/systemd/system/clamav-daemon.service.d
Active: failed (Result: exit-code) since Mon 2021-10-18 11:32:57 CEST; 28min ago
Docs: man:clamd(8)
Main PID: 11391 (code=exited, status=1/FAILURE)
oct. 18 11:32:56 sv-ctm-zendto systemd[1]: Stopped Clam AntiVirus userspace daemon.
oct. 18 11:32:56 sv-ctm-zendto systemd[1]: Starting Clam AntiVirus userspace daemon...
oct. 18 11:32:56 sv-ctm-zendto systemd[1]: Started Clam AntiVirus userspace daemon.
oct. 18 11:32:57 sv-ctm-zendto clamd[11391]: ERROR: lchown to user 'clamav' failed on
oct. 18 11:32:57 sv-ctm-zendto clamd[11391]: log file '/var/log/clamav/clamav.log'.
oct. 18 11:32:57 sv-ctm-zendto clamd[11391]: Error was 'Operation not permitted'
oct. 18 11:32:57 sv-ctm-zendto clamd[11391]: Mon Oct 18 11:32:57 2021 -> ^lchown to user 'clamav' failed on log file '/var/log/clamav/clamav.log'. Erro
oct. 18 11:32:57 sv-ctm-zendto systemd[1]: clamav-daemon.service: Main process exited, code=exited, status=1/FAILURE
oct. 18 11:32:57 sv-ctm-zendto systemd[1]: clamav-daemon.service: Failed with result 'exit-code'.
I got back to the old version for now, but I suspect, I need to update the system to make the let’s encrypt certificate function.
Best regards,
Service Informatique
Centre Administratif et Technique
130, avenue Charles de Gaulle - 91230 Montgeron
Tél : 01 70 58 93 40 Port : 06 24 04 43 58
[cid:image001.jpg at 01D7C66C.676244E0]
Participez, vous aussi, à la protection de l'environnement en n'imprimant ce courriel que si nécessaire.
Le présent courriel peut contenir des renseignements confidentiels et ne s’adresse qu’au(x) destinataire(s) indiqué(s) ci-dessus. Si ce courriel vous est parvenu par erreur, veuillez le supprimer et nous en aviser aussitôt. Merci.
De : ZendTo <zendto-bounces at zend.to<mailto:zendto-bounces at zend.to>> De la part de Dean Sherwood via ZendTo
Envoyé : lundi 18 octobre 2021 09:42
À : zendto at zend.to<mailto:zendto at zend.to>
Cc : Dean Sherwood <Dean at tropmedres.ac<mailto:Dean at tropmedres.ac>>
Objet : [ZendTo] ClamAV error
Dear all
We updated our Ubuntu 18.04.6 LTS server with below commands and now have the upload error “The attempt to virus-scan your drop-off failed. Please notify the system administrator.”
sudo apt update
sudo apt upgrade
Checking the clamav service we see
systemctl status clamav-daemon.service
● clamav-daemon.service - Clam AntiVirus userspace daemon
Loaded: loaded (/lib/systemd/system/clamav-daemon.service; enabled; vendor preset: enabled)
Drop-In: /etc/systemd/system/clamav-daemon.service.d
Active: failed (Result: exit-code) since Mon 2021-09-27 11:33:58 +07; 3min 59s ago
Docs: man:clamd(8)
Process: 1323 ExecStart=/usr/sbin/clamd --foreground=true (code=exited, status=1/FAILURE)
Process: 1317 ExecStartPre=/bin/chown clamav /run/clamav (code=exited, status=0/SUCCESS)
Process: 1097 ExecStartPre=/bin/mkdir -p /run/clamav (code=exited, status=0/SUCCESS)
Main PID: 1323 (code=exited, status=1/FAILURE)
Sep 27 11:33:51 zend2 systemd[1]: Starting Clam AntiVirus userspace daemon...
Sep 27 11:33:53 zend2 systemd[1]: Started Clam AntiVirus userspace daemon.
Sep 27 11:33:58 zend2 systemd[1]: clamav-daemon.service: Main process exited, code=exited, status=1/FAILURE
Sep 27 11:33:58 zend2 clamd[1323]: ERROR: lchown to user 'clamav' failed on
Sep 27 11:33:58 zend2 clamd[1323]: log file '/var/log/clamav/clamav.log'.
Sep 27 11:33:58 zend2 clamd[1323]: Error was 'Operation not permitted'
Sep 27 11:33:58 zend2 clamd[1323]: Mon Sep 27 11:33:58 2021 -> ^lchown to user 'clamav' failed on log file '/var/log/clamav/clamav.log'. Error was 'Operation not permitted'
Sep 27 11:33:58 zend2 systemd[1]: clamav-daemon.service: Failed with result 'exit-code'.
Reinstalled and skipped all parts except for “Install and configure virus scanner, including SELinux and AppArmor support for it.”
Become root with "su -" if using CentOS, RedHat, Debian or SuSE, or "sudo su -" if using Ubuntu.
Download the installer:
curl -O zend.to path
Unpack it and cd into it:
tar xzf install.ZendTo.tgz
cd install.ZendTo
Run the installer:
Install and configure ClamAV
Installing ClamAV packages
Reading package lists... Done
Building dependency tree
Reading state information... Done
clamav is already the newest version (0.103.2+dfsg-0ubuntu0.18.04.2).
clamav-daemon is already the newest version (0.103.2+dfsg-0ubuntu0.18.04.2).
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Making clamd notice new signatures much faster
Stop freshclam daemon so we can update signatures
Updating signatures
1. Ignore errors about not being able to notify clamd
2. Expect a delay after downloading main.cvd
3. Expect a long delay after downloading daily.cvd
WARNING: Ignoring deprecated option SafeBrowsing at /etc/clamav/freshclam.conf:22
Mon Sep 27 11:32:42 2021 -> ClamAV update process started at Mon Sep 27 11:32:42 2021
Mon Sep 27 11:32:42 2021 -> ^Your ClamAV installation is OUTDATED!
Mon Sep 27 11:32:42 2021 -> ^Local version: 0.103.2 Recommended version: 0.103.3
Mon Sep 27 11:32:42 2021 -> DON'T PANIC! Read
Mon Sep 27 11:32:42 2021 -> daily.cld database is up-to-date (version: 26304, sigs: 1936445, f-level: 90, builder: raynman)
Mon Sep 27 11:32:42 2021 -> main.cld database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
Mon Sep 27 11:32:42 2021 -> bytecode.cld database is up-to-date (version: 333, sigs: 92, f-level: 63, builder: awillia2)
Allowing ClamAV to read Apache files
Allowing ClamAV through AppArmor to read ZendTo uploads
No need, already done.
Ubuntu 18: may need to work around a bug in the clamd AppArmor profile
Good, they have fixed it. No change needed
* Unloading AppArmor profiles [ OK ]
[ ok ] Starting apparmor (via systemctl): apparmor.service.
[ ok ] Reloading apparmor configuration (via systemctl): apparmor.service.
I am going to have to override the systemd definition for
apache2 so it starts up with PrivateTmp=false.
I am creating /etc/systemd/system/apache2.service.d/PrivateTmp_zendto.conf
And tell systemd about the change
Starting ClamAV and freshclam daemons
ClamAV has been setup for you to work with ZendTo.
However we still have the upload error “The attempt to virus-scan your drop-off failed. Please notify the system administrator.”
Best regards,
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://jul.es/pipermail/zendto/attachments/20211021/dd9332f7/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 2631 bytes
Desc: image001.jpg
URL: <http://jul.es/pipermail/zendto/attachments/20211021/dd9332f7/attachment-0001.jpg>
More information about the ZendTo
mailing list