Topic: Email Broken

[DanB35]

Might the problem be related to this?

Code: [Select]

2014-08-06 10:59:22.243006500 4292 virus::clamav plugin (data_post): clamscan results: ERROR: Can't connect to clamd: No such file or directory
2014-08-06 10:59:22.243007500 4292 virus::clamav plugin (data_post): ClamAV error: /usr/bin/clamdscan --stdout  --config-file=/etc/clamd.conf --no-summary /var/spool/qpsmtpd/1407319160:4292:0 2>&1: 2

[Daniel B.]

Arg, well spotted, I missed that. The OP has AV scan enabled for inbound emails, but the clamd daemon isn't available for some reason. Please, show

Code: [Select]

db configuration show clamd

If the clamd daemon is enabled, you'll have to open a bug (and if it's disabled, you probably have disabled it manually, so you either have to re-enable it, or disable AV scan)

[jameswilson]

Daniel

[root@sme-big ~]# db configuration show clamd
clamd=service
    MemLimit=600000000
    status=enabled

i can also confirm if i disable virus scanning of incoming mail, it starts to work again.

[DanB35]

What's the output of

Code: [Select]

# ls -l /usr/sbin/clamd
# rpm -V clamd

[jameswilson]

What's the output of

Code: [Select]

# ls -l /usr/sbin/clamd
# rpm -V clamd

[root@sme-big ~]# ls -l /usr/sbin/clamd
-rwxr-xr-x 1 root root 155277 Sep 25  2013 /usr/sbin/clamd

[root@sme-big ~]# ls -l /usr/sbin/clamd
-rwxr-xr-x 1 root root 155277 Sep 25  2013 /usr/sbin/clamd

[jameswilson]

rpm -V clamd
package clamd is not installed

i havnt removed it though.

[CharlieBrady]

[root@sme-big ~]# db configuration show clamd
clamd=service
    MemLimit=600000000
    status=enabled

OK, so clamd is enabled. Did you investigate why it didn't appear to be running? e.g. have you looked at the clamd logs?

What do you see when you do:

cd /service/clamd
sv st .
sv d .
./run

^C

[jameswilson]

[root@sme-big clamd]# sv st .
down: .: 1s, want up; run: log: (pid 2257) 28353s

[root@sme-big clamd]# sv d .
[root@sme-big clamd]#

[root@sme-big clamd]# ./run
LibClamAV Error: Can't load /var/clamav/daily.cld: Malformed database
ERROR: Malformed database
Closing the main socket.

[DanB35]

Code: [Select]

# yum install clamd

[jameswilson]

Code: [Select]

# yum install clamd

[root@sme-big clamd]# yum install clamd
Loaded plugins: fastestmirror, kmod, protect-packages, smeserver
Loading mirror speeds from cached hostfile
 * base: centos.openitc.uk
 * smeaddons: mirror.pialasse.com
 * smeextras: mirror.pialasse.com
 * smeos: mirror.pialasse.com
 * smeupdates: mirror.pialasse.com
 * updates: centos.hyve.com
base                                                     | 1.1 kB     00:00
fws                                                      | 2.5 kB     00:00
http://smeserver.nethesis.it/releases/8/i386/repodata/repomd.xml: [Errno 14] HTT                                                                             P Error 404: Componente non trovato
Trying other mirror.
smeaddons                                                | 2.5 kB     00:00
smeextras                                                | 2.5 kB     00:00
smeos                                                    | 2.7 kB     00:00
smeupdates                                               | 2.5 kB     00:00
sogo                                                     |  951 B     00:00
updates                                                  | 1.9 kB     00:00
Excluding Packages from CentOS - os
Finished
Excluding Packages from CentOS - updates
Finished
Setting up Install Process
Resolving Dependencies
There are unfinished transactions remaining. You might consider running yum-comp                                                                             lete-transaction first to finish them.
The program yum-complete-transaction is found in the yum-utils package.
--> Running transaction check
---> Package clamd.i386 0:0.98.4-2.el5.sme set to be updated
--> Finished Dependency Resolution

Dependencies Resolved

================================================================================
 Package       Arch         Version                    Repository          Size
================================================================================
Installing:
 clamd         i386         0.98.4-2.el5.sme           smeupdates         247 k

Transaction Summary
================================================================================
Install       1 Package(s)
Upgrade       0 Package(s)

Total download size: 247 k
Is this ok [y/N]: y
Downloading Packages:
clamd-0.98.4-2.el5.sme.i386.rpm                          | 247 kB     00:00
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
  Installing     : clamd                                                    1/1
warning: /etc/clamd.conf created as /etc/clamd.conf.rpmnew
Migrating existing database backups
Migrating existing database hosts
Migrating existing database configuration
Migrating existing database yum_installed
Migrating existing database networks
Migrating existing database yum_updates
Migrating existing database accounts
Migrating existing database domains
Migrating existing database spamassassin
Migrating existing database yum_available
Migrating existing database mailpatterns
Migrating existing database yum_repositories

Installed:
  clamd.i386 0:0.98.4-2.el5.sme

Complete!

==============================================================
WARNING: You now need to run BOTH of the following commands
to ensure consistent system state:

signal-event post-upgrade; signal-event reboot

You should run these commands unless you are certain that
yum made no changes to your system.
==============================================================
[root@sme-big clamd]#

[DanB35]

After running signal-event post-upgrade and signal-event reboot, does it work?

[jameswilson]

im not onsite with the sme so im not brave enough to reboot it till tomorrow morning

[jameswilson]

but thankyou dan for your help, i can see if it was removed why it would be a problem.

[DanB35]

Of course, the question remains: why/how was it removed?  That may have been a bug somewhere in an update.  You might try the following before the reboot:

Code: [Select]

# yum-complete-transaction
# yum update

[CharlieBrady]

Code: [Select]

# yum install clamd

That won't be sufficient. Pay attention to every error message:

Code: [Select]

LibClamAV Error: Can't load /var/clamav/daily.cld: Malformed database

So James will need to check all the clamAV components - are they installed? Are they up to date? Are they running correctly?

cd /service/freshclam
sv st .
sv d .
./run

^C
sv u .