MailCleaner OpenSource Edition Forum :: View topic - How Do I Update ClamAV Binaries?

MailCleaner OpenSource Edition Forum http://forum.mailcleaner.org/

How Do I Update ClamAV Binaries? http://forum.mailcleaner.org/viewtopic.php?f=11&t=620	Page 1 of 2

Author:	rebus [ Fri Sep 21, 2007 2:34 pm ]
Post subject:	How Do I Update ClamAV Binaries?
http://www.gentoo.org/security/en/glsa/ ... 709-14.xml I'm assuming this vulnerability also applies to the ClamAV installation of MailCleaner even though it's not running on gentoo. What is the method of updating ClamAV to 0.91.2 while still running MailCleaner 2007012801 revision? We're not ready to move to the August pre-release version yet. (I'm a Windows person, not very well versed in Linux, so actual command line syntax to accomplish what is needed, would be most thankfully accepted.)

Author:	n0lqu [ Fri Sep 21, 2007 8:09 pm ]
Post subject:
Here's what I tried on my test system. First, I found and looked at /usr/mailcleaner/install/install_clamav.sh which is probably what was used to install ClamAV in the first place. So hopefully this is a pretty safe compatible process, but I can't guarantee not breaking something! Disclaimer out of the way, here's what I did... First, it looks like the newer version of ClamAV needs the "optional" but highly recommended GNU MP. It wouldn't "make" without it, so getting and installing that is first: Code: cd /usr/mailcleaner/install/src wget ftp://ftp.gnu.org/gnu/gmp/gmp-4.2.2.tar.gz tar -xvzf gmp-4.2.2.tar.gz cd gmp-4.2.2 ./configure make make check make install cd .. That installs the GNU MP library (libgmp) into /usr/local/lib where the ClamAV install will find it. Now get and install ClamAV itself, using the same configuration parameters as the install_clamav.sh file: Code: wget http://freshmeat.net/redir/clamav/29355/url_tgz/clamav-0.91.2.tar.gz tar -xvzf clamav-0.91.2.tar.gz cd clamav-0.91.2 ./configure --prefix=/usr/clamav --sysconfdir=$SRCDIR/etc/clamav --with-zlib=/usr/zlib make Now the final command will do the actual updating, so probably should go to the Mailcleaner GUI interface, status screen, and stop the Engine. Then you can do the final Code: make install and start the engine up again. I think that worked but haven't figured out where to check to make sure what version is running. I do see it still finding viruses in the occational E-Mail, so I know it's working, just no confirmation in the log files of the actual version being used. Hope this helps! I don't know if this will affect the pre-release or upcoming update; hopefully my steps will be compatible. Let me know if you have any problems or find anything I've missed!

Author:	rebus [ Fri Sep 21, 2007 9:17 pm ]
Post subject:
Outstanding-- THANKS!!! Everything went smoothly, and assuming that brought the actual in-use binaries up to current, I'm in your debt for helping me get this server back to "safe" again. Anytime I see "remote code execution" or similar, I take it very seriously.

Author:	n0lqu [ Fri Sep 21, 2007 9:29 pm ]
Post subject:
Yes, when I saw a remote code execution bug was part of what was fixed, it looked like something that needs to be fixed asap. Hopefully Oliver will be able to comment on whether what I did here is likely to be compatible with Mailcleaner or if I did an awful thing!

Author:	rebus [ Fri Sep 21, 2007 9:53 pm ]
Post subject:
I keep promising myself to become competent in Linux/Unix (honestly, I am genuinely interested) but my day job as an admin of a large Windows Server farm has me so busy, I just plain don't have the energy at the end of the day. The servers run great, but the clueless user base wears me out!!!

Author:	rebus [ Sun Sep 23, 2007 2:59 am ]
Post subject:
How's your installation running? After nearly a year of flawless operation, I suddenly found several thousand messages stuck in the Filtering queue today. Apparently 14 hours ago, it jammed up and didn't let a single message through. This happened 16 hours after installing GNU MP and updating ClamAV. I shut off all spam/virus filtering, restarted the Filtering queue and Engine, and waited until all mail moved from Filtering (stage2) to Outbound (stage4) queue, then re-enabled spam/antivirus. New inbound mail appears to be flowing through the 3 queues normally now. I noticed on perf graphs that at the same time the Filtering (stage2) queue started backing up, memory utilization immediately dropped from ~1700 MB to ~1200 MB, and CPU utilization flatlined at a perfectly steady 25% while the load average see-sawed steadily between 0 and 1, at 20 minute intervals (3x per hour). Hmmm. Now that the server appears to be running normal again, memory has returned to its normal steady level of ~1700 MB utilization, and CPU & load average is back to normal. I'm hoping this is pure coincidence.... but am curious to know if you (or anyone else who did this upgade) has seen any similar problems since then.

Author:	olivier [ Sun Sep 23, 2007 7:54 pm ]
Post subject:
Hi, these vulnerabilities do not affect MailCleaner as it only affect code relative to the sendmail milter or to the full mail scanning engine. As MailCleaner does not use the sendmail milter and only pass attachements to the clamav engine, you are not vulnerable.

Author:	rebus [ Sun Sep 23, 2007 8:24 pm ]
Post subject:
We've already done what was suggested by n0lqu above. Anytime I see a "remote code execution" threat, we act on it as quickly as possible. Is updating to 0.91.2 using n0lqu's instructions OK, or will that cause something to "break" in MailCleaner? Will it cause any problems now, or with the pending update?

Author:	n0lqu [ Mon Sep 24, 2007 2:52 pm ]
Post subject:
We have experienced no ill effects from the ClamAV update.

Author:	rebus [ Fri Sep 28, 2007 12:23 am ]
Post subject:
Been working just fine since the anomoly. I'm working under the assumption it was coincidence. Am hoping Olivier can re-visit this topic and confirm that doing what we did is not going to cause us problems in the future with the next upgrade.

Author:	Erik [ Sun Jun 15, 2008 7:02 pm ]
Post subject:
n0lqu wrote: Code: wget http://freshmeat.net/redir/clamav/29355/url_tgz/clamav-0.91.2.tar.gz tar -xvzf clamav-0.91.2.tar.gz cd clamav-0.91.2 ./configure --prefix=/usr/clamav --sysconfdir=$SRCDIR/etc/clamav --with-zlib=/usr/zlib make please note that "wget http://freshmeat.net/redir/clamav/29355 ... 1.2.tar.gz" does not get clamav-0.91.2.tar.gz anymore but it gets the latest stable: clamav-0.93.1.tar.gz instead, does this pose a problem for mailcleaner ? Eventually you can get clamav-0.91.2.tar.gz here: http://surfnet.dl.sourceforge.net/sourc ... 2.1.tar.gz To check if ClamAV is updated successfully check /var/mailcleaner/log/clamav/clamd.log it should say: +++ Started at Sun Jun 29 01:33:58 2008 clamd daemon 0.93.1 (OS: linux-gnu, ARCH: i386, CPU: i686)

Author:	thunderbolt [ Fri Aug 08, 2008 10:08 pm ]
Post subject:	Re: How Do I Update ClamAV Binaries?
I followed the steps above to upgrade my system to ClamAV 93.3 Everything seems to be working fine so far. A couple additional steps were needed in my process though. I had to run "ldconfig" to rebuild the shared library cache with the new clamav libraries before the new version would run. And I had to manually run freshclam to download a new AV database update before clamd would start as it didn't like the old format. Regards, Ron

Author:	fnetmohan [ Mon Apr 06, 2009 11:24 am ]
Post subject:	Re: How Do I Update ClamAV Binaries?
Hi, I am not able to upgrade Latest ClamAV® stable release is: 0.95. While complile i am getting the following error. Any one tried to install the latest version?. Please help!!!! ---------------------- mail4:/usr/mailcleaner/install/src/clamav-0.95# make make all-recursive make[1]: Entering directory `/usr/mailcleaner/install/src/clamav-0.95' Making all in libltdl make[2]: Entering directory `/usr/mailcleaner/install/src/clamav-0.95/libltdl' make all-am make[3]: Entering directory `/usr/mailcleaner/install/src/clamav-0.95/libltdl' make[3]: Nothing to be done for `all-am'. make[3]: Leaving directory `/usr/mailcleaner/install/src/clamav-0.95/libltdl' make[2]: Leaving directory `/usr/mailcleaner/install/src/clamav-0.95/libltdl' Making all in libclamav make[2]: Entering directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav' make all-recursive make[3]: Entering directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav' Making all in lzma make[4]: Entering directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav/lzma' make[4]: Nothing to be done for `all'. make[4]: Leaving directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav/lzma' Making all in . make[4]: Entering directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav' /bin/sh ../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H -I. -I.. -I.. -I./nsis -I./lzma -I../libltdl -DWARN_DLOPEN_FAIL -I/usr/zlib/include -g -O2 -MT scanners.lo -MD -MP -MF .deps/scanners.Tpo -c -o scanners.lo scanners.c libtool: compile: gcc -DHAVE_CONFIG_H -I. -I.. -I.. -I./nsis -I./lzma -I../libltdl -DWARN_DLOPEN_FAIL -I/usr/zlib/include -g -O2 -MT scanners.lo -MD -MP -MF .deps/scanners.Tpo -c scanners.c -fPIC -DPIC -o .libs/scanners.o scanners.c:40:24: netinet/in.h: Not a directory [color=#FF0000]make[4]: * [scanners.lo] Error 1 make[4]: Leaving directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav' make[3]: * [all-recursive] Error 1 make[3]: Leaving directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav' make[2]: * [all] Error 2 make[2]: Leaving directory `/usr/mailcleaner/install/src/clamav-0.95/libclamav' make[1]: * [all-recursive] Error 1 make[1]: Leaving directory `/usr/mailcleaner/install/src/clamav-0.95' make: *** [all] Error 2[/color] Regards, Mohan. U

Author:	fnetmohan [ Wed Apr 15, 2009 8:02 am ]
Post subject:	Re: How Do I Update ClamAV Binaries?
Hi, Anybody try this? Kindly help. Regards, Mohan. U

Author:	fnetmohan [ Mon Apr 20, 2009 11:51 am ]
Post subject:	Re: How Do I Update ClamAV Binaries?
Hi olivier, Can you help me on this? Thanks, Mohan. U

Page 1 of 2	All times are UTC + 1 hour
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group http://www.phpbb.com/