Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: mystical в Feb 27, 2007, 00:57
Някакви идеи?
Съдържанието на /etc/clamd.conf е:
| Цитат |
| root@mystical:/home/mystical# clamd ERROR: Please edit the example config file /etc/clamd.conf. ERROR: Can't open/parse the config file /etc/clamd.conf |
Съдържанието на /etc/clamd.conf е:
| Цитат |
| ## ## Example config file for the Clam AV daemon ## Please read the clamd.conf(5) manual before editing this file. ## # Comment or remove the line below. Example # Uncomment this option to enable logging. # LogFile must be writable for the user running daemon. # A full path is required. # Default: disabled LogFile /var/log/clamd.log # By default the log file is locked for writing - the lock protects against # running clamd multiple times (if you want to run another clamd instance, # please # copy the configuration file, change the LogFile variable, and run # the daemon with the --config-file option). # This option disables log file locking. # Default: disabled #LogFileUnlock # Maximal size of the log file. # Value of 0 disables the limit. # You may use 'M' or 'm' for megabytes (1M = 1m = 1048576 bytes) # and 'K' or 'k' for kilobytes (1K = 1k = 1024 bytes). To specify the size # in bytes just don't use modifiers. # Default: 1M LogFileMaxSize 2M # Log time with each message. # Default: disabled #LogTime # Also log clean files. Useful in debugging but drastically increases the # log size. # Default: disabled #LogClean # Use system logger (can work together with LogFile). # Default: disabled #LogSyslog # Specify the type of syslog messages - please refer to 'man syslog' # for facility names. # Default: LOG_LOCAL6 #LogFacility LOG_MAIL # Enable verbose logging. # Default: disabled #LogVerbose # This option allows you to save a process identifier of the listening # daemon (main thread). # Default: disabled #PidFile /var/run/clamd.pid # Optional path to the global temporary directory. # Default: system specific (usually /tmp or /var/tmp). TemporaryDirectory /var/tmp # Path to the database directory. # Default: hardcoded (depends on installation options) DatabaseDirectory /var/lib/clamav # The daemon works in a local OR a network mode. Due to security reasons we # recommend the local mode. # Path to a local socket file the daemon will listen on. # Default: disabled LocalSocket /tmp/clamd # Remove stale socket after unclean shutdown. # Default: disabled FixStaleSocket # TCP port address. # Default: disabled TCPSocket 3310 # TCP address. # By default we bind to INADDR_ANY, probably not wise. # Enable the following to provide some degree of protection # from the outside world. # Default: disabled TCPAddr 127.0.0.1 # Maximum length the queue of pending connections may grow to. # Default: 15 #MaxConnectionQueueLength 30 # Clamd uses FTP-like protocol to receive data from remote clients. # If you are using clamav-milter to balance load between remote clamd daemons # on firewall servers you may need to tune the options below. # Close the connection when the data size limit is exceeded. # The value should match your MTA's limit for a maximal attachment size. # Default: 10M #StreamMaxLength 20M # Limit port range. # Default: 1024 #StreamMinPort 30000 # Default: 2048 #StreamMaxPort 32000 # Maximal number of threads running at the same time. # Default: 10 #MaxThreads 20 # Waiting for data from a client socket will timeout after this time (seconds). # Value of 0 disables the timeout. # Default: 120 #ReadTimeout 300 # Waiting for a new job will timeout after this time (seconds). # Default: 30 #IdleTimeout 60 # Maximal depth directories are scanned at. # Default: 15 #MaxDirectoryRecursion 20 # Follow directory symlinks. # Default: disabled #FollowDirectorySymlinks # Follow regular file symlinks. # Default: disabled FollowFileSymlinks # Perform internal sanity check (database integrity and freshness). # Default: 1800 (30 min) #SelfCheck 600 # Execute a command when virus is found. In the command string %v will # be replaced by a virus name. # Default: disabled #VirusEvent /usr/local/bin/send_sms 123456789 "VIRUS ALERT: %v" # Run as a selected user (clamd must be started by root). # Default: disabled #User clamav # Initialize supplementary group access (clamd must be started by root). # Default: disabled #AllowSupplementaryGroups # Stop daemon when libclamav reports out of memory condition. #ExitOnOOM # Don't fork into background. # Default: disabled #Foreground # Enable debug messages in libclamav. # Default: disabled Debug # Do not remove temporary files (for debug purposes). # Default: disabled #LeaveTemporaryFiles # By default clamd uses scan options recommended by libclamav. This option # disables recommended options and allows you to enable selected ones below. # DO NOT TOUCH IT unless you know what you are doing. # Default: disabled #DisableDefaultScanOptions ## ## Executable files ## # PE stands for Portable Executable - it's an executable file format used # in all 32-bit versions of Windows operating systems. This option allows # ClamAV to perform a deeper analysis of executable files and it's also # required for decompression of popular executable packers such as UPX, FSG, # and Petite. # Default: enabled ScanPE # With this option clamav will try to detect broken executables and mark # them as Broken.Executable # Default: disabled #DetectBrokenExecutables ## ## Documents ## # This option enables scanning of Microsoft Office document macros. # Default: enabled #ScanOLE2 ## ## Mail files ## # Enable internal e-mail scanner. # Default: enabled ScanMail # If an email contains URLs ClamAV can download and scan them. # WARNING: This option may open your system to a DoS attack. # Never use it on loaded servers. # Default: disabled #MailFollowURLs # Recursion level limit for the mail scanner. # Default: 64 #MailMaxRecursion 128 ## ## HTML ## # Perform HTML normalisation and decryption of MS Script Encoder code. # Default: enabled ScanHTML ## ## Archives ## # ClamAV can scan within archives and compressed files. # Default: enabled ScanArchive # Due to license issues libclamav does not support RAR 3.0 archives (only the # old 2.0 format is supported). Because some users report stability problems # with unrarlib it's disabled by default and you must uncomment the directive # below to enable RAR 2.0 support. # Default: disabled ScanRAR # The options below protect your system against Denial of Service attacks # using archive bombs. # Files in archives larger than this limit won't be scanned. # Value of 0 disables the limit. # Default: 10M #ArchiveMaxFileSize 15M # Nested archives are scanned recursively, e.g. if a Zip archive contains a RAR # file, all files within it will also be scanned. This options specifies how # deep the process should be continued. # Value of 0 disables the limit. # Default: 8 #ArchiveMaxRecursion 9 # Number of files to be scanned within an archive. # Value of 0 disables the limit. # Default: 1000 #ArchiveMaxFiles 1500 # If a file in an archive is compressed more than ArchiveMaxCompressionRatio # times it will be marked as a virus (Oversized.ArchiveType, e.g. Oversized.Zip) # Value of 0 disables the limit. # Default: 250 #ArchiveMaxCompressionRatio 300 # Use slower but memory efficient decompression algorithm. # only affects the bzip2 decompressor. # Default: disabled #ArchiveLimitMemoryUsage # Mark encrypted archives as viruses (Encrypted.Zip, Encrypted.RAR). # Default: disabled #ArchiveBlockEncrypted # Mark archives as viruses (e.g. RAR.ExceededFileSize, Zip.ExceededFilesLimit) # if ArchiveMaxFiles, ArchiveMaxFileSize, or ArchiveMaxRecursion limit is # reached. # Default: disabled #ArchiveBlockMax ## ## Clamuko settings ## WARNING: This is experimental software. It is very likely it will hang ## up your system!!! ## # Enable Clamuko. Dazuko (/dev/dazuko) must be configured and running. # Default: disabled #ClamukoScanOnAccess # Set access mask for Clamuko. # Default: disabled #ClamukoScanOnOpen #ClamukoScanOnClose #ClamukoScanOnExec # Set the include paths (all files in them will be scanned). You can have # multiple ClamukoIncludePath directives but each directory must be added # in a seperate line. # Default: disabled #ClamukoIncludePath /home #ClamukoIncludePath /students # Set the exclude paths. All subdirectories are also excluded. # Default: disabled #ClamukoExcludePath /home/guru # Don't scan files larger than ClamukoMaxFileSize # Value of 0 disables the limit. # Default: 5M #ClamukoMaxFileSize 10M |
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: neter в Feb 27, 2007, 01:28
Ми то си пише - редактирай примерния конфигурационен файл. Първо, коментирай (като сложиш # пред него) или изтрий реда Example в началото на файла. След това махни коментара (#) пред реда User clamav (ако имаш потребител clamav и си задал правилни права на папките) или сложи ред User root. Другото ми изглежда наред, ако не пропускам нещо, така че би трябвало да се стартира.
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: Hapkoc в Feb 27, 2007, 02:18
| Цитат |
| или сложи ред User root |
това не е ли малко анти-практика?
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: KPETEH в Feb 27, 2007, 10:31
И аз имам въпрос относно същото,значи примерно на някои от опциите като се махне коментара и дава грешка.
До колкото знам boolean се задава примерно -> true или
false до тук добре, но не разбрах трябва ли да е в апостроф boolean-a ?! Примерно :
Или се задава с кавички (") ?
| Примерен код |
| Error : /etc/clamd.conf line 22 : require boolean |
До колкото знам boolean се задава примерно -> true или
false до тук добре, но не разбрах трябва ли да е в апостроф boolean-a ?! Примерно :
| Примерен код |
| # Enable verbose logging. # Default: disabled LogVerbose='true' |
Или се задава с кавички (") ?
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: neter в Feb 27, 2007, 10:54
Да. По принцип не трябва да се използва root акаунта. Даже не е малко анти-практика, направо си е много анти-практика. Но не знам колко спешно му трябва на човека и просто му изредих вариантите. Затова първо казах да действа с User clamav. Относно лога на KPETEH - не трябва да се пише LogVerbose='true'. Пише се само LogVerbose, за да се активира тази опция.
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: KPETEH в Feb 27, 2007, 11:00
Ами само с махането на коментара не става нищо тоест дава ми тази грешка която написах в горния пост при поилзване на командата :
# freshclam
Може пък да имам грешка в /etc/freshclam.conf ще проверя в къщи и ще ви обадя ?!
# freshclam
Може пък да имам грешка в /etc/freshclam.conf ще проверя в къщи и ще ви обадя ?!
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: mystical в Feb 27, 2007, 11:06
След като изтрих почти цялото съдържание на файла, най-накрая успях да видя за кое Example става въпрос. 
Не предполагах, че ще използват такава система, за да проверим и редактираме настройките.
Не предполагах, че ще използват такава система, за да проверим и редактираме настройките.
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: kingfisher в Feb 27, 2007, 11:08
http://wiki.clamav.net/Main/UpgradeNotes090
Без каквито и да е кавички слагаш yes,no,true и т.н
Имаш в пакета и примерен конф. в etc.
Без каквито и да е кавички слагаш yes,no,true и т.н
Имаш в пакета и примерен конф. в etc.
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: neter в Feb 27, 2007, 12:07
Прав си, kingfisher. Във версия 0.9 на clamav вече е така. Аз понеже съм с 0.87 (време е за ъпгрейд) и дадох това по инерция. Ама и човека не е казал коя му е версията на clamav. Значи, в 0.8х, реда трябва да е LogVerbose, а в 0.9 - LogVerbose yes . Всъщност гледам, че всичко, което в 0.8х се включваше само с написването на опцията, сега в 0.9 трябва да се добави и boolean стойност. Интересно защо са го променили.
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: KPETEH в Feb 27, 2007, 12:56
@neter Точно така версията е 0.90 т.е. последната,ще го имам в предвид това което си написал.
Титла: Error: please edit ... file /etc/clamd.conf
Публикувано от: KPETEH в Feb 27, 2007, 19:08
Точно така е значи и в /etc/clamd.conf,/etc/freshclam.conf трябва да се оправят конфигурациите както е написал neter горе. :-)