[Avcheck] README.AVP

Len Conrad LConrad@Go2France.com
Sun, 11 Nov 2001 05:10:45 -0600 

>You're asked (tried?) several times already. ;)

this is finally the first time actually to do it  :)

>What are the problem you're expirienced or expect to see?

Partly kav questions, and partly avcheck

>This little program should just
>run on FreeBSD, I see no reasons for it to fail.

cockpit errors?  :))

>   The problem(s)
>may arize only from an antivirus daemon itself -- (possible) difficulties
>with setting it up,

setting up server version of kav for freebsd + postfix (+ avcheck) is hard 
when the only doc is what's in the kasp .tgz files.

>See for example notes from Michael Kubecka, or from Piotr Klaban
>(he uses avcheck on Solaris).

where are these notes? I can't find them on avcheck website, nor in the 
avcheck-0.6 file.

-----------------------------

in your README.AVP, you mods to defUnix.prf don't match the defUnix.prf 
delivered in the file:

kav-WorkStationSuit-3.0.136-FreeBSD-4.x.tgz

which is inclued in the file:

kav-ServerSuit-3.0.136-FreeBSD-4.x.tgz

[Location]
List=/tst
...doesn't exist

[Actions]
InfectedAction=0
# This one is important.
.... but it doesn't exist.

[Options]
ShowOk=No
ShowPack=No
Report=No
UseSysLog=No

... these 4 are in the [Report] section, not the [Options] section

-----------------------

"Next, you will need to place avcheck, it's `infected' helper and
uchroot somewhere."

in the avcheck directory, I have

-rwxr-xr-x  1 root  wheel   3581 Oct 26 14:20 infected.ex1
-rwxr-xr-x  1 root  wheel      0 Nov 10 23:35 infected.ex2.cs
-rwxr-xr-x  1 root  wheel      0 Nov 10 23:53 infected.ex2.de
-rwxr-xr-x  1 root  wheel      0 Nov 10 23:53 infected.ex2.en
-rwxr-xr-x  1 root  wheel      0 Nov 10 23:53 infected.ex2.pl
-rwxr-xr-x  1 root  wheel      0 Nov 10 23:53 infected.ex2.ru
-rwxr-xr-x  1 root  wheel      0 Nov 10 23:53 infected.ex2.sk

Which one is your "helper" file?  Are the above 0-byte files correct, or is 
something screwed up?

Finallly, when I try to start up with

#/usr/bin/env - HOME=/ \
 >   /usr/bin/nice \
 >   /var/spool/avp/uchroot -u avdaemon /var/spool/avp \
 >   /kavdaemon -dl -f=/ctl /tst
/usr/libexec/ld-elf.so.1: Shared object "libintl.so.1" not found

but:

# ls -alR /var/spool/avp/usr
total 4
drwxr-xr-x   4 avclient  avgroup  512 Nov 11 03:01 .
drwxr-xr-x  10 root      wheel    512 Nov 11 02:58 ..
drwxr-xr-x   2 avclient  avgroup  512 Nov 11 02:59 libexec
drwxr-xr-x   3 avclient  avgroup  512 Nov 11 03:01 local

usr/libexec:
total 76
drwxr-xr-x  2 avclient  avgroup    512 Nov 11 02:59 .
drwxr-xr-x  4 avclient  avgroup    512 Nov 11 03:01 ..
-r-xr-xr-x  1 avclient  avgroup  75472 Nov 11 02:59 ld-elf.so.1

usr/local:
total 3
drwxr-xr-x  3 avclient  avgroup  512 Nov 11 03:01 .
drwxr-xr-x  4 avclient  avgroup  512 Nov 11 03:01 ..
drwxr-xr-x  2 avclient  avgroup  512 Nov 11 03:01 lib

usr/local/lib:
total 21
drwxr-xr-x  2 avclient  avgroup    512 Nov 11 03:01 .
drwxr-xr-x  3 avclient  avgroup    512 Nov 11 03:01 ..
-rwxr-xr-x  1 avclient  avgroup  18488 Nov 11 03:01 libintl.so.1


thanks,
Len