[Avcheck] avcheck + postfix
Konstantin Nikonenko
Konstantin Nikonenko <kostya@dsto.a-teleport.com>
Mon, 12 Nov 2001 16:52:12 +0200
Hello avcheck,
# ps -ax -U avdaemon
PID TT STAT TIME COMMAND
99241 ?? INs 0:00.00 /kavdaemon -MP -V -Y -f=/ctl /tst
99273 ?? INs 0:00.00 /kavdaemon -MP -V -Y -f=/ctl /tst
99274 ?? INs 0:00.03 /kavdaemon -MP -V -Y -f=/ctl /tst
# cat /etc/postfix/master.cf
smtp inet n - n - - smtpd -o content_filter=avcheck
localhost:1025 inet n - n - - smtpd -o content_filter=
avcheck unix - n n - 5 pipe
flags=R user=avclient argv=/var/spool/avp/avcheck -i /var/spool/avp/infected/infected.ex2.ru
-d /var/spool/avp/./tst -s avp:/var/spool/avp/ctl/AvpCtl -f ${sender} -S :1025 -- ${recipient}
# more /var/spool/avp/defUnix.prf
Names=*/tst;/tst
Memory=No
Sectors=No
ScanAllSectors=No
Files=Yes
FileMask=2
UserMask=*.tar.gz
ExcludeFiles=0
#ExcludeMask=*.txt *.cmd
#ExcludeDir=
Packed=Yes
Archives=Yes
SelfExtArchives=Yes
MailBases=Yes
MailPlain=Yes
Embedded=Yes
InfectedAction=0
BackupInfected=No
IfDisinfImpossible=0
Warnings=No
CodeAnalyser=Yes
RedundantScan=No
SubDirectories=Yes
CrossFs=Yes
# cat tmp/kavscan.rpt
þ KAV for FreeBSD start 12.11.2001 14:32:54
Version 3.0 build 136
Last update: 11.11.2001, 49757 records.
Command line: -MP -V -Y -f=/ctl /tst
Profile (from 12.11.2001 14:32:49) defUnix.prf
Query for the tests: <0>Nov 12 16:33:25:/tst/99254.tmp
/tst/99254.tmp/[From: Konstantin Nikonenko <kostya@dsto.a-teleport.com>][Date: Mon, 12 Nov 2001 16:33:25 +0200]/eicar.com ok.
What is it?
While OK?!?!
If this is correct, while avcheck do not tell me know?
What i must doing?
--
Best regards,
Konstantin mailto:kostya@dsto.a-teleport.com