sunhux
asked on
clamd not found after installation of ClamAV packages
Our RHEL servers have no access to Internet, so I download the packages & install at command line.
Refer to attached errors after I've installed the following with no error:
cd /var/tmp/clam
rpm -ivh ./clamav-filesystem-0.101.
rpm -ivh ./clamav-data-0.101.1-1.el
rpm -ivh ./libpcre2-8-0-10.32-3.1.x
rpm -ivh ./clamav-lib-0.101.1-1.el7
rpm -ivh ./clamav-0.101.1-1.el7.x86
rpm -ivh ./clamav-scanner-systemd-0
rpm -ivh ./clamav-server-systemd-0.
rpm -ivh ./clamav-unofficial-sigs-5
rpm -ivh ./clamav-update-0.101.1-1.
rpm -ivh ./clamd-0.101.1-1.el7.x86_
What did I miss that the file clamd can't be found in the entire RHEL7 server?
We'll then work on the PrivateMirror freshclam error after we fix the missing clamd first.
Further attempts:
==============
[root@pjwcsd01 /]# systemctl enable clamd.service
Failed to execute operation: Access denied
[root@pjwcsd01 /]# id
uid=0(root) gid=0(root) groups=0(root) context=unconfined_u:uncon
[root@pjwcsd01 /]# systemctl enable clamd.service
Failed to execute operation: Access denied
[root@pjwcsd01 ~]# systemctl enable clamd@scan.service
Created symlink from /etc/systemd/system/multi-
[root@pjwcsd01 ~]# systemctl start clamd.service
Failed to start clamd.service: Unit clamd.service failed to load: No such file or directory.
[root@pjwcsd01 ~]# systemctl start clamd@scan.service
Job for clamd@scan.service failed because the control process exited with error code. See "systemctl status clamd@scan.service" and "journalctl -xe" for details.
[root@pjwcsd01 ~]# cd /
[root@pjwcsd01 /]# find / -name clamav-daemon
[root@pjwcsd01 /]# [ie clamav-daemon not found ]
clamrh3.jpg
Refer to attached errors after I've installed the following with no error:
cd /var/tmp/clam
rpm -ivh ./clamav-filesystem-0.101.
rpm -ivh ./clamav-data-0.101.1-1.el
rpm -ivh ./libpcre2-8-0-10.32-3.1.x
rpm -ivh ./clamav-lib-0.101.1-1.el7
rpm -ivh ./clamav-0.101.1-1.el7.x86
rpm -ivh ./clamav-scanner-systemd-0
rpm -ivh ./clamav-server-systemd-0.
rpm -ivh ./clamav-unofficial-sigs-5
rpm -ivh ./clamav-update-0.101.1-1.
rpm -ivh ./clamd-0.101.1-1.el7.x86_
What did I miss that the file clamd can't be found in the entire RHEL7 server?
We'll then work on the PrivateMirror freshclam error after we fix the missing clamd first.
Further attempts:
==============
[root@pjwcsd01 /]# systemctl enable clamd.service
Failed to execute operation: Access denied
[root@pjwcsd01 /]# id
uid=0(root) gid=0(root) groups=0(root) context=unconfined_u:uncon
[root@pjwcsd01 /]# systemctl enable clamd.service
Failed to execute operation: Access denied
[root@pjwcsd01 ~]# systemctl enable clamd@scan.service
Created symlink from /etc/systemd/system/multi-
[root@pjwcsd01 ~]# systemctl start clamd.service
Failed to start clamd.service: Unit clamd.service failed to load: No such file or directory.
[root@pjwcsd01 ~]# systemctl start clamd@scan.service
Job for clamd@scan.service failed because the control process exited with error code. See "systemctl status clamd@scan.service" and "journalctl -xe" for details.
[root@pjwcsd01 ~]# cd /
[root@pjwcsd01 /]# find / -name clamav-daemon
[root@pjwcsd01 /]# [ie clamav-daemon not found ]
clamrh3.jpg
You are running selinux, is there a separate selinux package?
IF selinux is enforcing then even root might be disallowed access.
Were the selinux signatures added, loaded? (or did the RPM's do that).
database refresh (if needed) can be done using freshclam (which should also run as a daily cron job).
IF selinux is enforcing then even root might be disallowed access.
Were the selinux signatures added, loaded? (or did the RPM's do that).
database refresh (if needed) can be done using freshclam (which should also run as a daily cron job).
ASKER
but how do we explain the missing clamd?
just enabled this rhel to access Internet temporarily: freshclam works but clamd still missing
just enabled this rhel to access Internet temporarily: freshclam works but clamd still missing
ASKER
>Clam requires continual updates... which require Internet connectivity..
I have a Solaris server in DMZ that connects to Internet to grab the updates hourly : this is working.
I'm trying to get the other servers (RHEL6/7) to get their updates from the above Solaris server that
run httpd to serve updates to the others ie "PrivateMirror"
I have a Solaris server in DMZ that connects to Internet to grab the updates hourly : this is working.
I'm trying to get the other servers (RHEL6/7) to get their updates from the above Solaris server that
run httpd to serve updates to the others ie "PrivateMirror"
It isn't missing: (probably, it might miss a correct setup)
Failed to execute operation: Access deniedThere is something that is forbidden to be used...
ASKER
my colleague deinstall them n reinstall using packages fr the latest epel for rhel7 and clamd is now working.
Next is to configure freshclam to get updates fr the working Solaris PrivateMirror (an ex colleague who left tested it working from another test Solaris running clamd
Next is to configure freshclam to get updates fr the working Solaris PrivateMirror (an ex colleague who left tested it working from another test Solaris running clamd
ASKER
based on the lower portion of 1st screen attached that shows freshclam error, what could have been missed?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes, my set-up is as per listed in items 1-3 above with the httpd server (on Solaris) downloading
from Internet hourly while internal freshclam on RHEL loading from that Httpd Solaris server.
Btw, when I clicked on "Private local Mirrors" link in the url below, nothing happens, are you
able to get anything out of it?
https://www.clamav.net/documents/private-local-mirrors
The 2nd link Noci posted only describes what's configured at the Httpd server, still missing
what's to be done at internal freshclams.
Was told by an ex-colleague who set up that Solaris Httpd server that it was working before
he left us : another internal freshclam running on Solaris was able to get updates from that
Solaris Httpd server
from Internet hourly while internal freshclam on RHEL loading from that Httpd Solaris server.
Btw, when I clicked on "Private local Mirrors" link in the url below, nothing happens, are you
able to get anything out of it?
https://www.clamav.net/documents/private-local-mirrors
The 2nd link Noci posted only describes what's configured at the Httpd server, still missing
what's to be done at internal freshclams.
Was told by an ex-colleague who set up that Solaris Httpd server that it was working before
he left us : another internal freshclam running on Solaris was able to get updates from that
Solaris Httpd server
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Went to correct my colleague & it seems working (after the httpd server FQDN defined in /etc/hosts
& on the line of PrivateMirror in /etc/freshclam.conf); running freshclam now gives:
[root@frclamclient etc]# freshclam
ClamAV update process started at Mon Feb 25 17:10:03 2019
Reading CVD header (main.cld): WARNING: main.cld not found on remote server <== is this crucial??
Reading CVD header (main.cvd): OK
main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr)
Reading CVD header (daily.cld): OK
daily.cld is up to date (version: 25370, sigs: 2259916, f-level: 63, builder: raynman)
Reading CVD header (bytecode.cld): OK
bytecode.cvd is up to date (version: 328, sigs: 94, f-level: 63, builder: neo)
& on the line of PrivateMirror in /etc/freshclam.conf); running freshclam now gives:
[root@frclamclient etc]# freshclam
ClamAV update process started at Mon Feb 25 17:10:03 2019
Reading CVD header (main.cld): WARNING: main.cld not found on remote server <== is this crucial??
Reading CVD header (main.cvd): OK
main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr)
Reading CVD header (daily.cld): OK
daily.cld is up to date (version: 25370, sigs: 2259916, f-level: 63, builder: raynman)
Reading CVD header (bytecode.cld): OK
bytecode.cvd is up to date (version: 328, sigs: 94, f-level: 63, builder: neo)
cvd can be used in stead of cld... You will see it fetched later.
Clam requires continual updates... which require Internet connectivity...
I you have no Internet connection, likely Clam will error out + never start, because Clam requires checking for updates... because if it's data is outdated, then Clam is worth as much as a large rock.
Although some of the errors do look a bit odd.
Best if you post your entire setup of installation steps along with all installation output.
Tip: Cut + Paste actual text from your terminal window. Images are barely readable + there's also no way to cut a line out of an image to comment about a per line fix.