Mailing List Archive

prolem with freshclam when no sudo user is logged in the system
Hi There,

now i have a small problem with freshlcam, when i run a freshclam query on @reboot with user cronjob (/var/spool/cron/cronjobs/USERNAME):

Mon Dec 26 13:18:24 2022 -> --------------------------------------
Mon Dec 26 13:18:24 2022 -> ClamAV update process started at Mon Dec 26 13:18:24 2022
Mon Dec 26 13:18:24 2022 -> WARNING: Can't query current.cvd.clamav.net
Mon Dec 26 13:18:24 2022 -> WARNING: Invalid DNS reply. Falling back to HTTP mode.
Mon Dec 26 13:18:24 2022 -> Trying to retrieve CVD header from https://database.clamav.net/daily.cvd
Mon Dec 26 13:18:24 2022 -> WARNING: remote_cvdhead: Download failed (6) Mon Dec 26 13:18:24 2022 -> WARNING:  Message: Couldn't resolve host name
Mon Dec 26 13:18:24 2022 -> WARNING: Failed to get daily database version information from server: https://database.clamav.net
Mon Dec 26 13:18:24 2022 -> ERROR: check_for_new_database_version: Failed to find daily database using server https://database.clamav.net.
Mon Dec 26 13:18:24 2022 -> Trying again in 5 secs...
Mon Dec 26 13:18:29 2022 -> Trying to retrieve CVD header from https://database.clamav.net/daily.cvd
Mon Dec 26 13:18:29 2022 -> WARNING: remote_cvdhead: Download failed (6) Mon Dec 26 13:18:29 2022 -> WARNING:  Message: Couldn't resolve host name
Mon Dec 26 13:18:29 2022 -> WARNING: Failed to get daily database version information from server: https://database.clamav.net
Mon Dec 26 13:18:29 2022 -> ERROR: check_for_new_database_version: Failed to find daily database using server https://database.clamav.net.
Mon Dec 26 13:18:29 2022 -> Trying again in 5 secs...
Mon Dec 26 13:18:34 2022 -> Trying to retrieve CVD header from https://database.clamav.net/daily.cvd
Mon Dec 26 13:18:35 2022 -> OK
Mon Dec 26 13:18:35 2022 -> daily database available for update (local version: 26761, remote version: 26762)
Mon Dec 26 13:18:36 2022 -> Testing database: '/var/lib/clamav/tmp.131abfe023/clamav-e8580f4a0c38bf88fb8b13c30fca810d.tmp-daily.cld' ...
Mon Dec 26 13:18:40 2022 -> Database test passed.
Mon Dec 26 13:18:40 2022 -> daily.cld updated (version: 26762, sigs: 2014386, f-level: 90, builder: raynman)
Mon Dec 26 13:18:40 2022 -> Trying to retrieve CVD header from https://database.clamav.net/main.cvd
Mon Dec 26 13:18:40 2022 -> main.cvd database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
Mon Dec 26 13:18:40 2022 -> Trying to retrieve CVD header from https://database.clamav.net/bytecode.cvd
Mon Dec 26 13:18:40 2022 -> bytecode.cvd database is up-to-date (version: 333, sigs: 92, f-level: 63, builder: awillia2)

this happens if no sudo user is currently signed in the system.
i have checked this page https://docs.clamav.net/faq/faq-troubleshoot.html

in my etc/resolv.conf i have no entries for clamav.

when i manually run host -t txt current.cvd.clamav.net i get following response

bnhg
Re: prolem with freshclam when no sudo user is logged in the system [ In reply to ]
On 26.12.22 13:46, newcomer01 via clamav-users wrote:
>now i have a small problem with freshlcam, when i run a freshclam query on @reboot with user cronjob (/var/spool/cron/cronjobs/USERNAME):
>
>Mon Dec 26 13:18:24 2022 -> --------------------------------------
>Mon Dec 26 13:18:24 2022 -> ClamAV update process started at Mon Dec 26 13:18:24 2022
>Mon Dec 26 13:18:24 2022 -> WARNING: Can't query current.cvd.clamav.net
>Mon Dec 26 13:18:24 2022 -> WARNING: Invalid DNS reply. Falling back to HTTP mode.
>Mon Dec 26 13:18:24 2022 -> Trying to retrieve CVD header from https://database.clamav.net/daily.cvd
>Mon Dec 26 13:18:24 2022 -> WARNING: remote_cvdhead: Download failed (6) Mon Dec 26 13:18:24 2022 -> WARNING:? Message: Couldn't resolve host name

>this happens if no sudo user is currently signed in the system.
>i have checked this page https://docs.clamav.net/faq/faq-troubleshoot.html
>
>in my etc/resolv.conf i have no entries for clamav.

/etc/resolv.conf is not related to clamav, it's related to DNS resolution.

what are its permissions and what is its content?

Perhaps there's an issue with systemd or network-manager.

--
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
WinError #98652: Operation completed successfully.
_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
Re: prolem with freshclam when no sudo user is logged in the system [ In reply to ]
> Date: Monday, December 26, 2022 13:46:54 +0000
> From: newcomer01 via clamav-users <clamav-users@lists.clamav.net>
>
> Hi There,
>
> now i have a small problem with freshlcam, when i run a freshclam
> query on @reboot with user cronjob
> (/var/spool/cron/cronjobs/USERNAME):
>
> Mon Dec 26 13:18:24 2022 -> --------------------------------------
> Mon Dec 26 13:18:24 2022 -> ClamAV update process started at Mon
> Dec 26 13:18:24 2022
> Mon Dec 26 13:18:24 2022 -> WARNING: Can't query
> current.cvd.clamav.net
> Mon Dec 26 13:18:24 2022 -> WARNING: Invalid DNS reply. Falling
> back to HTTP mode.
> Mon Dec 26 13:18:24 2022 -> Trying to retrieve CVD header from
> https://database.clamav.net/daily.cvd
> Mon Dec 26 13:18:24 2022 -> WARNING: remote_cvdhead: Download
> failed (6) Mon Dec 26 13:18:24 2022 -> WARNING:  Message: Couldn't
> resolve host name


It looks like you have a DNS issue when this is trying to run. You
should look to see how/that dns is working on this machine. The
cronjobs run after the system startup so, in general, it shouldn't be
a timing issue but could be depending on how you have things set up.

The response that you get from a:

host -t txt current.cvd.clamav.net

command should look something like:

current.cvd.clamav.net descriptive text
"0.103.7:62:26762:1672074000:1:90:49192:333"

The *.clamav.net services run off a CDN so the IPnumbers can change
at will, so don't try to overcome your dns issue by putting something
in our resolve.conf.


_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
Re: prolem with freshclam when no sudo user is logged in the system [ In reply to ]
my dns services are set inside the router directly (AVM FritzBox) and link to cloudflares dns servers (IPv4 and IPv6) are set up here.
on my local machine i didn't use dns or something


Von / From: Clamav User Mailinglist <mailto:clamav-users@lists.clamav.net>
An / To: Newcomer01 <mailto:newcomer01@posteo.de>
CC / CC: Richard <mailto:inbound-lists-clamav@listmail.innovate.net>
Gesendet / Sent: Montag, Dezember 26, 2022 um 18:22 (at 06:22 PM) +0100
Betreff / Subject: Re: [clamav-users] prolem with freshclam when no sudo user is logged in the system
>> Date: Monday, December 26, 2022 13:46:54 +0000
>> From: newcomer01 via clamav-users <clamav-users@lists.clamav.net>
>>
>> Hi There,
>>
>> now i have a small problem with freshlcam, when i run a freshclam
>> query on @reboot with user cronjob
>> (/var/spool/cron/cronjobs/USERNAME):
>>
>> Mon Dec 26 13:18:24 2022 -> --------------------------------------
>> Mon Dec 26 13:18:24 2022 -> ClamAV update process started at Mon
>> Dec 26 13:18:24 2022
>> Mon Dec 26 13:18:24 2022 -> WARNING: Can't query
>> current.cvd.clamav.net
>> Mon Dec 26 13:18:24 2022 -> WARNING: Invalid DNS reply. Falling
>> back to HTTP mode.
>> Mon Dec 26 13:18:24 2022 -> Trying to retrieve CVD header from
>> https://database.clamav.net/daily.cvd
>> Mon Dec 26 13:18:24 2022 -> WARNING: remote_cvdhead: Download
>> failed (6) Mon Dec 26 13:18:24 2022 -> WARNING:  Message: Couldn't
>> resolve host name
>
> It looks like you have a DNS issue when this is trying to run. You
> should look to see how/that dns is working on this machine. The
> cronjobs run after the system startup so, in general, it shouldn't be
> a timing issue but could be depending on how you have things set up.
>
> The response that you get from a:
>
> host -t txt current.cvd.clamav.net
>
> command should look something like:
>
> current.cvd.clamav.net descriptive text
> "0.103.7:62:26762:1672074000:1:90:49192:333"
>
> The *.clamav.net services run off a CDN so the IPnumbers can change
> at will, so don't try to overcome your dns issue by putting something
> in our resolve.conf.
>
>
> _______________________________________________
>
> Manage your clamav-users mailing list subscription / unsubscribe:
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/Cisco-Talos/clamav-documentation
>
> https://docs.clamav.net/#mailing-lists-and-chat

_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
Re: prolem with freshclam when no sudo user is logged in the system [ In reply to ]
your local machine needs have functioning dns - i.e., be able to get
responses to name lookups. to do that it needs point to nameservers.
that's generally done/shown in your /etc/resolv.conf file. if your
local machine has static ipnumbers you will likely have set the
nameservers explicitly when you set that up. if it uses dhcp it
should get them from your dhcp server.

in my previous mention of resolve.conf and clamav/CDN, that should
have been /etc/hosts.

[.it would have better if you hadn't top posted, but as you have i'm
going to continue that - hence the replies will be a bit jumbled.]

[.i am on this mailing list. please do *not* also include my email
address in direct replies.]



> Date: Monday, December 26, 2022 17:57:57 +0000
> From: newcomer01 via clamav-users <clamav-users@lists.clamav.net>
> To: Richard via clamav-users <clamav-users@lists.clamav.net>
>
> my dns services are set inside the router directly (AVM FritzBox)
> and link to cloudflares dns servers (IPv4 and IPv6) are set up here.
> on my local machine i didn't use dns or something
>
>
> Von / From: Clamav User Mailinglist
> <mailto:clamav-users@lists.clamav.net>
> An / To: Newcomer01 <mailto:newcomer01@posteo.de>
> CC / CC: Richard <mailto:inbound-lists-clamav@listmail.innovate.net>
> Gesendet / Sent: Montag, Dezember 26, 2022 um 18:22 (at 06:22 PM)
> +0100
> Betreff / Subject: Re: [clamav-users] prolem with freshclam when no
> sudo user is logged in the system
>>> Date: Monday, December 26, 2022 13:46:54 +0000
>>> From: newcomer01 via clamav-users <clamav-users@lists.clamav.net>
>>>
>>> Hi There,
>>>
>>> now i have a small problem with freshlcam, when i run a freshclam
>>> query on @reboot with user cronjob
>>> (/var/spool/cron/cronjobs/USERNAME):
>>>
>>> Mon Dec 26 13:18:24 2022 -> --------------------------------------
>>> Mon Dec 26 13:18:24 2022 -> ClamAV update process started at Mon
>>> Dec 26 13:18:24 2022
>>> Mon Dec 26 13:18:24 2022 -> WARNING: Can't query
>>> current.cvd.clamav.net
>>> Mon Dec 26 13:18:24 2022 -> WARNING: Invalid DNS reply. Falling
>>> back to HTTP mode.
>>> Mon Dec 26 13:18:24 2022 -> Trying to retrieve CVD header from
>>> https://database.clamav.net/daily.cvd
>>> Mon Dec 26 13:18:24 2022 -> WARNING: remote_cvdhead: Download
>>> failed (6) Mon Dec 26 13:18:24 2022 -> WARNING:  Message:
>>> Couldn't resolve host name
>>
>> It looks like you have a DNS issue when this is trying to run. You
>> should look to see how/that dns is working on this machine. The
>> cronjobs run after the system startup so, in general, it shouldn't
>> be a timing issue but could be depending on how you have things
>> set up.
>>
>> The response that you get from a:
>>
>> host -t txt current.cvd.clamav.net
>>
>> command should look something like:
>>
>> current.cvd.clamav.net descriptive text
>> "0.103.7:62:26762:1672074000:1:90:49192:333"
>>
>> The *.clamav.net services run off a CDN so the IPnumbers can change
>> at will, so don't try to overcome your dns issue by putting
>> something in our resolve.conf.
>>
>>


_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
Re: prolem with freshclam when no sudo user is logged in the system [ In reply to ]
i do not also include your e-mail-adress, i answer your posting only.

Sorry, replies on top is the default setting of my client ...
what in my configuration i should change? I use mostly the default settings of ubuntu 22.04.1 ... okay, i must change the the permissions of /var/spool/cron/cronjobs and my own cronjob file, otherwise nothing of my cronjobs have worked - why? I don't know.


Von / From: Clamav User Mailinglist <mailto:clamav-users@lists.clamav.net>
An / To: Newcomer01 <mailto:newcomer01@posteo.de>
CC / CC: Richard <mailto:inbound-lists-clamav@listmail.innovate.net>
Gesendet / Sent: Montag, Dezember 26, 2022 um 20:36 (at 08:36 PM) +0100
Betreff / Subject: Re: [clamav-users] prolem with freshclam when no sudo user is logged in the system
> your local machine needs have functioning dns - i.e., be able to get
> responses to name lookups. to do that it needs point to nameservers.
> that's generally done/shown in your /etc/resolv.conf file. if your
> local machine has static ipnumbers you will likely have set the
> nameservers explicitly when you set that up. if it uses dhcp it
> should get them from your dhcp server.
>
> in my previous mention of resolve.conf and clamav/CDN, that should
> have been /etc/hosts.
>
> [.it would have better if you hadn't top posted, but as you have i'm
> going to continue that - hence the replies will be a bit jumbled.]
>
> [.i am on this mailing list. please do *not* also include my email
> address in direct replies.]
>
>
>
>> Date: Monday, December 26, 2022 17:57:57 +0000
>> From: newcomer01 via clamav-users <clamav-users@lists.clamav.net>
>> To: Richard via clamav-users <clamav-users@lists.clamav.net>
>>
>> my dns services are set inside the router directly (AVM FritzBox)
>> and link to cloudflares dns servers (IPv4 and IPv6) are set up here.
>> on my local machine i didn't use dns or something
>>
>>
>> Von / From: Clamav User Mailinglist
>> <mailto:clamav-users@lists.clamav.net>
>> An / To: Newcomer01 <mailto:newcomer01@posteo.de>
>> CC / CC: Richard <mailto:inbound-lists-clamav@listmail.innovate.net>
>> Gesendet / Sent: Montag, Dezember 26, 2022 um 18:22 (at 06:22 PM)
>> +0100
>> Betreff / Subject: Re: [clamav-users] prolem with freshclam when no
>> sudo user is logged in the system
>>>> Date: Monday, December 26, 2022 13:46:54 +0000
>>>> From: newcomer01 via clamav-users <clamav-users@lists.clamav.net>
>>>>
>>>> Hi There,
>>>>
>>>> now i have a small problem with freshlcam, when i run a freshclam
>>>> query on @reboot with user cronjob
>>>> (/var/spool/cron/cronjobs/USERNAME):
>>>>
>>>> Mon Dec 26 13:18:24 2022 -> --------------------------------------
>>>> Mon Dec 26 13:18:24 2022 -> ClamAV update process started at Mon
>>>> Dec 26 13:18:24 2022
>>>> Mon Dec 26 13:18:24 2022 -> WARNING: Can't query
>>>> current.cvd.clamav.net
>>>> Mon Dec 26 13:18:24 2022 -> WARNING: Invalid DNS reply. Falling
>>>> back to HTTP mode.
>>>> Mon Dec 26 13:18:24 2022 -> Trying to retrieve CVD header from
>>>> https://database.clamav.net/daily.cvd
>>>> Mon Dec 26 13:18:24 2022 -> WARNING: remote_cvdhead: Download
>>>> failed (6) Mon Dec 26 13:18:24 2022 -> WARNING:  Message:
>>>> Couldn't resolve host name
>>> It looks like you have a DNS issue when this is trying to run. You
>>> should look to see how/that dns is working on this machine. The
>>> cronjobs run after the system startup so, in general, it shouldn't
>>> be a timing issue but could be depending on how you have things
>>> set up.
>>>
>>> The response that you get from a:
>>>
>>> host -t txt current.cvd.clamav.net
>>>
>>> command should look something like:
>>>
>>> current.cvd.clamav.net descriptive text
>>> "0.103.7:62:26762:1672074000:1:90:49192:333"
>>>
>>> The *.clamav.net services run off a CDN so the IPnumbers can change
>>> at will, so don't try to overcome your dns issue by putting
>>> something in our resolve.conf.
>>>
>>>
>
> _______________________________________________
>
> Manage your clamav-users mailing list subscription / unsubscribe:
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/Cisco-Talos/clamav-documentation
>
> https://docs.clamav.net/#mailing-lists-and-chat

_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
Re: prolem with freshclam when no sudo user is logged in the system [ In reply to ]
okay, i have now added dns server to my local lan-connection for IPv4 and IPv6

v4

v6

hope this woll work now


Von / From: Clamav User Mailinglist <mailto:clamav-users@lists.clamav.net>
An / To: Newcomer01 <mailto:newcomer01@posteo.de>
CC / CC: Richard <mailto:inbound-lists-clamav@listmail.innovate.net>
Gesendet / Sent: Montag, Dezember 26, 2022 um 20:36 (at 08:36 PM) +0100
Betreff / Subject: Re: [clamav-users] prolem with freshclam when no sudo user is logged in the system
> your local machine needs have functioning dns - i.e., be able to get
> responses to name lookups. to do that it needs point to nameservers.
> that's generally done/shown in your /etc/resolv.conf file. if your
> local machine has static ipnumbers you will likely have set the
> nameservers explicitly when you set that up. if it uses dhcp it
> should get them from your dhcp server.
>
> in my previous mention of resolve.conf and clamav/CDN, that should
> have been /etc/hosts.
>
> [.it would have better if you hadn't top posted, but as you have i'm
> going to continue that - hence the replies will be a bit jumbled.]
>
> [.i am on this mailing list. please do *not* also include my email
> address in direct replies.]
>
>
>
>> Date: Monday, December 26, 2022 17:57:57 +0000
>> From: newcomer01 via clamav-users<clamav-users@lists.clamav.net>
>> To: Richard via clamav-users<clamav-users@lists.clamav.net>
>>
>> my dns services are set inside the router directly (AVM FritzBox)
>> and link to cloudflares dns servers (IPv4 and IPv6) are set up here.
>> on my local machine i didn't use dns or something
>>
>>
>> Von / From: Clamav User Mailinglist
>> <mailto:clamav-users@lists.clamav.net>
>> An / To: Newcomer01<mailto:newcomer01@posteo.de>
>> CC / CC: Richard<mailto:inbound-lists-clamav@listmail.innovate.net>
>> Gesendet / Sent: Montag, Dezember 26, 2022 um 18:22 (at 06:22 PM)
>> +0100
>> Betreff / Subject: Re: [clamav-users] prolem with freshclam when no
>> sudo user is logged in the system
>>>> Date: Monday, December 26, 2022 13:46:54 +0000
>>>> From: newcomer01 via clamav-users<clamav-users@lists.clamav.net>
>>>>
>>>> Hi There,
>>>>
>>>> now i have a small problem with freshlcam, when i run a freshclam
>>>> query on @reboot with user cronjob
>>>> (/var/spool/cron/cronjobs/USERNAME):
>>>>
>>>> Mon Dec 26 13:18:24 2022 -> --------------------------------------
>>>> Mon Dec 26 13:18:24 2022 -> ClamAV update process started at Mon
>>>> Dec 26 13:18:24 2022
>>>> Mon Dec 26 13:18:24 2022 -> WARNING: Can't query
>>>> current.cvd.clamav.net
>>>> Mon Dec 26 13:18:24 2022 -> WARNING: Invalid DNS reply. Falling
>>>> back to HTTP mode.
>>>> Mon Dec 26 13:18:24 2022 -> Trying to retrieve CVD header from
>>>> https://database.clamav.net/daily.cvd
>>>> Mon Dec 26 13:18:24 2022 -> WARNING: remote_cvdhead: Download
>>>> failed (6) Mon Dec 26 13:18:24 2022 -> WARNING:  Message:
>>>> Couldn't resolve host name
>>> It looks like you have a DNS issue when this is trying to run. You
>>> should look to see how/that dns is working on this machine. The
>>> cronjobs run after the system startup so, in general, it shouldn't
>>> be a timing issue but could be depending on how you have things
>>> set up.
>>>
>>> The response that you get from a:
>>>
>>> host -t txt current.cvd.clamav.net
>>>
>>> command should look something like:
>>>
>>> current.cvd.clamav.net descriptive text
>>> "0.103.7:62:26762:1672074000:1:90:49192:333"
>>>
>>> The *.clamav.net services run off a CDN so the IPnumbers can change
>>> at will, so don't try to overcome your dns issue by putting
>>> something in our resolve.conf.
>>>
>>>
>
> _______________________________________________
>
> Manage your clamav-users mailing list subscription / unsubscribe:
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/Cisco-Talos/clamav-documentation
>
> https://docs.clamav.net/#mailing-lists-and-chat