Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. ClamAV>
  3. users
freshclam not working
clamav-users at lists
Sep 11, 2023, 10:06 AM
Post #1 of 4 (233 views)
Permalink
Hi all,

I'm using clamav on 2 systems built the same way: the first one is behind a
firewall and freshclam is not working, the other one is using a proxy to
connect to the internet and freshclam is working.

For the system not working, I get this in the log:

Mon Sep 11 09:09:02 2023 -> ^remote_cvdhead: Download failed (6) Mon Sep 11
09:09:02 2023 -> ^ Message: Couldn't resolve host name
Mon Sep 11 09:09:02 2023 -> ^Failed to get daily database version
information from server: https://database.clamav.net
Mon Sep 11 09:09:02 2023 -> !check_for_new_database_version: Failed to find
daily database using server https://database.clamav.net.
Mon Sep 11 09:09:02 2023 -> *updatedb: daily database update failed.
Mon Sep 11 09:09:02 2023 -> Trying again in 5 secs...
Mon Sep 11 09:09:07 2023 -> *check_for_new_database_version: Local copy of
daily found: daily.cld.
Mon Sep 11 09:09:07 2023 -> Trying to retrieve CVD header from
https://database.clamav.net/daily.cvd
* Could not resolve host: database.clamav.net
* Closing connection 0
Mon Sep 11 09:09:07 2023 -> !remote_cvdhead: Download failed (6) Mon Sep 11
09:09:07 2023 -> ! Message: Couldn't resolve host name
Mon Sep 11 09:09:07 2023 -> ^Failed to get daily database version
information from server: https://database.clamav.net
Mon Sep 11 09:09:07 2023 -> !check_for_new_database_version: Failed to find
daily database using server https://database.clamav.net.
Mon Sep 11 09:09:07 2023 -> *updatedb: daily database update failed.
Mon Sep 11 09:09:07 2023 -> Giving up on https://database.clamav.net...
Mon Sep 11 09:09:07 2023 -> !Update failed for database: daily
Mon Sep 11 09:09:07 2023 -> !Database update process failed: HTTP GET failed
Mon Sep 11 09:09:07 2023 -> !Update failed.


I checked with my firewall guy that port 53 was open udp and tcp and he
said yes.

I checked with the faq and dns resolution is working and also the dig
command:

/tmp# nslookup database.clamav.net
Server: 8.8.8.8
Address: 8.8.8.8#53


Non-authoritative answer:
database.clamav.net canonical name =
database.clamav.net.cdn.cloudflare.net.
Name: database.clamav.net.cdn.cloudflare.net
Address: 104.16.219.84
Name: database.clamav.net.cdn.cloudflare.net
Address: 104.16.218.84
Name: database.clamav.net.cdn.cloudflare.net
Address: 2606:4700::6810:db54
Name: database.clamav.net.cdn.cloudflare.net
Address: 2606:4700::6810:da54


/tmp# dig @ns1.clamav.net db.us.big.clamav.net


; <<>> DiG 9.16.1-Ubuntu <<>> @ns1.clamav.net db.us.big.clamav.net
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 63233
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available


;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;db.us.big.clamav.net. IN A


;; Query time: 104 msec
;; SERVER: 193.28.86.61#53(193.28.86.61)
;; WHEN: Mon Sep 11 09:19:06 EDT 2023
;; MSG SIZE rcvd: 49


With curl, the download is partial:

/tmp# curl -O http://database.clamav.net/daily.cvd
% Total % Received % Xferd Average Speed Time Time Time
Current
Dload Upload Total Spent Left
Speed
100 4899 0 4899 0 0 199k 0 --:--:-- --:--:-- --:--:--
199k


Anyone have an idea on what could be my problem?

Thanks in advance,

Serge
Re: freshclam not working [ In reply to ]
clamav-users at lists
Sep 12, 2023, 2:10 PM
Post #2 of 4 (231 views)
Permalink
Curl won’t work at all.
But it definitely points to a dns problem.
— Sent from my iPhone
On Sep 11, 2023, at 13:07, Serge Slivitzky via clamav-users <clamav-users@lists.clamav.net> wrote:

? Hi all,
I'm using clamav on 2 systems built the same way: the first one is behind a firewall and freshclam is not working, the other one is using a proxy to connect to the internet and freshclam is working.
For the system not working, I get this in the log:
Mon Sep 11 09:09:02 2023 -> ^remote_cvdhead: Download failed (6) Mon Sep 11 09:09:02 2023 -> ^ Message: Couldn't resolve host nameMon Sep 11 09:09:02 2023 -> ^Failed to get daily database version information from server: https://database.clamav.net/"]https://database.clamav.netMon Sep 11 09:09:02 2023 -> !check_for_new_database_version: Failed to find daily database using server https://database.clamav.net/"]https://database.clamav.net.Mon Sep 11 09:09:02 2023 -> *updatedb: daily database update failed.Mon Sep 11 09:09:02 2023 -> Trying again in 5 secs...Mon Sep 11 09:09:07 2023 -> *check_for_new_database_version: Local copy of daily found: daily.cld.Mon Sep 11 09:09:07 2023 -> Trying to retrieve CVD header from https://database.clamav.net/daily.cvd"]https://database.clamav.net/daily.cvd* Could not resolve host: http://database.clamav.net/"]database.clamav.net* Closing connection 0Mon Sep 11 09:09:07 2023 -> !remote_cvdhead: Download failed (6) Mon Sep 11 09:09:07 2023 -> ! Message: Couldn't resolve host nameMon Sep 11 09:09:07 2023 -> ^Failed to get daily database version information from server: https://database.clamav.net/"]https://database.clamav.netMon Sep 11 09:09:07 2023 -> !check_for_new_database_version: Failed to find daily database using server https://database.clamav.net/"]https://database.clamav.net.Mon Sep 11 09:09:07 2023 -> *updatedb: daily database update failed.Mon Sep 11 09:09:07 2023 -> Giving up on https://database.clamav.net./"]https://database.clamav.net...Mon Sep 11 09:09:07 2023 -> !Update failed for database: dailyMon Sep 11 09:09:07 2023 -> !Database update process failed: HTTP GET failedMon Sep 11 09:09:07 2023 -> !Update failed.

I checked with my firewall guy that port 53 was open udp and tcp and he said yes.
I checked with the faq and dns resolution is working and also the dig command:
/tmp# nslookup http://database.clamav.net/"]database.clamav.net
Server: 8.8.8.8Address: 8.8.8.8#53

Non-authoritative answer:
http://database.clamav.net/"]database.clamav.net canonical name = http://database.clamav.net.cdn.cloudflare.net/"]database.clamav.net.cdn.cloudflare.net.
Name: http://database.clamav.net.cdn.cloudflare.net/"]database.clamav.net.cdn.cloudflare.net
Address: 104.16.219.84
Name: http://database.clamav.net.cdn.cloudflare.net/"]database.clamav.net.cdn.cloudflare.net
Address: 104.16.218.84
Name: http://database.clamav.net.cdn.cloudflare.net/"]database.clamav.net.cdn.cloudflare.net
Address: 2606:4700::6810:db54
Name: http://database.clamav.net.cdn.cloudflare.net/"]database.clamav.net.cdn.cloudflare.netAddress: 2606:4700::6810:da54

/tmp# dig @http://ns1.clamav.net/"]ns1.clamav.net http://db.us.big.clamav.net/"]db.us.big.clamav.net

; <<>> DiG 9.16.1-Ubuntu <<>> @http://ns1.clamav.net/"]ns1.clamav.net http://db.us.big.clamav.net/"]db.us.big.clamav.net; (1 server found);; global options: +cmd;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 63233;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:; EDNS: version: 0, flags:; udp: 4096;; QUESTION SECTION:;http://db.us.big.clamav.net/"]db.us.big.clamav.net. IN A

;; Query time: 104 msec;; SERVER: 193.28.86.61#53(193.28.86.61);; WHEN: Mon Sep 11 09:19:06 EDT 2023;; MSG SIZE rcvd: 49

With curl, the download is partial:
/tmp# curl -O http://database.clamav.net/daily.cvd"]http://database.clamav.net/daily.cvd % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed100 4899 0 4899 0 0 199k 0 --:--:-- --:--:-- --:--:-- 199k

Anyone have an idea on what could be my problem?
Thanks in advance,
Serge
_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
Re: freshclam not working [ In reply to ]
clamav-users at lists
Sep 12, 2023, 11:11 PM
Post #3 of 4 (231 views)
Permalink
On Tue, 12 Sep 2023, Joel Esler via clamav-users wrote:

> Curl won’t work at all.  
> But it definitely points to a dns problem. 
> — Sent from my iPhone
>
> On Sep 11, 2023, at 13:07, Serge Slivitzky via
> clamav-users <clamav-users@lists.clamav.net> wrote:
>
> ?  Hi all,
> I'm using clamav on 2 systems built the same way: the
> first one is behind a firewall and freshclam is not
> working, the other one is using a proxy to connect to the
> internet and freshclam is working.
>
> For the system not working, I get this in the log:
>
> Mon Sep 11 09:09:02 2023 -> ^remote_cvdhead:
> Download failed (6) Mon Sep 11 09:09:02 2023
> -> ^ Message: Couldn't resolve host name
> Mon Sep 11 09:09:02 2023 -> ^Failed to get daily database version information from server: https://database.clamav.net

Joel,
I was expecting current.cvd.clamav.net to be mentioned here ?

> Mon Sep 11 09:09:02 2023 -> !check_for_new_database_version: Failed to find daily database using server https://database.clamav.net. Mon Sep 11 09:09:02 2023 -> *updatedb: daily database update failed.
> Mon Sep 11 09:09:02 2023 -> Trying again in 5secs...

--
Andrew C. Aitchison Kendal, UK
andrew@aitchison.me.uk
_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat
Re: freshclam not working [ In reply to ]
clamav-users at lists
Sep 13, 2023, 7:02 AM
Post #4 of 4 (231 views)
Permalink
Off the top of my head. I think database is right.

Sent from my iPhone

> On Sep 13, 2023, at 02:12, Andrew C Aitchison via clamav-users <clamav-users@lists.clamav.net> wrote:
>
> ?On Tue, 12 Sep 2023, Joel Esler via clamav-users wrote:
>
>> Curl won’t work at all.
>> But it definitely points to a dns problem.
>> — Sent from my iPhone
>>
>> On Sep 11, 2023, at 13:07, Serge Slivitzky via
>> clamav-users <clamav-users@lists.clamav.net> wrote:
>>
>> ? Hi all,
>> I'm using clamav on 2 systems built the same way: the
>> first one is behind a firewall and freshclam is not
>> working, the other one is using a proxy to connect to the
>> internet and freshclam is working.
>> For the system not working, I get this in the log:
>>
>> Mon Sep 11 09:09:02 2023 -> ^remote_cvdhead:
>> Download failed (6) Mon Sep 11 09:09:02 2023
>> -> ^ Message: Couldn't resolve host name
>> Mon Sep 11 09:09:02 2023 -> ^Failed to get daily database version information from server: https://database.clamav.net
>
> Joel,
> I was expecting current.cvd.clamav.net to be mentioned here ?
>
>> Mon Sep 11 09:09:02 2023 -> !check_for_new_database_version: Failed to find daily database using server https://database.clamav.net. Mon Sep 11 09:09:02 2023 -> *updatedb: daily database update failed.
>> Mon Sep 11 09:09:02 2023 -> Trying again in 5secs...
>
> --
> Andrew C. Aitchison Kendal, UK
> andrew@aitchison.me.uk
> _______________________________________________
>
> Manage your clamav-users mailing list subscription / unsubscribe:
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/Cisco-Talos/clamav-documentation
>
> https://docs.clamav.net/#mailing-lists-and-chat
_______________________________________________

Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation

https://docs.clamav.net/#mailing-lists-and-chat

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal