Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. ClamAV>
  3. win32
[clamav-users] Unable to mirror ClamAV database
clamav-users at lists
Feb 8, 2022, 4:45 PM
Post #1 of 5 (404 views)
Permalink
Hello

This is my first post asking for help so hopefully clear enough and abiding by the rules.

I am using ClamAV 0.103.0/26063 and I am trying to mirror updates using the following:

/usr/local/bin/clamavmirror -w /var/spool/clamav-mirror -d /mnt/data/clamav-mirror/www -l /var/lock/subsys -r current.cvd.clamav.net<http://current.cvd.clamav.net> -a db.uk.clamav.net<http://db.uk.clamav.net> -u nginx -g nginx

The problem I have that the incremental updates aren’t being downloaded as I’m getting 403 on any update older than 28.1.2021 (see example output below).

Any idea why is my server blocked from receiving updates please ?

Thanks
Roy


clamavmirror:

[+] Querying TXT record: current.cvd.clamav.net<http://current.cvd.clamav.net> pass: 1
=> Query returned: 0.103.5:62:26447:1644352140:1:90:49192:333
[+] Starting workers
=> Starting diff download worker: 1
=> Starting diff download worker: 2
=> Starting diff download worker: 3
=> Starting diff download worker: 4
=> Starting signature download worker: 1
=> Starting signature download worker: 2
=> Starting signature download worker: 3
=> Starting signature download worker: 4
=> Starting signature download worker: 5
[+] Checking signature version: main
[+] Checking signature version: daily
[+] Downloading cdiff: daily-26065
=> Update required local: 59 => remote: 62
=> Downloading signature: main
[+] Checking signature version: bytecode
[+] Downloading cdiff: bytecode-332
=> Update required local: 331 => remote: 333
=> Downloading signature: bytecode
=> Download failed: bytecode code: 403
=> Download failed: main code: 403
=> Download failed: bytecode-332 code: 403
[+] Downloading cdiff: bytecode-332
=> Download failed: daily-26065 code: 403
[+] Downloading cdiff: daily-26065
=> Download failed: daily-26065 code: 403
….
….
….
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
=> Workers done processing queues
[+] Updating dns.txt file
=> No update required L: cabcc12a2172b0a18c120e51a985e41a => R: cabcc12a2172b0a18c120e51a985e41a
Re: [clamav-users] Unable to mirror ClamAV database [ In reply to ]
clamav-users at lists
Feb 8, 2022, 10:32 PM
Post #2 of 5 (403 views)
Permalink
Amy chance clammirror is no longer a supported method to download the database and I need to switch to another script as per:

https://www.mail-archive.com/clamav-users@lists.clamav.net/msg50017.html



On 9 Feb 2022, at 00:45, Roy Cohen <roy_cohen@hotmail.com> wrote:

? Hello

This is my first post asking for help so hopefully clear enough and abiding by the rules.

I am using ClamAV 0.103.0/26063 and I am trying to mirror updates using the following:

/usr/local/bin/clamavmirror -w /var/spool/clamav-mirror -d /mnt/data/clamav-mirror/www -l /var/lock/subsys -r current.cvd.clamav.net<http://current.cvd.clamav.net> -a db.uk.clamav.net<http://db.uk.clamav.net> -u nginx -g nginx

The problem I have that the incremental updates aren’t being downloaded as I’m getting 403 on any update older than 28.1.2021 (see example output below).

Any idea why is my server blocked from receiving updates please ?

Thanks
Roy


clamavmirror:

[+] Querying TXT record: current.cvd.clamav.net<http://current.cvd.clamav.net> pass: 1
=> Query returned: 0.103.5:62:26447:1644352140:1:90:49192:333
[+] Starting workers
=> Starting diff download worker: 1
=> Starting diff download worker: 2
=> Starting diff download worker: 3
=> Starting diff download worker: 4
=> Starting signature download worker: 1
=> Starting signature download worker: 2
=> Starting signature download worker: 3
=> Starting signature download worker: 4
=> Starting signature download worker: 5
[+] Checking signature version: main
[+] Checking signature version: daily
[+] Downloading cdiff: daily-26065
=> Update required local: 59 => remote: 62
=> Downloading signature: main
[+] Checking signature version: bytecode
[+] Downloading cdiff: bytecode-332
=> Update required local: 331 => remote: 333
=> Downloading signature: bytecode
=> Download failed: bytecode code: 403
=> Download failed: main code: 403
=> Download failed: bytecode-332 code: 403
[+] Downloading cdiff: bytecode-332
=> Download failed: daily-26065 code: 403
[+] Downloading cdiff: daily-26065
=> Download failed: daily-26065 code: 403
….
….
….
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
[+] Downloading cdiff: daily-26447
=> Download failed: daily-26447 code: 403
=> Workers done processing queues
[+] Updating dns.txt file
=> No update required L: cabcc12a2172b0a18c120e51a985e41a => R: cabcc12a2172b0a18c120e51a985e41a
Re: [clamav-users] Unable to mirror ClamAV database [ In reply to ]
clamav-users at lists
Feb 9, 2022, 2:04 AM
Post #3 of 5 (403 views)
Permalink
Hi there,

> On 9 Feb 2022, at 00:45, Roy Cohen <roy_cohen@hotmail.com> wrote:
>
> This is my first post ...

Welcome. :)

> ... ClamAV 0.103.0/26063 ... mirror updates using ...
>
> /usr/local/bin/clamavmirror ...

Well, you might have told us what 'clamavmirror' is, and from where
you got it. :)

> The problem I have that the incremental updates aren’t being
> downloaded as I’m getting 403 on any update older than 28.1.2021
> (see example output below).
>
> Any idea why is my server blocked from receiving updates please ?

You seem to have found out for yourself. You could have done that
first of course. :)

On Wed, 9 Feb 2022, Roy Cohen via clamav-users wrote:

> Amy chance clammirror is no longer a supported method to download
> the database and I need to switch to another script as per:
>
> https://www.mail-archive.com/clamav-users@lists.clamav.net/msg50017.html

For almost any reasonably big project there will be any number of what
I like to call 'Me Too' offerings 'Out There'. With many of them you
will be taking big security risks. I wouldn't touch most of them with
a bargepole. Things are bad enough even when you're careful. In the
case of ClamAV there have also been some very serious problems for the
infrastructure caused by mindlessly or maliciously scripted downloads.
Check out the archives of this list and the blog for more.

--

73,
Ged.

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml
Re: [clamav-users] Unable to mirror ClamAV database [ In reply to ]
clamav-users at lists
Feb 9, 2022, 2:07 AM
Post #4 of 5 (403 views)
Permalink
Sorry, I (wringly) assumed clammirror was a clamav provided tool hence assumed it is known.

It’s ok will follow the recommended approaches in the other mail thread.

Thanks for your help.

On 9 Feb 2022, at 10:04, G.W. Haywood <clamav@jubileegroup.co.uk> wrote:

?Hi there,

> On 9 Feb 2022, at 00:45, Roy Cohen <roy_cohen@hotmail.com> wrote:
>
> This is my first post ...

Welcome. :)

> ... ClamAV 0.103.0/26063 ... mirror updates using ...
>
> /usr/local/bin/clamavmirror ...

Well, you might have told us what 'clamavmirror' is, and from where
you got it. :)

> The problem I have that the incremental updates aren’t being
> downloaded as I’m getting 403 on any update older than 28.1.2021
> (see example output below).
> Any idea why is my server blocked from receiving updates please ?

You seem to have found out for yourself. You could have done that
first of course. :)

On Wed, 9 Feb 2022, Roy Cohen via clamav-users wrote:

> Amy chance clammirror is no longer a supported method to download
> the database and I need to switch to another script as per:
> https://www.mail-archive.com/clamav-users@lists.clamav.net/msg50017.html

For almost any reasonably big project there will be any number of what
I like to call 'Me Too' offerings 'Out There'. With many of them you
will be taking big security risks. I wouldn't touch most of them with
a bargepole. Things are bad enough even when you're careful. In the
case of ClamAV there have also been some very serious problems for the
infrastructure caused by mindlessly or maliciously scripted downloads.
Check out the archives of this list and the blog for more.

--

73,
Ged.

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml
Re: [clamav-users] Unable to mirror ClamAV database [ In reply to ]
clamav-users at lists
Feb 9, 2022, 5:29 AM
Post #5 of 5 (400 views)
Permalink
Cvdupdate is where it’s at for what you’re trying to do. Clammirror was one of our problems, and why we had to put a stop to it.


Sent from my ? iPhone

> On Feb 9, 2022, at 05:08, Roy Cohen via clamav-users <clamav-users@lists.clamav.net> wrote:
>
> ?Sorry, I (wringly) assumed clammirror was a clamav provided tool hence assumed it is known.
>
> It’s ok will follow the recommended approaches in the other mail thread.
>
> Thanks for your help.
>
> On 9 Feb 2022, at 10:04, G.W. Haywood <clamav@jubileegroup.co.uk> wrote:
>
> ?Hi there,
>
>> On 9 Feb 2022, at 00:45, Roy Cohen <roy_cohen@hotmail.com> wrote:
>>
>> This is my first post ...
>
> Welcome. :)
>
>> ... ClamAV 0.103.0/26063 ... mirror updates using ...
>>
>> /usr/local/bin/clamavmirror ...
>
> Well, you might have told us what 'clamavmirror' is, and from where
> you got it. :)
>
>> The problem I have that the incremental updates aren’t being
>> downloaded as I’m getting 403 on any update older than 28.1.2021
>> (see example output below).
>> Any idea why is my server blocked from receiving updates please ?
>
> You seem to have found out for yourself. You could have done that
> first of course. :)
>
>> On Wed, 9 Feb 2022, Roy Cohen via clamav-users wrote:
>>
>> Amy chance clammirror is no longer a supported method to download
>> the database and I need to switch to another script as per:
>> https://www.mail-archive.com/clamav-users@lists.clamav.net/msg50017.html
>
> For almost any reasonably big project there will be any number of what
> I like to call 'Me Too' offerings 'Out There'. With many of them you
> will be taking big security risks. I wouldn't touch most of them with
> a bargepole. Things are bad enough even when you're careful. In the
> case of ClamAV there have also been some very serious problems for the
> infrastructure caused by mindlessly or maliciously scripted downloads.
> Check out the archives of this list and the blog for more.
>
> --
>
> 73,
> Ged.
>
> _______________________________________________
>
> clamav-users mailing list
> clamav-users@lists.clamav.net
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal