I followed the 'Perfect Server - Debian Etch' guide, and added the Amavis + ClamAV spam filtering guide, and everything worked awesome up until about a week ago. Now I have two processes each tacking 49% of my CPU power (Amavis using ClamAV) and nightly emails (pflogsum, mysql stats, etc) don't get through. In my inbox of my "root" user, I get "Undelivered Mail Returned to Sender" with a big long message Code: <[email protected]> (expanded from <root>): host 127.00.0.1[127.0.0.1] said: 451 4.5.0 Error in processing, id=31815-041, virus_scan FAILED: virus_scan: ALL VIRUS SCANNERS FAILED: ClamAV-clamd av-scanner FAILED: Too many retries to talk to /var/run/clamav/clamd/ctl (Can't connect to UNIX socket /var/run/clamav/clamd.ctl: No such file or directory) at (eval 44) line 268.; ClamAV-clamscan av-scanner FAILED: /usr/bin/clamscan timed out at (eval 44) line 462. (in reply to end of DATA command) Like I said above, everything worked great until about a week, maybe a week and a half ago and I haven't changed anything (it just sits under my desk chugging along doing what it's supposed to do). Any ideas?
restarted clam, nothing changes attempted to restart amavis [in the theory that amavis calls clam], could not restarts, just sits at "stopping amavis:", no failed, nothing attempted to restart postfix, error restarted machine, still have two processes of clam running taking up 49% each
Code: # ls -la /var/run/clamav/clamd/ ls: /var/run/clamav/clamd/: No such file or directory upon that, ran this: Code: # updatedb # locate clamd /etc/clamav/clamd.conf /usr/bin/clamdscan /usr/sbin/clamd /usr/share/doc/clamav-base/examples/clamd.conf /usr/share/doc/clamav/examples/clamdmon /usr/share/doc/clamav/examples/clamdmon/clamdmon-1.0.tar.gz /usr/share/doc/clamav/examples/clamdwatch /usr/share/doc/clamav/examples/clamdwatch/clamdwatch.tar.gz /usr/share/man/man1/clamdscan.1.gz /usr/share/man/man5/clamd.conf.5.gz /usr/share/man/man8/clamd.8.gz /var/lib/ucf/cache/:etc:clamav:clamd.conf
ran it, no errors, restarted clam, no errors now i have 3 process each taking up 30-ish% top output: Code: 19372 amavis 25 0 19032 13m 1076 R 31.6 2.7 0:34.17 clamscan 12996 clamav 25 0 31572 25m 516 R 29.9 5.0 8:54.84 clamd 19371 amavis 25 0 19036 13m 1076 R 29.9 2.7 0:34.31 clamscan
don't know what happened, but as of now, i have emails in my inbox and no processor load. i'll find out more in the morning after all the cron jobs run
well, it's the next morning, i have 0 emails in my inbox and have the same two processes running, amavis calling clamscan Code: 11688 amavis 25 0 19444 13m 1076 R 49.9 2.8 0:45.52 clamscan 11689 amavis 25 0 19440 13m 1076 R 49.9 2.8 0:45.52 clamscan
same as it was before: Code: # ls -la /var/run/clamav/clamd/ total 8 drwxr-xr-x 2 root root 4096 2008-06-10 07:20 . drwxr-xr-x 3 clamav clamav 4096 2008-06-10 19:19 .. and after running that, i restarted clam as well and the output is still the same
still not sure what is causing the problem...thinking i may have to remove amavis and clam, start again...
