In my case, clamav is used for the mail traffic (amavis, postfix, dovecot) and the webproxy (squid over c-icap).
Hardware: Intel xeon, 24GB ECC-Ram, Raid5.
System: ArchLinux
After the update to clamav 0.100 it came to coredums and the accesses to the Internet over the squid-proxy became unbearably slow.
The following steps helped me to get the system working almost normally again. However, the system load on the CPU is considerably higher with clamav 0.100 than with clamav 0.99.4.
But at least I can now use the system again, without having to turn off the virus protection altogether. There are about 30 workstations on the system that use the mail server and the proxy.
Here are my steps:
1. Delete all signature databases that are located (in my case) under /var/lib/clamav.
2. Manual freshclam for the standard signatures
3. Setting default_dbs_rating="LOW" in /etc/clamav-unofficial-sigs/user.conf
4. Forcing reloading the signature databases with clamav-unofficial-sigs.sh -F
In my case, clamav is used for the mail traffic (amavis, postfix, dovecot) and the webproxy (squid over c-icap).
Hardware: Intel xeon, 24GB ECC-Ram, Raid5.
System: ArchLinux
After the update to clamav 0.100 it came to coredums and the accesses to the Internet over the squid-proxy became unbearably slow.
The following steps helped me to get the system working almost normally again. However, the system load on the CPU is considerably higher with clamav 0.100 than with clamav 0.99.4.
But at least I can now use the system again, without having to turn off the virus protection altogether. There are about 30 workstations on the system that use the mail server and the proxy.
Here are my steps:
1. Delete all signature databases that are located (in my case) under /var/lib/clamav. dbs_rating= "LOW" in /etc/clamav- unofficial- sigs/user. conf unofficial- sigs.sh -F
2. Manual freshclam for the standard signatures
3. Setting default_
4. Forcing reloading the signature databases with clamav-
I use the following external sources:
sanesecurity_ enabled = "yes" enabled = "yes" ect_enabled = "yes" enabled = "yes" t_enabled = "yes"
securiteinfo_
linuxmalwaredet
malwarepatrol_
yararulesprojec
additional_enabled = "yes"
Maybe these steps will help you too.