Squid3-dev + antivirus + pfsense 2.1.5 32 bits



  • Senhores, segui esse tutorial descrito em : http://egoncalves.com.br/pfsense/pfsense-squid3-dev-clamav-i386/

    até ai tudo bem! subiu, atualizou o antivirus. Mas ele nao passa no teste do Eicar. Há algo a mais que possa ser feito?



  • No teste http ou https?

    o que tem nos logs?



  • No teste http:  www.eicar.org/download/eicar.com.txt

    Nos logs do clamav:

    
    +++ Started at Tue Jul 14 18:06:20 2015
    clamd daemon 0.98 (OS: freebsd8.3, ARCH: i386, CPU: i386)
    Running as user clamav (UID 9595, GID 9595)
    Log file size limited to 1048576 bytes.
    Reading databases from /var/db/clamav
    Not loading PUA signatures.
    Bytecode: Security mode set to "TrustSigned".
    Loaded 2424225 signatures.
    LOCAL: Unix socket file /var/run/clamav/clamd.sock
    LOCAL: Setting connection queue length to 200
    Limits: Global size limit set to 104857600 bytes.
    Limits: File size limit set to 26214400 bytes.
    Limits: Recursion level limit set to 16.
    Limits: Files limit set to 10000.
    Limits: MaxEmbeddedPE limit set to 10485760 bytes.
    Limits: MaxHTMLNormalize limit set to 10485760 bytes.
    Limits: MaxHTMLNoTags limit set to 2097152 bytes.
    Limits: MaxScriptNormalize limit set to 5242880 bytes.
    Limits: MaxZipTypeRcg limit set to 1048576 bytes.
    Archive support enabled.
    Algorithmic detection enabled.
    Portable Executable support enabled.
    ELF support enabled.
    Mail files support enabled.
    OLE2 support enabled.
    PDF support enabled.
    SWF support enabled.
    HTML support enabled.
    Self checking every 600 seconds.
    Set stacksize to 1114112
    Reading databases from /var/db/clamav
    Database correctly reloaded (3896634 signatures)
    Reading databases from /var/db/clamav
    Database correctly reloaded (3896634 signatures)
    SelfCheck: Database status OK.
    +++ Started at Tue Jul 14 18:37:23 2015
    clamd daemon 0.98 (OS: freebsd8.3, ARCH: i386, CPU: i386)
    Running as user clamav (UID 9595, GID 9595)
    Log file size limited to 1048576 bytes.
    Reading databases from /var/db/clamav
    Not loading PUA signatures.
    Bytecode: Security mode set to "TrustSigned".
    Loaded 3896634 signatures.
    LOCAL: Unix socket file /var/run/clamav/clamd.sock
    LOCAL: Setting connection queue length to 200
    Limits: Global size limit set to 104857600 bytes.
    Limits: File size limit set to 26214400 bytes.
    Limits: Recursion level limit set to 16.
    Limits: Files limit set to 10000.
    Limits: MaxEmbeddedPE limit set to 10485760 bytes.
    Limits: MaxHTMLNormalize limit set to 10485760 bytes.
    Limits: MaxHTMLNoTags limit set to 2097152 bytes.
    Limits: MaxScriptNormalize limit set to 5242880 bytes.
    Limits: MaxZipTypeRcg limit set to 1048576 bytes.
    Archive support enabled.
    Algorithmic detection enabled.
    Portable Executable support enabled.
    ELF support enabled.
    Mail files support enabled.
    OLE2 support enabled.
    PDF support enabled.
    SWF support enabled.
    HTML support enabled.
    Self checking every 600 seconds.
    Set stacksize to 1114112
    No stats for Database check - forcing reload
    Reading databases from /var/db/clamav
    Database correctly reloaded (3896634 signatures)
    
    


  • E no access.log apareceu o download do eicar?


Log in to reply