@@ -1,3 +1,9 @@

+Tue Feb 10 19:17:53 CET 2004 (tk)

+---------------------------------

+  * docs: complete clamdoc.pdf French translation by Stephane Jeannenot

+  * docs: Polish how-to on ClamAV and Sendmail integration (with clamav-milter)

+	  by  Przemyslaw Holowczyc

+

 Tue Feb 10 17:05:31 GMT 2004 (njh)

 ----------------------------------

   * libclamav:	Recognised new kind of bounce message

@@ -19,6 +25,7 @@ Tue Feb 10 10:21:02 GMT 2004 (njh)

 ----------------------------------

   * contrib:	The Windows client now recovers better from errors during

   	scanning

+

 Mon Feb  9 17:46:29 GMT 2004 (njh)

 ----------------------------------

   * contrib:	The Windows client now allows the port to be specified

@@ -44,7 +51,7 @@ Mon Feb  9 13:40:37 GMT 2004 (trog)

 Mon Feb  9 11:09:56 GMT 2004 (njh)

 ----------------------------------

   * clamav-milter:	Added --headers patch from "Leonid Zeitlin"

-	<lz@europe.com>, though a lot of people have requested it!

+	<lz*europe.com>, though a lot of people have requested it!

 Mon Feb  9 02:04:36 CET 2004 (tk)

 ---------------------------------

@@ -4,27 +4,30 @@ here may not be available in binary packages.

 0.66

 ----

-

-

-

-Noteworthy changes in this version:

+This version is a response to the "clamav 0.65 remote DOS exploit" information

+published on popular security-related mailing lists. Unfortunately we had

+not been contacted by the author before he published that and had to release

+this (unplanned) package very quickly (it should be mentioned that CVS version

+was not vulnerable to the exploit). Untested code has been disabled also

+the Dazuko support is temporarily not available (if you really need it please

+use a CVS version or wait for a next stable release). Other noteworthy changes:

 -) clamd:

-    + fixed a database timestamp handling (and a double reload problem reported

+    + fixed database timestamp handling (and a double reload problem reported

       by Alex Pleiner and Ole Stanstrup)

-    + UseProcesses (use processes instead of threads, warning: untested code)

-      Also please check James Stevens' nclamd (based on a similar architecture

-      to Apache) if you prefer processes over threads.

-    + new directive ArchiveMaxCompressionRatio

-    + fixed a segmentation fault after database update in on-access scanner

+    + new directive: ArchiveMaxCompressionRatio

+    + new command: SESSION (starts a clamd session and allows to do multiple

+      commands per TCP session)

 -) clamav-milter: (Nigel Horne)

     + added support for AllowSupplementaryGroups and ThreadTimeout

     + added --quarantine-dir (thanks to Michael Dankov)

+    + added --noreject (thanks to Vijay Sarvepalli)

+    + added --headers (thanks Leonid Zeitlin)

     + added --sign option

 -) libclamav:

+    + detect Worm.SCO.A bounces (Nigel)

     + prevent buffer overflow in broken uuencoded files (Nigel)

     + scan multipart alternatives that have no boundaries (Nigel)

     + better handling of encapsulated messages (Nigel)

@@ -41,12 +44,87 @@ Noteworthy changes in this version:

 -) clamscan:

     + support for multiple arguments on command line (Thomas Lamy)

-    + fixed a buffer overflow in --move (Denis De Messemacker)

+    + fixed buffer overflow in --move (Denis De Messemacker)

     + removed support for sendfile() under Linux

-    + added --bell

 -) freshclam:

-    + support for freshclam.conf

+    + support for freshclam.conf (that may be optionally merged with

+      clamav.conf, command line options overwrite config settings)

+    + work-around for potential database downgrade (subtle problem

+      in r-r dns handling) - reported by Daniel Mario Vega and patched

+      by Luca Gibelli

+

+-) contrib:

+    + clamdwatch (by Mike Cathey)

+    + windows clamd client with drag&drop support (Nigel Horne)

+

+-) documentation:

+    + complete clamdoc.pdf French translation by Stephane Jeannenot

+    + Polish how-to on ClamAV and Sendmail integration (with clamav-milter)

+      by Przemyslaw Holowczyc

+

+

+News:

+

+ClamAV was the first anti-virus protecting against Worm.SCO.A (aka MyDoom.A) !

+The signature was published by Diego d'Ambra in the daily update 105,

+26-Jan-2004 20:23 GMT and we were at least two hours faster than "big" AV

+vendors:

+http://sourceforge.net/mailarchive/forum.php?thread_id=3764826&forum_id=34654

+http://www.pcwelt.de/news/viren_bugs/37278/4.html

+

+

+clamav-devel is finally able to decode OLE2 (Microsoft Office) files and

+decompress VBA streams ! The code is developed by Trog, official ClamAV

+developer. Also we're testing new clamd implementation that will solve

+several important problems (especially that "Time out" related). Please

+help us and test the latest CVS version.

+

+

+The virus database now contains more than 20.000 signatures ! On January 8,

+Denis De Messemacker (who joined our team 3 months ago) added signatures for

+about 7700 new viruses. Also special thanks go to Tomasz Papszun for his

+hard work on daily submissions and forcing us to keep ClamAV quality on

+the highest possible level.

+

+

+New mirroring mechanisms. Luca Gibelli (ClamAV) and mirror administrators

+(22 sites, http://www.clamav.net/mirrors.html, please see clamdoc.pdf for

+a complete mirror information) are converting mirrors to new "push mirroring"

+method. It uses advanced techniques to ensure all the mirrors are up to date.

+More info: http://www.clamav.net/docs/mirrors

+

+

+"Newsworthy Hack of Kindness" - Affero.net is featuring ClamAV in its latest

+newsletter (Volume #9, January 2004: http://www.affero.net/nl/dec03.html).

+Affero is a great rate-donate systema and its mission is to bring a culture

+of patronage to the Internet. Currently we only accept donations via Affero.

+You can also help us and promote our project by adding the ClamAV logo to

+your home page. Look at http://www.clamav.net/donate.html for more information.

+

+

+We would like to thank our donors:

+

+    * Jeremy Garcia (http://www.linuxquestions.org)

+    * Andries Filmer (http://www.netexpo.nl)

+    * David Eriksson (http://www.2good.nu)

+    * Dynamic Network Services, Inc (http://www.dyndns.org)

+    * epublica

+    * Invisik Corporation (http://www.invisik.com)

+    * Keith (http://www.textpad.com)

+    * Explido Software USA Inc. (http://www.explido.us)

+    * cheahch from Singapore

+    * Electric Embers

+    * Stephane Rault

+    * Brad Koehn

+    * David Farrick

+    * ActiveIntra.net Inc. (http://www.activeintra.net)

+    * An anonymous donor from Colorado, US

+

+--

+Tomasz Kojm <tkojm*clamav.net>

+February 10, 2004

+

 0.65

 ----

new file mode 100644

Binary files /dev/null and b/clamav-devel/contrib/clamdwatch/clamdwatch.tar.gz differ

new file mode 100644

Binary files /dev/null and b/clamav-devel/docs/French/clamdoc-french.pdf differ

@@ -15,5 +15,5 @@

 #  along with this program; if not, write to the Free Software

 #  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.

-EXTRA_DIST = clamdoc.pdf DMS Spanish Japanese html man FreeBSD-HowTo Portugese Turkish clamd_supervised clamav-mirror-howto.pdf signatures.pdf

+EXTRA_DIST = clamdoc.pdf DMS Spanish Japanese html man FreeBSD-HowTo Portugese Turkish clamd_supervised clamav-mirror-howto.pdf signatures.pdf French Polish

 man_MANS = man/clamscan.1 man/freshclam.1 man/sigtool.1 man/clamd.8 man/clamav.conf.5 man/clamdscan.1 man/clamav-milter.8

@@ -115,7 +115,7 @@ am__include = @am__include@

 am__quote = @am__quote@

 install_sh = @install_sh@

-EXTRA_DIST = clamdoc.pdf DMS Spanish Japanese html man FreeBSD-HowTo Portugese Turkish clamd_supervised clamav-mirror-howto.pdf signatures.pdf

+EXTRA_DIST = clamdoc.pdf DMS Spanish Japanese html man FreeBSD-HowTo Portugese Turkish clamd_supervised clamav-mirror-howto.pdf signatures.pdf French Polish

 man_MANS = man/clamscan.1 man/freshclam.1 man/sigtool.1 man/clamd.8 man/clamav.conf.5 man/clamdscan.1 man/clamav-milter.8

 subdir = docs

 mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs

new file mode 100644

Binary files /dev/null and b/clamav-devel/docs/Polish/clam.png differ

new file mode 100644

@@ -0,0 +1,338 @@

+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

+

+<html>

+<head>

+  <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-2">

+  <meta name="keywords" content="ClamAV, Sendmail, clamav-milter, AntyVir, Linux, UNIX">

+  <meta name="description" content="::: ClamAV / Sendmail / clamav-milter :::">

+  <meta name="author" content="doozer">

+  <title>::: ClamAV / Sendmail / clamav-milter :::</title>

+  <link rel="stylesheet" href="css/main.css">

+</head>

+

+<body bgcolor="#ffffff">

+ <center>

+ <a name="#begin"> </a>

+

+<table width="100%" align="center" cellpadding="0" cellspacing="0" border="0">

+ <tr>

+  <td  bgcolor="#dddddd" width="100%" align="left" height="20" class="rn"></td>

+ </tr>

+</table>

+ 

+<!-- LOGOTABLE -->

+<table width="100%" align="center" cellpadding="10" cellspacing="0" border="0">

+ <tr>

+  <td  bgcolor="#dddddd" width="8%" align="left" height="100" class="rt_dddddd"></td>

+  <td  bgcolor="#ffffff" width="24%" align="left" height="100" class="rlt"><img src="files/clam.png" alt="ClamAV Logo"></td>

+  <td  bgcolor="#ffffff" width="60%" align="left" height="100" class="rtr">

+  </td>

+  <td  bgcolor="#dddddd" width="8%" align="left" height="100" class="rt_dddddd"></td>

+ </tr>  

+</table>

+<!-- end LOGOTABLE -->

+

+<!-- TOPTABLE -->

+<table width="100%" align="center" cellpadding="10" cellspacing="0" border="0"> 

+ <tr>

+  <td bgcolor="#dddddd" colspan="1" valign="top" align="left" width="8%" height="200">

+    

+  </td>

+  

+  <td colspan="1" valign="top" align="left" width="84%" height="200" class="rlrb">

+   <br>Mon Sep 15 22:34:21 CEST 2003 <b>Pierwsza wersja HOWTO</b>

+   <br>Mon Feb  9 16:58:50 CET 2004 <b>Wersja aktualna</b>

+   

+   <br><b>1.</b>&nbsp;<a href="sendmail_clamav.html#a1">Wprowadzenie</a>

+   <br><b>3.</b>&nbsp;<a href="sendmail_clamav.html#a3">Zapotrzebowanie na oprogramowanie</a>

+   <br><b>4.</b>&nbsp;<a href="sendmail_clamav.html#a4">Konfiguracja serwera Sendmail</a>

+   <br><b>5.</b>&nbsp;<a href="sendmail_clamav.html#a5">Kompilacja ClamAV</a>

+   <br><b>6.</b>&nbsp;<a href="sendmail_clamav.html#a6">Uruchamianie</a>

+ 

+<br><br><br>

+

+<a name="a1"> </a>

+<br><br><br><b>1.&nbsp;&nbsp;&nbsp;Wprowadzenie</b>

+

+<a name="a2"> </a>

+

+

+

+<pre>

+</pre>

+

+

+

+<a name="a3"> </a>

+<br><br><br><b>3.&nbsp;&nbsp;&nbsp;Zapotrzebowanie na oprogramowanie</b>

+<br><br> - ClamAV v0.65 - <a href="http://prdownloads.sourceforge.net/clamav/">http://prdownloads.sourceforge.net/clamav/</a>

+<br> - Sendmail 8.12.10 - 

+ <a href="ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.12.10.tar.gz">ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.12.10.tar.gz</a>

+

+ 

+<br><br>&nbsp;<b>Skrypty startowe</b>

+<br>&nbsp;&nbsp;&nbsp;<a href="files/rc.sendmail">rc.sendmail</a>

+<br>&nbsp;&nbsp;&nbsp;<a href="files/rc.clamd">rc.clamd</a>

+<br>&nbsp;&nbsp;&nbsp;<a href="files/rc.clamav-milter">rc.clamav-milter</a>

+

+

+<!-- 

+<br><br><b>Uwaga Slackwareowcy i shtOSowcy :-)</b>

+<br> - clamav-clamav-i686-1.tgz - <a href="http://insidiae.eu.org/clamav-clamav-i686-1.tgz">http://insidiae.eu.org/clamav.tgz</a>

+<br> - rc.sendmail - <a href="http://insidiae.eu.org/rc.sendmail">http://insidiae.eu.org/rc.sendmail</a>

+<br> - rc.clamd - <a href="http://insidiae.eu.org/rc.clamd">http://insidiae.eu.org/rc.clamd</a>

+<br> - rc.clamav-milter - <a href="http://insidiae.eu.org/rc.clamav-milter">http://insidiae.eu.org/rc.clamav-milter</a>

+-->

+

+<a name="a4"> </a>

+<br><br><br><b>4.&nbsp;&nbsp;&nbsp;Konfiguracja serwera Sendmail</b>

+

+<pre>

+APPENDDEF(`conf_sendmail_ENVDEF', `-DMILTER')

+

+INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock,F=, T=S:4m;R:4m')dnl

+define(`confINPUT_MAIL_FILTERS', `clmilter')

+</pre>

+

+<pre>

+define(`confAUTH_MECHANISMS',`LOGIN PLAIN')dnl

+TRUST_AUTH_MECH(`LOGIN PLAIN')dnl

+</pre>

+

+Teraz dokonujemy standardowej kompilacji Sendmaila:

+<pre>

+root@linux: killall -9 sendmail

+root@linux: cd sendmail_source/sendmail

+root@linux: sh Build -c

+root@linux: cd sendmail_source/cf/cf

+root@linux: sh Build sendmail.cf

+root@linux: cd sendmail_source/sendmail

+root@linux: sh Build install

+root@linux: cd sendmail_source/cf/cf

+root@linux: sh Build install-cf

+root@linux: cd sendmail_source

+root@linux: sh Build install

+</pre>

+

+<br><br>

+Teraz zainstalujemy libmilter:

+<pre>

+root@linux: cd sendmail_source/libmilter

+root@linux: sh Build install

+</pre>

+<br><br><b>UWAGA: Po instalacji libmiltera konieczna jest konfiguracja bibliotek dynamicznych, czyli:</b>

+<pre>

+root@linux: ldconfig

+</pre>

+

+

+<a name="a5"> </a>

+<br><br><br><b>5.&nbsp;&nbsp;&nbsp;Kompilacja ClamAV</b>

+<pre>

+root@linux: groupadd clamav

+root@linux: useradd -g clamav -s /bin/false -c "Clam AntiVirus" clamav

+</pre>

+

+<pre>

+user@linux: cd clamav_source

+user@linux: make clean

+user@linux: ./configure --prefix=/usr --sysconfdir=/etc/clamav --datadir=/etc/clamav \

+  --with-dbdir=/etc/clamav --enable-milter

+user@linux: make

+user@linux: make check

+user@linux: su

+root@linux: make install

+</pre>

+<pre>

+root@linux: ln -s /usr/sbin/sendmail /usr/lib/sendmail

+</pre>

+

+

+<pre>

+LocalSocket /var/run/clamav/clamd.sock

+ScanMail

+SaveStreamToDisk

+</pre>

+

+clamav-milter uruchamiamy poprzez wpisanie polecenia:

+<pre>

+root@linux: /usr/sbin/clamav-milter -c /etc/clamav/clamav.conf --max-children=15 -blo /var/run/clamav/clmilter.sock

+</pre>

+

+uruchomienia automagicznie :></i>

+

+<pre>

+</pre>

+

+<b>20673</b>

+<b>main.cvd:</b> 27 Jan 2004 12-31 +0100

+<br><b>daily.cvd:</b> 09 Feb 2004 23-44 +0100

+

+

+<br><br>

+

+

+<br><br><b>Uprawnienia</b>

+

+

+<a name="a6"> </a>

+<br><br><br><b>6.&nbsp;&nbsp;&nbsp;Uruchamianie</b>

+<pre>

+root@linux: chown -R clamav:clamav /etc/clamav

+root@linux: mkdir /var/run/clamav; chown -R clamav:clamav /var/run/clamav

+root@linux: mkdir /var/log/clamav; chown -R clamav:clamav /var/log/clamav

+</pre>

+

+<pre>

+root@linux: mkdir /var/clamav/quarantine; chown -R clamav:clamav /var/clamav/quarantine

+</pre>

+

+

+<a name="a7"> </a>

+<br><br>

+

+<br><br>

+<pre>

+root@linux: ps -A

+</pre>

+

+<br><br>

+

+<pre>

+clamav-milter[22068]: hit max-children limit (7 >= 3): waiting for some to exit

+clamav-milter[26826]: hit max-children limit (8 >= 3): waiting for some to exit

+clamav-milter[26515]: hit max-children limit (8 >= 3): waiting for some to exit

+clamav-milter[4360]: hit max-children limit (9 >= 3): waiting for some to exit

+</pre>

+

+

+<br><br>

+

+<br><br>

+<hr size="1" style="color: #aaa4a0;">

+e-mail: <b>doozer (at) skc (dot) com (dot) pl</b>

+

+<br><br>

+<font style="font-size: 12px; color: #aaaaaa">

+

+ 

+ # sendmail_clamav.html v1.1; Last modified:

+ Tue, 10 Feb, 2004 18:16:01 by

+ doozer #

+</font>

+

+

+ </td>

+ <td bgcolor="#dddddd" colspan="1" valign="top" align="left" width="8%" height="2000">

+     

+ </td>

+</tr> 

+</table>

+<!-- end CONTENTTABLE -->

+

+<table width="100%" align="center" cellpadding="0" cellspacing="0" border="0">

+ <tr>

+  <td  bgcolor="#dddddd" width="100%" align="center" height="60" class="rn">

+   <a href="http://validator.w3.org/check?uri=http://clamav.skc.com.pl/howtos/sendmail_clamav.html">

+        <img src="files/valid-html401.gif" alt="Valid HTML 4.01"></a>

+   <a href="http://jigsaw.w3.org/css-validator/validator?uri=http://clamav.skc.com.pl/howtos/css/main.css">

+        <img src="files/vcss.png" alt="Valid CSS!">

+ </a>	

+  </td>

+ </tr>

+</table>

+

+</center>

+</body>

+</html>

Binary files a/clamav-devel/docs/clamav-mirror-howto.pdf and b/clamav-devel/docs/clamav-mirror-howto.pdf differ

@@ -1,34 +1,48 @@

 ##

 ## Example config file for freshclam

 ## Please read the clamav.conf(5) manual before editing this file.

+## This file may be optionally merged with clamav.conf.

 ##

 # Comment or remove the line below.

 Example

-# Path to the database directory.

+# You can change the default database directory here.

 #DatabaseDirectory /var/lib/clamav

+# Path to the config file (make sure it has proper permissions)

 #UpdateLogFile /var/log/freshclam.log

 # Enable verbose logging.

 #LogVerbose

-# Freshclam must be able to write to the database directory.

+# By default when freshclam is started by root it drops privileges and

+# switches to the "clamav" user. You can change this behaviour here.

 #DatabaseOwner clamav

+# The main database mirror is database.clamav.net (this is a round-robin

+# DNS that points to many mirrors on the world) and in most cases you

+# SHOULD NOT change it.

 DatabaseMirror database.clamav.net

+

+# How many attempts to make before giving up.

 MaxAttempts 3

-#Checks 8

+# How often check for a new database. We suggest checking for it every

+# two hours.

+Checks 12

+# Proxy settings

 #HTTPProxyServer myproxy.com

 #HTTPProxyPort 1234

 #HTTPProxyUsername myusername

 #HTTPProxyPassword mypass

+# Send the RELOAD command to clamd.

 #NotifyClamd [/optional/config/file/path]

+# Run command after database update.

 #OnUpdateExecute command

+# Run command if database update failed.

 #OnErrorExecute command