@@ -1,3 +1,8 @@

+Wed Mar 21 01:15:51 CET 2007 (tk)

+---------------------------------

+  * docs/man: use actual version and user names in man pages (bb#408),

+	      thanks to Fabio Pedretti <pedretti*eco.unibs.it>

+

 Wed Mar 21 00:31:29 CET 2007 (tk)

 ---------------------------------

   * shared/misc.c: minor fixes to deamonize() (bb#319), thanks to Reinhard Max

@@ -59,12 +59,18 @@ target_triplet = @target@

 DIST_COMMON = README $(am__configure_deps) $(srcdir)/Makefile.am \

 	$(srcdir)/Makefile.in $(srcdir)/clamav-config.h.in \

 	$(srcdir)/clamav-config.in $(srcdir)/libclamav.pc.in \

-	$(top_srcdir)/configure $(top_srcdir)/docs/man/clamd.8.in \

+	$(top_srcdir)/configure \

+	$(top_srcdir)/docs/man/clamav-milter.8.in \

+	$(top_srcdir)/docs/man/clamconf.1.in \

+	$(top_srcdir)/docs/man/clamd.8.in \

 	$(top_srcdir)/docs/man/clamd.conf.5.in \

+	$(top_srcdir)/docs/man/clamdscan.1.in \

+	$(top_srcdir)/docs/man/clamscan.1.in \

 	$(top_srcdir)/docs/man/freshclam.1.in \

-	$(top_srcdir)/docs/man/freshclam.conf.5.in AUTHORS COPYING \

-	ChangeLog INSTALL NEWS config.guess config.sub depcomp \

-	install-sh ltmain.sh missing mkinstalldirs

+	$(top_srcdir)/docs/man/freshclam.conf.5.in \

+	$(top_srcdir)/docs/man/sigtool.1.in AUTHORS COPYING ChangeLog \

+	INSTALL NEWS config.guess config.sub depcomp install-sh \

+	ltmain.sh missing mkinstalldirs

 subdir = .

 ACLOCAL_M4 = $(top_srcdir)/aclocal.m4

 am__aclocal_m4_deps = $(top_srcdir)/acinclude.m4 \

@@ -75,9 +81,11 @@ am__CONFIG_DISTCLEAN_FILES = config.status config.cache config.log \

  configure.lineno configure.status.lineno

 mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs

 CONFIG_HEADER = clamav-config.h

-CONFIG_CLEAN_FILES = clamav-config libclamav.pc docs/man/clamd.8 \

-	docs/man/clamd.conf.5 docs/man/freshclam.1 \

-	docs/man/freshclam.conf.5

+CONFIG_CLEAN_FILES = clamav-config libclamav.pc \

+	docs/man/clamav-milter.8 docs/man/clamconf.1 docs/man/clamd.8 \

+	docs/man/clamd.conf.5 docs/man/clamdscan.1 docs/man/clamscan.1 \

+	docs/man/freshclam.1 docs/man/freshclam.conf.5 \

+	docs/man/sigtool.1

 am__installdirs = "$(DESTDIR)$(bindir)" "$(DESTDIR)$(pkgconfigdir)"

 binSCRIPT_INSTALL = $(INSTALL_SCRIPT)

 SCRIPTS = $(bin_SCRIPTS)

@@ -299,14 +307,24 @@ clamav-config: $(top_builddir)/config.status $(srcdir)/clamav-config.in

 	cd $(top_builddir) && $(SHELL) ./config.status $@

 libclamav.pc: $(top_builddir)/config.status $(srcdir)/libclamav.pc.in

 	cd $(top_builddir) && $(SHELL) ./config.status $@

+docs/man/clamav-milter.8: $(top_builddir)/config.status $(top_srcdir)/docs/man/clamav-milter.8.in

+	cd $(top_builddir) && $(SHELL) ./config.status $@

+docs/man/clamconf.1: $(top_builddir)/config.status $(top_srcdir)/docs/man/clamconf.1.in

+	cd $(top_builddir) && $(SHELL) ./config.status $@

 docs/man/clamd.8: $(top_builddir)/config.status $(top_srcdir)/docs/man/clamd.8.in

 	cd $(top_builddir) && $(SHELL) ./config.status $@

 docs/man/clamd.conf.5: $(top_builddir)/config.status $(top_srcdir)/docs/man/clamd.conf.5.in

 	cd $(top_builddir) && $(SHELL) ./config.status $@

+docs/man/clamdscan.1: $(top_builddir)/config.status $(top_srcdir)/docs/man/clamdscan.1.in

+	cd $(top_builddir) && $(SHELL) ./config.status $@

+docs/man/clamscan.1: $(top_builddir)/config.status $(top_srcdir)/docs/man/clamscan.1.in

+	cd $(top_builddir) && $(SHELL) ./config.status $@

 docs/man/freshclam.1: $(top_builddir)/config.status $(top_srcdir)/docs/man/freshclam.1.in

 	cd $(top_builddir) && $(SHELL) ./config.status $@

 docs/man/freshclam.conf.5: $(top_builddir)/config.status $(top_srcdir)/docs/man/freshclam.conf.5.in

 	cd $(top_builddir) && $(SHELL) ./config.status $@

+docs/man/sigtool.1: $(top_builddir)/config.status $(top_srcdir)/docs/man/sigtool.1.in

+	cd $(top_builddir) && $(SHELL) ./config.status $@

 install-binSCRIPTS: $(bin_SCRIPTS)

 	@$(NORMAL_INSTALL)

 	test -z "$(bindir)" || $(mkdir_p) "$(DESTDIR)$(bindir)"

@@ -25906,7 +25906,7 @@ cat >>confdefs.h <<_ACEOF

 _ACEOF

-ac_config_files="$ac_config_files libclamav/Makefile clamscan/Makefile database/Makefile docs/Makefile clamd/Makefile clamdscan/Makefile clamav-milter/Makefile freshclam/Makefile sigtool/Makefile clamconf/Makefile etc/Makefile Makefile clamav-config libclamav.pc docs/man/clamd.8 docs/man/clamd.conf.5 docs/man/freshclam.1 docs/man/freshclam.conf.5"

+ac_config_files="$ac_config_files libclamav/Makefile clamscan/Makefile database/Makefile docs/Makefile clamd/Makefile clamdscan/Makefile clamav-milter/Makefile freshclam/Makefile sigtool/Makefile clamconf/Makefile etc/Makefile Makefile clamav-config libclamav.pc docs/man/clamav-milter.8 docs/man/clamconf.1 docs/man/clamd.8 docs/man/clamd.conf.5 docs/man/clamdscan.1 docs/man/clamscan.1 docs/man/freshclam.1 docs/man/freshclam.conf.5 docs/man/sigtool.1"

 cat >confcache <<\_ACEOF

 # This file is a shell script that caches the results of configure

@@ -26528,10 +26528,15 @@ do

     "Makefile") CONFIG_FILES="$CONFIG_FILES Makefile" ;;

     "clamav-config") CONFIG_FILES="$CONFIG_FILES clamav-config" ;;

     "libclamav.pc") CONFIG_FILES="$CONFIG_FILES libclamav.pc" ;;

+    "docs/man/clamav-milter.8") CONFIG_FILES="$CONFIG_FILES docs/man/clamav-milter.8" ;;

+    "docs/man/clamconf.1") CONFIG_FILES="$CONFIG_FILES docs/man/clamconf.1" ;;

     "docs/man/clamd.8") CONFIG_FILES="$CONFIG_FILES docs/man/clamd.8" ;;

     "docs/man/clamd.conf.5") CONFIG_FILES="$CONFIG_FILES docs/man/clamd.conf.5" ;;

+    "docs/man/clamdscan.1") CONFIG_FILES="$CONFIG_FILES docs/man/clamdscan.1" ;;

+    "docs/man/clamscan.1") CONFIG_FILES="$CONFIG_FILES docs/man/clamscan.1" ;;

     "docs/man/freshclam.1") CONFIG_FILES="$CONFIG_FILES docs/man/freshclam.1" ;;

     "docs/man/freshclam.conf.5") CONFIG_FILES="$CONFIG_FILES docs/man/freshclam.conf.5" ;;

+    "docs/man/sigtool.1") CONFIG_FILES="$CONFIG_FILES docs/man/sigtool.1" ;;

   *) { { echo "$as_me:$LINENO: error: invalid argument: $ac_config_target" >&5

 echo "$as_me: error: invalid argument: $ac_config_target" >&2;}

@@ -1115,8 +1115,13 @@ etc/Makefile

 Makefile

 clamav-config

 libclamav.pc

+docs/man/clamav-milter.8

+docs/man/clamconf.1

 docs/man/clamd.8

 docs/man/clamd.conf.5

+docs/man/clamdscan.1

+docs/man/clamscan.1

 docs/man/freshclam.1

 docs/man/freshclam.conf.5

+docs/man/sigtool.1

 ])

@@ -16,5 +16,5 @@

 #  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,

 #  MA 02110-1301, USA.

-EXTRA_DIST = html man clamdoc.pdf clamdoc.tex clamav-mirror-howto.pdf clamav-mirror-howto.tex signatures.pdf signatures.tex clam.eps

+EXTRA_DIST = html man/*.in clamdoc.pdf clamdoc.tex clamav-mirror-howto.pdf clamav-mirror-howto.tex signatures.pdf signatures.tex clam.eps

 man_MANS = man/clamscan.1 man/freshclam.1 man/sigtool.1 man/clamd.8 man/clamd.conf.5 man/clamdscan.1 man/clamav-milter.8 man/freshclam.conf.5 man/clamconf.1

@@ -199,7 +199,7 @@ target_alias = @target_alias@

 target_cpu = @target_cpu@

 target_os = @target_os@

 target_vendor = @target_vendor@

-EXTRA_DIST = html man clamdoc.pdf clamdoc.tex clamav-mirror-howto.pdf clamav-mirror-howto.tex signatures.pdf signatures.tex clam.eps

+EXTRA_DIST = html man/*.in clamdoc.pdf clamdoc.tex clamav-mirror-howto.pdf clamav-mirror-howto.tex signatures.pdf signatures.tex clam.eps

 man_MANS = man/clamscan.1 man/freshclam.1 man/sigtool.1 man/clamd.8 man/clamd.conf.5 man/clamdscan.1 man/clamav-milter.8 man/freshclam.conf.5 man/clamconf.1

 all: all-am

@@ -386,6 +386,7 @@ CTAGS:

 distdir: $(DISTFILES)

+	$(mkdir_p) $(distdir)/man

 	@srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; \

 	topsrcdirstrip=`echo "$(top_srcdir)" | sed 's|.|.|g'`; \

 	list='$(DISTFILES)'; for file in $$list; do \

deleted file mode 100644

@@ -1,310 +0,0 @@

-.TH "clamav-milter" "8" "March 23, 2004" "" "Clam AntiVirus"

-.SH "NAME"

-.LP

-clamav\-milter \- milter compatible mail scanner

-.SH "SYNOPSIS"

-.LP

-clamav\-milter [options] socket_address

-.SH "DESCRIPTION"

-.LP

-Clamav\-milter is a filter for \fBsendmail(1)\fR mail server.

-It uses a mail scanning engine built into \fBclamd(8)\fR.

-.LP

-Clamav\-milter can use load balancing and fault tolerant techniques to connect

-to more than one clamd(8) server and seamlessly hot-swap to even the load

-between different machines and to keep scanning for viruses even when a server

-goes down.

-When it is configured to use clamd on the the localhost, when

-the \-\-external flag (see below) is not given or

-LocalSocket in set in \fBclamd.conf(5)\fR,

-clamav\-milter verifies that it can communicate with clamd; if it cannot, it

-terminates.

-.LP

-clamav\-milter supports tcpwrappers, the value for \fIdaemon_list\fR

-is "clamav\-milter".

-.LP

-The socket_address argument is the socket used to communicate with

-\fBsendmail(8)\fR.

-It must agree with the entry in sendmail.cf or sendmail.mc.

-The file associated with the socket must be creatable by clamav\-milter,

-if the User option is set in clamd.conf,

-then that user must have the rights to create the file.

-.SH "OPTIONS"

-.LP

-

-.TP

-\fB-a FROM, \-\-from<=EMAIL>\fR

-Source email address of notices. The default is MAILER-DAEMON.

-If \fI=EMAIL\fR is not given, thus \-\-from, then the from address is set

-to the originating email address, however since it is likely that address is

-forged it must not be relied upon.

-\fB\-h, \-\-help\fR

-Output the help information and exit.

-.TP

-\fB\-H, \-\-headers\fR

-Include all headers in the content of emails generated by clamav\-milter.

-This is useful for system administrators who may want to look at headers

-to check if any of their machines are infected.

-.TP

-\fB\-V, \-\-version\fR

-Print the version number and exit.

-.TP

-\fB\-c FILE, \-\-config\-file=FILE\fR

-By default clamav\-milter uses a default configuration file, this option allows you to specify another one.

-.TP

-\fB\-D, \-\-debug\fR

-Enables debugging.

-.TP

-\fB\-x n, \-\-debug\-level=n\fR

-Set the debug level to n (where n from [0..9]) if \fBclamav\-milter\fR was

-configured and compiled with \-\-clamav-debug enabled.

-Will be replaced by \-\-debug for compatibility with other programs in the

-suite.

-.TP

-\fB-A, \-\-advisory\fR

-When in advisory mode, clamav\-milter flags emails with viruses but

-still forwards them. The default option is to stop viruses.

-This mode is incompatible with \-\-quarantine and \-\-quarantine-dir.

-.TP

-\fB\-b, \-\-bounce\fR

-Send a failure message to the sender, and to the postmaster.

-[ \fBWarning\fR: most viruses and worms

-fake their source address, so this option is not recommended, and needs

-to be enabled at compile-time ].

-See also \-\-noreject.

-.TP

-\fB\-B, \-\-broadcast[=<iface>]\fR

-When a virus is intercepted, broadcast a UDP message to the TCPSocket port set

-in \fBclamd.conf\fR.

-If the optional \fIiface\fR option is given, broadcasts will be sent on

-that interface. The default is set by the operating system, usually to the

-first NIC.

-A future network management program (yet to be written) will intercept these

-broadcasts to raise a warning on the operator's desk.

-.TP

-\fB-d, \-\-dont-scan-on-error\fR

-If a system error occurs pass messages through unscanned,

-usually when a system error occurs the milter raises a temporary failure which

-generally causes the message to remain in the queue.

-.TP

-\fB-f, \-\-force-scan\fR

-Always scan, wherever the message came from (see also --local and --outgoing).

-You probably don't want this.

-.TP

-\fB-e, \-\-external\fR

-Usually clamav\-milter scans the emails itself without the use of an

-external program.

-The \-\-external option informs clamav\-milter to use an external program such

-as clamd(8) running either on the local server or other server(s) to perform

-the scanning.

-.TP

-\fB\-k, \-\-blacklist-time=time\fR

-Tells the number of seconds to black list an IP address (IPv4 only). This

-is especially useful with phishing which often send a number of emails one

-after the other.

-.IP

-Blacklisting speeds up scanning significantly, however it does have drawbacks

-since it is possible for a site to be incorrectly blacklisted because of DHCP

-or an unsafe smart-host.

-To avoid this, clamav-milter's blacklist does not last for ever.

-The recommended value is 60.

-.IP

-Machines on the LAN, the local host, and machines that are our MX peers are

-never blacklisted.

-.TP

-\fB\f-K, \-\-dont-blacklist=IP[,IP...]\fR

-Instructs clamav-milter to refrain from blacklisting IP the given addresses.

-This is useful for sites that receive email from upstream servers that are

-either untrusted or have no virus.

-Without this option many false positives could occur.

-This scenario often happens when the upstream server belongs to an

-ISP that may not have AV software.

-.TP

-\fB-l, \-\-local\fR

-Also scan messages sent from LAN. You probably want this especially if

-your LAN is populated by machines running Windows or DOS.

-.IP

-Machines with IP addresses within the ranges 192.168.0.0/16, 10.0.0.0/24,

-172.16.0.0/20 and 169.254.0.0/16 are defined as 'local'. Messages from

-other machines are always scanned.

-An extra IP address may be added with the \-\-ignore option.

-.TP

-\fB-M, \-\-freshclam-monitor\fR

-When not running in external mode, this option tells clamav\-milter how

-often to check that the virus database has been updated, probably by

-freshclam(1).

-The option takes one parameter, which is a number in seconds.

-The default is 300 seconds.

-The checking cannot be disabled, a value less than or equal to zero will be

-rejected.

-.TP

-\fB-n, \-\-noxheader\fR

-Usually clamav\-milter adds headings to messages that are scanned.

-The headers are of the form "X-Virus-Scanned: version",

-and "X-Virus-Status: clean/infected/not-scanned".

-This option instructs

-clamav\-milter to refrain from adding this heading.

-.TP

-\fB-N, \-\-noreject\fR

-When clamav\-milter processes an e-mail which contains a virus it rejects

-the e-mail by using the SMTP code 550 or 554 depending on the state machine.

-This option causes clamav\-milter to silently discard such messages.

-It is recommended that system administrators use this option when NOT using

-the \-\-bounce option.

-.TP

-\fB-o, \-\-outgoing\fR

-Scan messages generated from this machine. You probably don't need this.

-.TP

-\fB-i, \-\-pidfile=FILE\fR

-Notifies clamav\-milter to store its process ID in FILE.

-The file must be creatable by clamav\-milter,

-if the User option is set in

-\fBclamd.conf(5)\fR,

-then that user must have the rights to create the file.

-.TP

-\fB-p, \-\-postmaster=EMAILADDRESS\fR

-Sets the e-mail address that receives notifications of viruses caught,

-when the \-\-quiet option is not given.

-.TP

-\fB-P, \-\-postmaster-only\fR

-When the \-\-quiet option is not given, send a notification to the postmaster.

-Setting this flag will include the ID of the message in the email's body

-which can ease searching through system logs if the administrator believes it

-is a locally sourced virus.

-Without this option, the intended recipient of the email will also receive a

-copy of the notification of the interception.

-.TP

-\fB-q, \-\-quiet\fR

-Don't send any notification messages when a virus or worm is detected.

-This option overrides the \-\-bounce and \-\-postmaster-only options, and is

-the way to turn off notification to the postmaster.

-.TP

-\fB-Q, \-\-quarantine=EMAILADDRESS\fR

-If this e-mail address is given, messages containing a virus or worm are

-redirected to it.

-.TP

-\fB-r, \-\-report-phish=EMAILADDRESS\fR

-Report caught phishing to an anti-phish organisation's email address such

-as pirt_clamav@castlecops.com and reportphishing@antiphishing.org.

-.TP

-\fB-U, \-\-quarantine-dir=DIR\fR

-If this option is given, infected files are left in this directory.

-The directory must not be publicly readable or writable, if it is,

-clamav\-milter will issue an error and fail to start.

-\fBNote\fR - this option only works when using LocalSocket.

-.TP

-\fB\-\-server=HOSTNAME/ADDRESS, \-s HOSTNAME/ADDRESS\fR

-IP address or hostname of server(s) running clamd (when using TCPsocket and

-\-\-external).

-More than one server may be specified, separating the server's names by colons.

-If more than one server is specified, clamav\-milter will load balance

-between the available servers. All the servers must be up when clamav\-milter

-starts, however afterwards it is fault tolerant to a server becoming

-unavailable, and will only raise an error if all of the servers cannot be

-reached.

-The default value for ADDRESS is 127.0.0.1 (localhost).

-.TP

-\fB\-\-sign, \-S\fR

-Add a hard\-coded signature to each scanned file. It is likely that this

-signature will only display on the end user's terminal if the message is

-plain/text or not encoded.

-.TP

-\fB\-\-signature-file, \-F\fR

-Location of file to be appended to each scanned message. Overrides \-S.

-.TP

-\fB\-\-max\-children=n, \-m n\fR

-Set a hint of the maximum number of children. If the number is hit the

-maximum time a pending thread will be held up is set by \-\-timeout, so the

-number of threads can exceed this number for short periods of time.

-There is no default, if this argument is not \fBclamav\-milter\fR will

-spawn as many children as is necessary up to the MaxThreads limit set

-in \fBclamd.conf\fR.

-When clamav\-milter has been built with SESSION mode this argument is

-mandatory since it tells clamav\-milter the number of sessions to keep open

-to clamd servers.

-When not built with in SESSION mode it is unlikely that you will need this

-unless your system is under great load.

-Note, however, that the default build is for SESSION to be disabled.

-.TP

-\fB\-\-dont\-wait\fR

-Tells clamav\-milter what do to if the max-children number is exceeded.

-Usually clamav\-milter waits until a child dies or the timeout value has been

-exceeded, which ever comes first, however with dont-wait enabled, clamav\-milter

-will inform the remote SMTP client to retry later.

-.TP

-\fB\-\-ignore ipAddr\fR

-\fIipAddr\fR is taken to be an extra IPv4 address which is treated as being on

-the LAN for the purposes of the \-\-local argument.

-.TP

-\fB\-\-template\-file=file \-t file\fR

-File points to a file whose contents is sent as the warning message whenever a

-virus is intercepted.

-Occurrences of %v within the file is replaced with the message

-returned from clamd, which includes the name of the virus.

-Occurrences of %h are replaced with the message's headers.

-The %v string can be escaped thus, \\%v, to send the string %v.

-The % character can be escaped thus, %%, to send the % character.

-Any occurrence of strings in dollar signs are replaced with the appropriate

-sendmail-variable, e.g. ${if_addr}$.

-If the \-t option is not given, clamav\-milter defaults to a hard-coded message.

-Note that to send warning messages, clamav\-milter must be able to execute

-sendmail.

-.TP

-\fB\-\-template\-headers=file\fR

-File points to a file whose contents are added to the headers of the

-warning message given to the \fB\-\-template\-file\fR option.

-For example, to state the character set of the message,

-put "Content-Type: text/plain; charset=koi8-r" into the file.

-.TP

-\fB\-\-timeout=n \-T n\fR

-Used in conjunction with max\-children. If clamav\-milter waits for more than

-\fIn\fR seconds (default 300) it proceeds with scanning. Setting \fIn\fR to zero

-will turn off the timeout and clamav\-milter will wait indefinitely for the

-scanning to quit. In practice the timeout set by sendmail will then take over.

-.TP

-\fB\-\-detect-forged-local-address \-L\fR

-When neither \-\-force, \-\-local nor \-\-outgoing is given,

-this option intercepts incoming mails that incorrectly claim to be from the

-local domain.

-.TP

-\fB\-\-whitelist-file=FILE, \-W file\fR

-This option specifies a file which contains a list of e-mail addresses.

-E-mails sent to or from these addresses will NOT be checked.

-While this is not an Anti-Virus function, it is quite useful for some systems.

-The address given to the \-\-quarantine directive is always whitelisted.

-.IP

-The file consists of a list of addresses, each address on a line enclosed

-in angle brackets (e.g. <foo@bar.com>).

-Optionally each line can start with the string \fITo:\fR or \fIFrom:\fR

-indicating if it is the sender or recipient that is to be whitelisted. If the

-field is missing, the default is \fITo\fR.

-Lines starting with #, : or ! are ignored.

-.TP

-\fB\-\-sendmail-cf=FILE\fR

-When starting, clamav\-milter runs some sanity checks against the sendmail.cf

-file, usually in /etc/sendmail.cf or /etc/mail/sendmail.cf. This directive

-tells clamav\-milter where to find the sendmail.cf file.

-.TP

-\fB\-\-black-hole-mode\fR

-Since \fIsendmail\fR calls its milters before it looks in its alias and virtuser

-tables, clamav-milter can spend time looking for malware that's going to be

-thrown away even if the message is clean.

-.IP

-Enable this to not scan these messages (in practice clamav\-milter will discard

-these messages so the message doesn't go further down the milter call chain).

-.IP

-Sadly, these days sendmail \-bv only works as root,

-so this option is not compatible with the User directive in clamd.conf,

-which some may view as a security risk.

-Only enable this if your site has many addresses aliased to /dev/null.

-.SH "BUGS"

-There is no support for IPv6.

-.SH "EXAMPLES"

-.LP

-clamav\-milter \-o local:/var/run/clamav/clmilter.sock

-.SH "AUTHOR"

-.LP

-Nigel Horne <njh@bandsman.co.uk>

-.SH "SEE ALSO"

-.LP

-sendmail(1), clamd(8), clamscan(1), freshclam(1), sigtool(1), clamd.conf(5), hosts_access(5)

new file mode 100644

@@ -0,0 +1,310 @@

+.TH "clamav-milter" "8" "March 23, 2004" "ClamAV @VERSION@" "Clam AntiVirus"

+.SH "NAME"

+.LP

+clamav\-milter \- milter compatible mail scanner

+.SH "SYNOPSIS"

+.LP

+clamav\-milter [options] socket_address

+.SH "DESCRIPTION"

+.LP

+Clamav\-milter is a filter for \fBsendmail(1)\fR mail server.

+It uses a mail scanning engine built into \fBclamd(8)\fR.

+.LP

+Clamav\-milter can use load balancing and fault tolerant techniques to connect

+to more than one clamd(8) server and seamlessly hot-swap to even the load

+between different machines and to keep scanning for viruses even when a server

+goes down.

+When it is configured to use clamd on the the localhost, when

+the \-\-external flag (see below) is not given or

+LocalSocket in set in \fBclamd.conf(5)\fR,

+clamav\-milter verifies that it can communicate with clamd; if it cannot, it

+terminates.

+.LP

+clamav\-milter supports tcpwrappers, the value for \fIdaemon_list\fR

+is "clamav\-milter".

+.LP

+The socket_address argument is the socket used to communicate with

+\fBsendmail(8)\fR.

+It must agree with the entry in sendmail.cf or sendmail.mc.

+The file associated with the socket must be creatable by clamav\-milter,

+if the User option is set in clamd.conf,

+then that user must have the rights to create the file.

+.SH "OPTIONS"

+.LP

+

+.TP

+\fB-a FROM, \-\-from<=EMAIL>\fR

+Source email address of notices. The default is MAILER-DAEMON.

+If \fI=EMAIL\fR is not given, thus \-\-from, then the from address is set

+to the originating email address, however since it is likely that address is

+forged it must not be relied upon.

+\fB\-h, \-\-help\fR

+Output the help information and exit.

+.TP

+\fB\-H, \-\-headers\fR

+Include all headers in the content of emails generated by clamav\-milter.

+This is useful for system administrators who may want to look at headers

+to check if any of their machines are infected.

+.TP

+\fB\-V, \-\-version\fR

+Print the version number and exit.

+.TP

+\fB\-c FILE, \-\-config\-file=FILE\fR

+By default clamav\-milter uses a default configuration file, this option allows you to specify another one.

+.TP

+\fB\-D, \-\-debug\fR

+Enables debugging.

+.TP

+\fB\-x n, \-\-debug\-level=n\fR

+Set the debug level to n (where n from [0..9]) if \fBclamav\-milter\fR was

+configured and compiled with \-\-clamav-debug enabled.

+Will be replaced by \-\-debug for compatibility with other programs in the

+suite.

+.TP

+\fB-A, \-\-advisory\fR

+When in advisory mode, clamav\-milter flags emails with viruses but

+still forwards them. The default option is to stop viruses.

+This mode is incompatible with \-\-quarantine and \-\-quarantine-dir.

+.TP

+\fB\-b, \-\-bounce\fR

+Send a failure message to the sender, and to the postmaster.

+[ \fBWarning\fR: most viruses and worms

+fake their source address, so this option is not recommended, and needs

+to be enabled at compile-time ].

+See also \-\-noreject.

+.TP

+\fB\-B, \-\-broadcast[=<iface>]\fR

+When a virus is intercepted, broadcast a UDP message to the TCPSocket port set

+in \fBclamd.conf\fR.

+If the optional \fIiface\fR option is given, broadcasts will be sent on

+that interface. The default is set by the operating system, usually to the

+first NIC.

+A future network management program (yet to be written) will intercept these

+broadcasts to raise a warning on the operator's desk.

+.TP

+\fB-d, \-\-dont-scan-on-error\fR

+If a system error occurs pass messages through unscanned,

+usually when a system error occurs the milter raises a temporary failure which

+generally causes the message to remain in the queue.

+.TP

+\fB-f, \-\-force-scan\fR

+Always scan, wherever the message came from (see also --local and --outgoing).

+You probably don't want this.

+.TP

+\fB-e, \-\-external\fR

+Usually clamav\-milter scans the emails itself without the use of an

+external program.

+The \-\-external option informs clamav\-milter to use an external program such

+as clamd(8) running either on the local server or other server(s) to perform

+the scanning.

+.TP

+\fB\-k, \-\-blacklist-time=time\fR

+Tells the number of seconds to black list an IP address (IPv4 only). This

+is especially useful with phishing which often send a number of emails one

+after the other.

+.IP

+Blacklisting speeds up scanning significantly, however it does have drawbacks

+since it is possible for a site to be incorrectly blacklisted because of DHCP

+or an unsafe smart-host.

+To avoid this, clamav-milter's blacklist does not last for ever.

+The recommended value is 60.

+.IP

+Machines on the LAN, the local host, and machines that are our MX peers are

+never blacklisted.

+.TP

+\fB\f-K, \-\-dont-blacklist=IP[,IP...]\fR

+Instructs clamav-milter to refrain from blacklisting IP the given addresses.

+This is useful for sites that receive email from upstream servers that are

+either untrusted or have no virus.

+Without this option many false positives could occur.

+This scenario often happens when the upstream server belongs to an

+ISP that may not have AV software.

+.TP

+\fB-l, \-\-local\fR

+Also scan messages sent from LAN. You probably want this especially if

+your LAN is populated by machines running Windows or DOS.

+.IP

+Machines with IP addresses within the ranges 192.168.0.0/16, 10.0.0.0/24,

+172.16.0.0/20 and 169.254.0.0/16 are defined as 'local'. Messages from

+other machines are always scanned.

+An extra IP address may be added with the \-\-ignore option.

+.TP

+\fB-M, \-\-freshclam-monitor\fR

+When not running in external mode, this option tells clamav\-milter how

+often to check that the virus database has been updated, probably by

+freshclam(1).

+The option takes one parameter, which is a number in seconds.

+The default is 300 seconds.

+The checking cannot be disabled, a value less than or equal to zero will be

+rejected.

+.TP

+\fB-n, \-\-noxheader\fR

+Usually clamav\-milter adds headings to messages that are scanned.

+The headers are of the form "X-Virus-Scanned: version",

+and "X-Virus-Status: clean/infected/not-scanned".

+This option instructs

+clamav\-milter to refrain from adding this heading.

+.TP

+\fB-N, \-\-noreject\fR

+When clamav\-milter processes an e-mail which contains a virus it rejects

+the e-mail by using the SMTP code 550 or 554 depending on the state machine.

+This option causes clamav\-milter to silently discard such messages.

+It is recommended that system administrators use this option when NOT using

+the \-\-bounce option.

+.TP

+\fB-o, \-\-outgoing\fR

+Scan messages generated from this machine. You probably don't need this.

+.TP

+\fB-i, \-\-pidfile=FILE\fR

+Notifies clamav\-milter to store its process ID in FILE.

+The file must be creatable by clamav\-milter,

+if the User option is set in

+\fBclamd.conf(5)\fR,

+then that user must have the rights to create the file.

+.TP

+\fB-p, \-\-postmaster=EMAILADDRESS\fR

+Sets the e-mail address that receives notifications of viruses caught,

+when the \-\-quiet option is not given.

+.TP

+\fB-P, \-\-postmaster-only\fR

+When the \-\-quiet option is not given, send a notification to the postmaster.

+Setting this flag will include the ID of the message in the email's body

+which can ease searching through system logs if the administrator believes it

+is a locally sourced virus.

+Without this option, the intended recipient of the email will also receive a

+copy of the notification of the interception.

+.TP

+\fB-q, \-\-quiet\fR

+Don't send any notification messages when a virus or worm is detected.

+This option overrides the \-\-bounce and \-\-postmaster-only options, and is

+the way to turn off notification to the postmaster.

+.TP

+\fB-Q, \-\-quarantine=EMAILADDRESS\fR

+If this e-mail address is given, messages containing a virus or worm are

+redirected to it.

+.TP

+\fB-r, \-\-report-phish=EMAILADDRESS\fR

+Report caught phishing to an anti-phish organisation's email address such

+as pirt_clamav@castlecops.com and reportphishing@antiphishing.org.

+.TP

+\fB-U, \-\-quarantine-dir=DIR\fR

+If this option is given, infected files are left in this directory.

+The directory must not be publicly readable or writable, if it is,

+clamav\-milter will issue an error and fail to start.

+\fBNote\fR - this option only works when using LocalSocket.

+.TP

+\fB\-\-server=HOSTNAME/ADDRESS, \-s HOSTNAME/ADDRESS\fR

+IP address or hostname of server(s) running clamd (when using TCPsocket and

+\-\-external).

+More than one server may be specified, separating the server's names by colons.

+If more than one server is specified, clamav\-milter will load balance

+between the available servers. All the servers must be up when clamav\-milter

+starts, however afterwards it is fault tolerant to a server becoming

+unavailable, and will only raise an error if all of the servers cannot be

+reached.

+The default value for ADDRESS is 127.0.0.1 (localhost).

+.TP

+\fB\-\-sign, \-S\fR

+Add a hard\-coded signature to each scanned file. It is likely that this

+signature will only display on the end user's terminal if the message is

+plain/text or not encoded.

+.TP

+\fB\-\-signature-file, \-F\fR

+Location of file to be appended to each scanned message. Overrides \-S.

+.TP

+\fB\-\-max\-children=n, \-m n\fR

+Set a hint of the maximum number of children. If the number is hit the

+maximum time a pending thread will be held up is set by \-\-timeout, so the

+number of threads can exceed this number for short periods of time.

+There is no default, if this argument is not \fBclamav\-milter\fR will

+spawn as many children as is necessary up to the MaxThreads limit set

+in \fBclamd.conf\fR.

+When clamav\-milter has been built with SESSION mode this argument is

+mandatory since it tells clamav\-milter the number of sessions to keep open

+to clamd servers.

+When not built with in SESSION mode it is unlikely that you will need this

+unless your system is under great load.

+Note, however, that the default build is for SESSION to be disabled.

+.TP

+\fB\-\-dont\-wait\fR

+Tells clamav\-milter what do to if the max-children number is exceeded.

+Usually clamav\-milter waits until a child dies or the timeout value has been

+exceeded, which ever comes first, however with dont-wait enabled, clamav\-milter

+will inform the remote SMTP client to retry later.

+.TP

+\fB\-\-ignore ipAddr\fR

+\fIipAddr\fR is taken to be an extra IPv4 address which is treated as being on

+the LAN for the purposes of the \-\-local argument.

+.TP

+\fB\-\-template\-file=file \-t file\fR

+File points to a file whose contents is sent as the warning message whenever a

+virus is intercepted.

+Occurrences of %v within the file is replaced with the message

+returned from clamd, which includes the name of the virus.

+Occurrences of %h are replaced with the message's headers.

+The %v string can be escaped thus, \\%v, to send the string %v.

+The % character can be escaped thus, %%, to send the % character.

+Any occurrence of strings in dollar signs are replaced with the appropriate

+sendmail-variable, e.g. ${if_addr}$.

+If the \-t option is not given, clamav\-milter defaults to a hard-coded message.

+Note that to send warning messages, clamav\-milter must be able to execute

+sendmail.

+.TP

+\fB\-\-template\-headers=file\fR

+File points to a file whose contents are added to the headers of the

+warning message given to the \fB\-\-template\-file\fR option.

+For example, to state the character set of the message,

+put "Content-Type: text/plain; charset=koi8-r" into the file.

+.TP

+\fB\-\-timeout=n \-T n\fR

+Used in conjunction with max\-children. If clamav\-milter waits for more than

+\fIn\fR seconds (default 300) it proceeds with scanning. Setting \fIn\fR to zero

+will turn off the timeout and clamav\-milter will wait indefinitely for the

+scanning to quit. In practice the timeout set by sendmail will then take over.

+.TP

+\fB\-\-detect-forged-local-address \-L\fR

+When neither \-\-force, \-\-local nor \-\-outgoing is given,

+this option intercepts incoming mails that incorrectly claim to be from the

+local domain.

+.TP

+\fB\-\-whitelist-file=FILE, \-W file\fR

+This option specifies a file which contains a list of e-mail addresses.

+E-mails sent to or from these addresses will NOT be checked.

+While this is not an Anti-Virus function, it is quite useful for some systems.

+The address given to the \-\-quarantine directive is always whitelisted.

+.IP

+The file consists of a list of addresses, each address on a line enclosed

+in angle brackets (e.g. <foo@bar.com>).

+Optionally each line can start with the string \fITo:\fR or \fIFrom:\fR

+indicating if it is the sender or recipient that is to be whitelisted. If the

+field is missing, the default is \fITo\fR.

+Lines starting with #, : or ! are ignored.

+.TP

+\fB\-\-sendmail-cf=FILE\fR

+When starting, clamav\-milter runs some sanity checks against the sendmail.cf

+file, usually in /etc/sendmail.cf or /etc/mail/sendmail.cf. This directive

+tells clamav\-milter where to find the sendmail.cf file.

+.TP

+\fB\-\-black-hole-mode\fR

+Since \fIsendmail\fR calls its milters before it looks in its alias and virtuser

+tables, clamav-milter can spend time looking for malware that's going to be

+thrown away even if the message is clean.

+.IP

+Enable this to not scan these messages (in practice clamav\-milter will discard

+these messages so the message doesn't go further down the milter call chain).

+.IP

+Sadly, these days sendmail \-bv only works as root,

+so this option is not compatible with the User directive in clamd.conf,

+which some may view as a security risk.

+Only enable this if your site has many addresses aliased to /dev/null.

+.SH "BUGS"

+There is no support for IPv6.

+.SH "EXAMPLES"

+.LP

+clamav\-milter \-o local:/var/run/clamav/clmilter.sock

+.SH "AUTHOR"

+.LP

+Nigel Horne <njh@bandsman.co.uk>

+.SH "SEE ALSO"

+.LP

+sendmail(1), clamd(8), clamscan(1), freshclam(1), sigtool(1), clamd.conf(5), hosts_access(5)

deleted file mode 100644

@@ -1,30 +0,0 @@

-.TH "Config tool" "1" "February 12, 2007" "ClamAV 0.90" "Clam AntiVirus"

-.SH "NAME"

-.LP 

-clamconf \- Clam AntiVirus configuration utility

-.SH "SYNOPSIS"

-.LP 

-clamconf [options]

-.SH "DESCRIPTION"

-.LP 

-clamconf displays the values of configuration options.

-.SH "OPTIONS"

-.LP 

-

-.TP 

-\fB\-h, \-\-help\fR

-Display help and exit.

-.TP 

-\fB\-c DIR, \-\-config\-dir DIR\fR

-Search for configuration files clamd.conf and freshclam.conf in DIR.

-.TP 

-\fB\-n, \-\-non\-default\fR

-Only print non-default settings.

-.SH "CREDITS"

-The idea of this tool is based on Postfix's postconf. clamconf was created under pressure from Tomasz Papszun ;-)

-.SH "AUTHOR"

-.LP 

-Tomasz Kojm <tkojm@clamav.net>

-.SH "SEE ALSO"

-.LP 

-clamd.conf(5), freshclam.conf(5)

new file mode 100644

@@ -0,0 +1,30 @@

+.TH "Config tool" "1" "February 12, 2007" "ClamAV @VERSION@" "Clam AntiVirus"

+.SH "NAME"

+.LP 

+clamconf \- Clam AntiVirus configuration utility

+.SH "SYNOPSIS"

+.LP 

+clamconf [options]

+.SH "DESCRIPTION"

+.LP 

+clamconf displays the values of configuration options.

+.SH "OPTIONS"

+.LP 

+

+.TP 

+\fB\-h, \-\-help\fR

+Display help and exit.

+.TP 

+\fB\-c DIR, \-\-config\-dir DIR\fR

+Search for configuration files clamd.conf and freshclam.conf in DIR.

+.TP 

+\fB\-n, \-\-non\-default\fR

+Only print non-default settings.

+.SH "CREDITS"

+The idea of this tool is based on Postfix's postconf. clamconf was created under pressure from Tomasz Papszun ;-)

+.SH "AUTHOR"

+.LP 

+Tomasz Kojm <tkojm@clamav.net>

+.SH "SEE ALSO"

+.LP 

+clamd.conf(5), freshclam.conf(5)

@@ -1,4 +1,4 @@

-.TH "Clam Daemon" "8" "February 12, 2007" "ClamAV 0.90" "Clam AntiVirus"

+.TH "Clam Daemon" "8" "February 12, 2007" "ClamAV @VERSION@" "Clam AntiVirus"

 .SH "NAME"

 .LP 

 clamd \- an anti\-virus daemon

@@ -1,4 +1,4 @@

-.TH "clamd.conf" "5" "February 12, 2007" "ClamAV 0.90" "Clam AntiVirus"

+.TH "clamd.conf" "5" "February 12, 2007" "ClamAV @VERSION@" "Clam AntiVirus"

 .SH "NAME"

 .LP 

 \fBclamd.conf\fR \- Configuration file for Clam AntiVirus Daemon

deleted file mode 100644

@@ -1,75 +0,0 @@

-.TH "Clamd client" "1" "February 12, 2007" "ClamAV 0.90" "Clam AntiVirus"

-.SH "NAME"

-.LP 

-clamdscan \- scan files and directories for viruses using Clam AntiVirus Daemon

-.SH "SYNOPSIS"

-.LP 

-clamdscan [options] [file/directory]

-.SH "DESCRIPTION"

-.LP 

-clamdscan is a simple clamd client which may be used as a clamscan replacement. It accepts all the options implemented in clamscan but most of them will be ignored because its scanning abilities only depend on clamd.

-.SH "OPTIONS"

-.LP 

-

-.TP 

-\fB\-h, \-\-help\fR

-Display help information and exit.

-.TP 

-\fB\-V, \-\-version\fR

-Print version number and exit.

-.TP 

-\fB\-v, \-\-verbose\fR

-Be verbose.

-.TP 

-\fB\-\-quiet\fR

-Be quiet \- only output error messages.

-.TP