Ok you're mixing a bunch of unrelated things here, so lets try to break them up
1) spam in general, its never going to be consistent. If you're not using dcc, razor, and pyzor already definitely check those out (yum install dcc razor-agents pyzor). I'd also check out the greylisting packages if you havent already, qgreylist or spamdyke
2) clamav has spam signatures, but its not strictly for spam. Its really more of a backup for image spam detection
3) check out the zen.spamhaus.org rbl
4) the freshclam update messages are fine, its safe to ignore them.
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Current functionality level = 41, recommended = 42
I read this at the clamav site so was concerned about it. It also said being OUTDATED had to do with the scanner. A scanner update was not in the 0.95 update the other day.
What does WARNING: Current functionality level = 1, required = 2 mean?
The functionality level of the database determines which scanner engine version is required to use all of its signatures. If you don’t upgrade immediately you will be missing the latest viruses.
I have these installed ... dcc, razor, and pyzor.
My load didn't stay up like this before the 0.95.1 update.
modom46 wrote:
I read this at the clamav site so was concerned about it. It also said being OUTDATED had to do with the scanner. A scanner update was not in the 0.95 update the other day.
What does WARNING: Current functionality level = 1, required = 2 mean?
The functionality level of the database determines which scanner engine version is required to use all of its signatures. If you don’t upgrade immediately you will be missing the latest viruses.
You really don't need to worry about this.
I'm sure Scott will come along and give the deep details, but basically there's no real issue.
Faris.
--------------------------------
<advert>
If you want to rent a UK-based VPS that comes with friendly advice and support from a fellow ART fan, please get in touch.
</advert>
There is a lot more server load that I've been seeing even after the update. I keep seeing a lot of these in the maillog:
prefork: child states: IBII
Apr 16 12:45:21 godslove spamd[2648]: spamd: handled cleanup of child pid 1099 due to SIGCHLD
Apr 16 12:45:21 godslove spamd[2648]: prefork: child states: IBI
I had changed the qmail-scanner.ini file to 10 instead of 5. Should I increase this to 20?
SA_SETTINGS="-d -c -m10 -H"
clamd had stopped and the load went down but after restarting and running the qmail-scanner-configure the load is back up.
I think you need to increase the dnsrbls you use to reduce the amount of spam coming into your machine. Looks like it is just being overloaded.
How much memory do you have?
--------------------------------
<advert>
If you want to rent a UK-based VPS that comes with friendly advice and support from a fellow ART fan, please get in touch.
</advert>
I have centos 5.3, P4 3.2 with 2GB so plenty of ram.
How do I increase the dnsrbls?
I have atomic spamassassin, dcc, pyzor, razor, clamd, sanesecurity. The clamd.conf file is the default except for having the user as qscand. When clamd died earlier the load went way down but now is up again.
