Page 1 of 1

Clamd, Exim & cPanel

Posted: Sun May 24, 2015 11:22 pm
by iv@rh
Clamav add-on in cPanel has nice integration with Exim mail server, where clamd is used to scan all incoming and outgoing emails for viruses and malware at the time of arrival/sending.

Since ASL installs it's own version of Clamd, it clashes with cPanel's clamav and a user has to decide which one to disable.

It would be nice to integrate ASL's clamd with Exim on cPanel servers, so that emails is scanned at the time of delivery and not during the daily scan.

Are there any plans of such integration or a post showing how to do this ourselves?

Re: Clamd, Exim & cPanel

Posted: Fri May 29, 2015 9:19 am
by scott
Im not familiar with the cpanel implementation there, but if I had to guess its just looking for the socket in some different location. A big reason to use the ASL version of clam other than its generally newer, is ours supports real-time filesystem checking & enforcement, and we have our own additional signature database.

So basically we'd just need to know what other socket path cpanel expects, and either change cpanel to use the same location or to double up socket files (which I think clam supports) in both locations.

Re: Clamd, Exim & cPanel

Posted: Thu Jun 04, 2015 4:34 am
by iv@rh
I think you refer to ASL with ASL kernel, which is not the case in CloudLInux cPanel. If this is true (ASL kernel is required), then most of ClamAV features you're talking about won't work.

In addition to the socket location, cPanel's clamav implementation modifies Exim configuration to add directives for parsing email through Clamav. You really need to refer to cPanel's API/development guide for this.

What horrifies me is realising that you claim cPanel compatability, but it sounds like it is only theoretical compatability. For example, having ASL kernel was killing Easyapache script and made us to stop using it. It is impossible to update / reconfigure Apache without rebooting vanilla kernel, then running Easyapache and then restarting again to activate the ASL kernel. This makes it 2 reboots to just recompile Apache.

Re: Clamd, Exim & cPanel

Posted: Thu Jun 04, 2015 2:48 pm
by hostingg
For example, having ASL kernel was killing Easyapache script and made us to stop using it. It is impossible to update / reconfigure Apache without rebooting vanilla kernel, then running Easyapache and then restarting again to activate the ASL kernel. This makes it 2 reboots to just recompile Apache.
are you sure you dont have some other problem? asl works fine with all our cpanel systems and we only use the atomic kernel. we never have to reboot easyapache works great for us.

Re: Clamd, Exim & cPanel

Posted: Thu Jun 25, 2015 4:43 pm
by bakkus
iv@rh wrote:I think you refer to ASL with ASL kernel, which is not the case in CloudLInux cPanel. If this is true (ASL kernel is required), then most of ClamAV features you're talking about won't work.

In addition to the socket location, cPanel's clamav implementation modifies Exim configuration to add directives for parsing email through Clamav. You really need to refer to cPanel's API/development guide for this.

What horrifies me is realising that you claim cPanel compatability, but it sounds like it is only theoretical compatability. For example, having ASL kernel was killing Easyapache script and made us to stop using it. It is impossible to update / reconfigure Apache without rebooting vanilla kernel, then running Easyapache and then restarting again to activate the ASL kernel. This makes it 2 reboots to just recompile Apache.
I've had the exact same problem many times, but it helped to submit a bug to Atomicorp. It has been working for a couple of versions now.
I'm experiencing the same problem with clamd now, I'm afraid.

Re: Clamd, Exim & cPanel

Posted: Fri Jun 26, 2015 5:33 pm
by scott
This is the raw data part for the do-it-yourselfers out there. Adding the following to /etc/clamd.conf will allow exim+clamav to access the correct socket:

LocalSocket /var/clamd

We'll build the automation into ASL to get this in there for you automatically soon.

Re: Clamd, Exim & cPanel

Posted: Sun Sep 27, 2015 4:56 am
by copernic2006
scott wrote:This is the raw data part for the do-it-yourselfers out there. Adding the following to /etc/clamd.conf will allow exim+clamav to access the correct socket:

LocalSocket /var/clamd
In the file clamd.conf , there's already:

Code: Select all

LocalSocket /tmp/clamd.socket
Is what we should replace it with?
LocalSocket /var/clamd
Thank you for helping me to understand