Yes another post from me. But this time I am trying to make it informative so that others might be able to try it as well because I couldn’t find anything that had complete instructions anywhere, just little bits here and there so I posted it all here.
Well I finally decided to try and get a new ClamAV on my new server since the old ClamAV is really old and I want a new one and so does everyone else. Why isn’t there a new one? I don’t know but it seems like a really important thing to me and after ages of warnings I got sick of it and tried to figure it out.
I knew it was going to be easier than it seemed but haven’t really gotten into it until now. It must definitely be easier to do what I did than packaging it by the sounds of it which would explain the lack of updates. However, I think it is still necessary and I don’t understand why neither CentOS, Virtualmin nor Virtualmin Bleeding Edge repos have an updated version. Maybe they are just having troubles packaging it?
So anyway, I discovered I can use RPMForge http://dag.wieers.com/rpm/FAQ.php#B
But first I had to run
yum remove clamav* so it would be able to install the new one without conflicts.
Then I discovered I can include and exclude packages in the repo files.
I edited /etc/yum.repos.d/rpmforge.repo and added this line:
includepkgs=clamav clamav-devel clamd clamav-db
Then I ran
yum install clamav clamav-devel clamd clamav-db
It installed successfully!
I’m sure I must be missing something because there was some other files that uninstalled that didn’t reinstall such as one that was clamav-fileserver or something like that which uninstalled and some others I think too. But maybe thats just from the old version and the new version is simply different.
I even did a complete scan of the entire system with clamscan and found no infections. Good to know the old version wasn’t missing anything on the server at least but I was unable to update new definitions anymore it seems.
I added some exclude=clamav* lines to the other repo files for good measure. I don’t know if thats the way to do it or not but it seems to work ok.
However I am not so sure the includepkgs works properly through Virtualmin because upon logging in I see
35 updates to system packages are available. Use the Virtualmin Package Updates module to install them selectively. and
10 updates to Virtualmin packages are available. Use the Virtualmin Package Updates module to install them selectively.
So something fishy is going on there. Any ideas what it could be?
I can even do yum update and get nothing:
[root@ns1 yum.repos.d]# yum update
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
- addons: centos.mirror.iweb.ca
- base: centos.mirror.iweb.ca
- extras: centos.mirror.iweb.ca
- rpmforge: fr2.rpmfind.net
- updates: centos.mirror.iweb.ca
virtualmin | 951 B 00:00
virtualmin-bleed | 951 B 00:00
virtualmin-universal | 951 B 00:00
Reducing Red Hat Enterprise 5 - RPMforge.net - dag to included packages only
Excluding Packages from Red Hat Enterprise 5 - i386 - Virtualmin
Excluding Packages from Red Hat Enterprise 5 - i386 - Virtualmin Bleeding Edge
Excluding Packages from Virtualmin Distribution Neutral
Setting up Update Process
No Packages marked for Update
I don’t usually worry about viruses much because I run Linux on my laptop anyway but its good to scan emails for everyone on my server and run a cron to scan the /home folder each day where people might upload files.
Perhaps someone should make a double Bleeding edge Bleeding edge repo and stick a new ClamAV and a new everything else in there like the newest versions of PHP, Apache, MySQL, maybe even a Kernel, etc.? Now that would be true bleeding edge. It is obviously a lot of work and I don’t expect that but one can dream. I don’t even like building things like PHP or Apache from source for fear I will mess something up. I can’t imagine packaging something thats a nightmare to package because I have no idea what that involves yet. Though I hear OpenSuse is supposed to be able to package things for every other distro somehow so maybe it would make it easier since I have that on here.