From: "Paul Smedley" <ecs-isp@2rosenthals.com>
Received: from [192.168.100.201] (HELO mail.2rosenthals.com)
  by 2rosenthals.com (CommuniGate Pro SMTP 5.4.10)
  with ESMTPS id 8111157 for ecs-isp@2rosenthals.com; Fri, 13 Oct 2023 01:12:31 -0400
Received: from secmgr-va.2rosenthals.com ([50.73.8.217]:58451 helo=mail2.2rosenthals.com)
	by mail.2rosenthals.com with esmtps  (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96)
	(envelope-from <paul@smedley.id.au>)
	id 1qrATE-0006kr-3A
	for ecs-isp@2rosenthals.com;
	Fri, 13 Oct 2023 01:12:21 -0400
Received: from purple.birch.relay.mailchannels.net ([23.83.209.150]:60643)
	by mail2.2rosenthals.com with esmtps  (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96)
	(envelope-from <paul@smedley.id.au>)
	id 1qrAT3-0001tr-14
	for ecs-isp@2rosenthals.com;
	Fri, 13 Oct 2023 01:12:09 -0400
X-Sender-Id: perthwebhosting|x-authuser|paul@smedley.id.au
Received: from relay.mailchannels.net (localhost [127.0.0.1])
	by relay.mailchannels.net (Postfix) with ESMTP id E7A2341D5C;
	Fri, 13 Oct 2023 05:12:07 +0000 (UTC)
Received: from colossiansvm.perthwebhosting.net.au (unknown [127.0.0.6])
	(Authenticated sender: perthwebhosting)
	by relay.mailchannels.net (Postfix) with ESMTPA id 0BCB041BE6
	for <ecs-isp@2rosenthals.com>; Fri, 13 Oct 2023 05:12:06 +0000 (UTC)
ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1697173927; a=rsa-sha256;
	cv=none;
	b=bQADoXSplk4dFYCeh2qXVAbgkGT3hFIi/spXpjcV97wu9A6mMjyrLD6/gUhhigZdm0J6L3
	gfuMaHeFEhpVrTrgB31LN8k9pUp5Z7rz4AgGJ3/aOBEni1+N04cWYV6Id0KPKqcYG2SazO
	7xYZc6CEMGoiBOpEuSdDSarXAdpw55iyiCsUx5iraHvAR+ZgsFBiAeBZrusP3SRxiOsjzv
	FiGweu6wuM8YWqqXruwiuX+LlOFu6YezaWX1vcf+rNC1y6aLHkihPGCQnangz5gd8QqgDC
	nyM2910QvLFe9Dp+uwBd1QG8h0VRtNrblqGXOfys9qMQDUiZRLwou/vfjvM0Fw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;
 d=mailchannels.net;
	s=arc-2022; t=1697173927;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 in-reply-to:in-reply-to:references:references;
	bh=hxoRDXy3bNS+uamZLL71B/yI79uobv7SZ45oAl2uAPA=;
	b=e+Uq2Zo6tKGrEYLlKyY7Kddq18dvGFhgChenV4XVpQ62Ju1JGbNPzVggggIrO+iuZBMGxx
	2h5qrpdCoBwFdc9vOhfpCy68gG3ufk32hIpcyuFIKUMLvw3niqik2+LqWXCUVeMoYL04ri
	m2fpie43J61trVKyVdmDUYG17Xil0rUW5TnyJu1ar5cxK7nZ9lt3pT2L4d2H/sD9paGFN/
	RSnrhLAHNwfgNDQ1TbfmiczzI9LNtg4l8CoUR/sW3fbYPjqtvU6bc8cKoIHGt1jk/uQFE5
	RiN6poX5faQS/PMwAjoRijrsguUPbSaUQSJFpVQ2smEJPBjb9eGMPjHFo9MEwg==
ARC-Authentication-Results: i=1;
	rspamd-554cd65b86-7d2zq;
	auth=pass smtp.auth=perthwebhosting smtp.mailfrom=paul@smedley.id.au
X-Sender-Id: perthwebhosting|x-authuser|paul@smedley.id.au
X-MC-Relay: Neutral
X-MC-Copy: stored-urls
X-MailChannels-SenderId: perthwebhosting|x-authuser|paul@smedley.id.au
X-MailChannels-Auth-Id: perthwebhosting
X-Illegal-Language: 320b593c7115e896_1697173927692_1841754079
X-MC-Loop-Signature: 1697173927692:4028906366
X-MC-Ingress-Time: 1697173927692
Received: from colossiansvm.perthwebhosting.net.au
 (colossiansvm.perthwebhosting.net.au [103.13.84.198])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384)
	by 100.113.192.135 (trex/6.9.1);
	Fri, 13 Oct 2023 05:12:07 +0000
Received: from 218-215-61-148.sta.wbroadband.net.au ([218.215.61.148]:48026 helo=[192.168.1.159])
	by colossiansvm.perthwebhosting.net.au with esmtpsa  (TLS1.3) tls TLS_AES_128_GCM_SHA256
	(Exim 4.96.1)
	(envelope-from <paul@smedley.id.au>)
	id 1qrAT2-0078D3-0f
	for ecs-isp@2rosenthals.com;
	Fri, 13 Oct 2023 13:12:04 +0800
Content-Type: multipart/alternative;
 boundary="------------yfY6HsYnQF4EOAtlhQGoMO25"
Message-ID: <7a5a82cc-8583-491a-9768-4f2f8b577faf@smedley.id.au>
Date: Fri, 13 Oct 2023 15:42:03 +1030
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Subject: Re: [eCS-ISP] ClamAV
Content-Language: en-AU
To: eCS ISP Mailing List <ecs-isp@2rosenthals.com>
References: <list-8111147@2rosenthals.com>
In-Reply-To: <list-8111147@2rosenthals.com>
X-AuthUser: paul@smedley.id.au

This is a multi-part message in MIME format.
--------------yfY6HsYnQF4EOAtlhQGoMO25
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit

Hi Steven,

On 13/10/23 15:52, Steven Levine wrote:
> In<list-8111072@2rosenthals.com>, on 10/13/23
>     at 10:50 AM, "Paul Smedley"<ecs-isp@2rosenthals.com>  said:
>
> Hi Paul,
>
>>>> This will probably go away once I rebuild clamav 0.103.6 with rpm
>>>> openssl.
>>> This would be good.
>> Fingers crossed.
> Unfortunately, I still have the cert problem:
> <snip>

> * error setting certificate verify locations:  CAfile: /etc/ssl/cacert.pem
> CApath: none * Closing connection 0
> Giving up onhttps://database.clamav.net...
> ERROR: Update failed for database: daily
> ERROR: Database update process failed: Connection failed
> ERROR: Update failed.
> [LibClamAV] cli_rmdirs: Can't locate
> /Internet/clamav/lib/clamav/tmp.82c6d0da0a: No such file or directory
>
> Best I can tell cacert.pem is not shipped by netlabs.
>
> Do you have a /etc/ssl/cacert.pem?
I don't seem to...
>
> FWIW, the error message is coming from the curl library because, at least
> here, verifypeer is set.
>
> Based on our discussion so far, when you run freshclam it dies when it
> runs ou of memory.  Your SSL setup and the file download just works,
> otherwise.  Is this true?

Correct.  I'll rebuild with bww curl to be safe...

We have debug data for everything but clamav.dll, but this dll appears to
> be unused.

Yeah I meant to remove it....

Cheers,

Paul

--------------yfY6HsYnQF4EOAtlhQGoMO25
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 8bit

<!DOCTYPE html>
<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <p>Hi Steven,<br>
    </p>
    <div class="moz-cite-prefix">On 13/10/23 15:52, Steven Levine wrote:<br>
    </div>
    <blockquote type="cite" cite="mid:list-8111147@2rosenthals.com">
      <pre class="moz-quote-pre" wrap="">In <a class="moz-txt-link-rfc2396E" href="mailto:list-8111072@2rosenthals.com">&lt;list-8111072@2rosenthals.com&gt;</a>, on 10/13/23
   at 10:50 AM, "Paul Smedley" <a class="moz-txt-link-rfc2396E" href="mailto:ecs-isp@2rosenthals.com">&lt;ecs-isp@2rosenthals.com&gt;</a> said:

Hi Paul,

</pre>
      <blockquote type="cite">
        <blockquote type="cite">
          <blockquote type="cite">
            <pre class="moz-quote-pre" wrap="">This will probably go away once I rebuild clamav 0.103.6 with rpm
openssl.
</pre>
          </blockquote>
          <pre class="moz-quote-pre" wrap="">This would be good.
</pre>
        </blockquote>
        <pre class="moz-quote-pre" wrap="">Fingers crossed.
</pre>
      </blockquote>
      <pre class="moz-quote-pre" wrap="">
Unfortunately, I still have the cert problem:
</pre>
    </blockquote>
    <blockquote type="cite" cite="mid:list-8111147@2rosenthals.com">
      <pre class="moz-quote-pre" wrap="">
&lt;snip&gt;</pre>
    </blockquote>
    <br>
    <blockquote type="cite" cite="mid:list-8111147@2rosenthals.com">
      <pre class="moz-quote-pre" wrap="">* error setting certificate verify locations:  CAfile: /etc/ssl/cacert.pem
CApath: none * Closing connection 0
Giving up on <a class="moz-txt-link-freetext" href="https://database.clamav.net">https://database.clamav.net</a>...
ERROR: Update failed for database: daily
ERROR: Database update process failed: Connection failed
ERROR: Update failed.
[LibClamAV] cli_rmdirs: Can't locate
/Internet/clamav/lib/clamav/tmp.82c6d0da0a: No such file or directory

Best I can tell cacert.pem is not shipped by netlabs.

Do you have a /etc/ssl/cacert.pem?</pre>
    </blockquote>
    I don't seem to...<br>
    <blockquote type="cite" cite="mid:list-8111147@2rosenthals.com">
      <pre class="moz-quote-pre" wrap="">

FWIW, the error message is coming from the curl library because, at least
here, verifypeer is set.

Based on our discussion so far, when you run freshclam it dies when it
runs ou of memory.  Your SSL setup and the file download just works,
otherwise.  Is this true?
</pre>
    </blockquote>
    <p>Correct.  I'll rebuild with bww curl to be safe...</p>
    <span style="white-space: pre-wrap">We have debug data for everything but clamav.dll, but this dll appears to</span>
    <blockquote type="cite" cite="mid:list-8111147@2rosenthals.com">
      <pre class="moz-quote-pre" wrap="">be unused.
</pre>
    </blockquote>
    <p>Yeah I meant to remove it....</p>
    <p>Cheers,</p>
    <p>Paul<br>
    </p>
  </body>
</html>

--------------yfY6HsYnQF4EOAtlhQGoMO25--