cPanel

ClamAV have released a new version with security fixes. It is advised that everyone upgrade to this new version, which you can now do through the MailScanner WHM UI.

Changes in this release include some security fixes in CHM, CAB and PDF code and better handling of network problems in freshclam.Please see ChangeLog for complete list of changes. **Important note**: on April 16th CHM, CAB and PDF handlers will be disabled for 0.90 and 0.90.1 users through the dynamic engine configuration module (DCONF). Please upgrade to 0.90.2 immediately.

ClamAV have released a new version that fixes a raft of things that they broke with the v0.90 release a few days ago. We will be releasing a new version of the MailScanner installer script shortly that fixes an incompatibility in MailScanner with the new v0.9* version of ClamAV.

The day we release a patch workaround the Mail::ClamAV developer has finally released fixed code for ClamAV v0.90. It will take some time to get around all the cpan.org mirrors, but you can install it from source easily enough and then revert to virus scanners = clamavmodule in MailScanner.conf

Virus Scanners = clamavmodule

We have previously guarded against upgrading to this latest version of ClamAV as the developer of the perl module Mail::ClamAV has not updated his code to support this updated version of the ClamAV engine.However, vulnerabilities have now been published for versions of ClamAV prior to v0.90 so it seems prudent to upgrade to it now.To do this we have repackaged the ClamAV v0.90 distribution and added code to convert MailScanner to use clamav instead of clamavmodule for its Virus Scanner.The downside of this change is that there is a potential increase in server load over using the perl module method.You can upgrade now through the WHM MailScanner UI. You can ignore the Mail::ClamAV errors at the bottom of the installation procedure, but do make sure that MailScanner starts correctly and send a test message through your system (check /var/log/maillog).For anyone using MailScanner without our Front-End, you can upgrade using the same repackaged distribution with…

Don’t be tempted to upgrade to ClamAV v0.90 if you are running MailScanner. The Mail::ClamAV perl module is incompatible with it at this time, so you will have to stick with ClamAV v0.87 (why can’t they develop these things to be backwards compatible?). Hopefully the Mail::ClamAV developer will fix this soon. If you must use v0.90 then you’ll have to set virus scanners = clamav in MailScanner.conf

We have found that some clients hosted by Liquidweb are seeing the message “MailScanner Status: Disabled” at the top of their MailScanner front-end after a cPanel upgrade.The problem has been caused by Liquidweb’s installation of clamav rpms that modify the exim configuration each time cPanel is upgraded, thus breaking MailScanner. We have been uninstalling these rpms as part of our mailscanner install for several months now but it appears that Liquidweb has re-installed those rpms and the problem has arisen again since a recent cPanel upgrade.Fix instructions follow.If you would like us to perform the fix for you, then please log a ticket on our helpdesk with access details. There will be a $30 (half hour) charge for performing this service.Here is how to fix it:1. Remove /etc/exim.conf.local to start with a clean copy.

2. Remove all installs and rpms of clamav and reinstall clamav.

3. Upgrade MailScanner (per instructions on website – http://www.configserver.com/cp/upgrade.html) to add correct configuration to exim.conf.local. Should be able to select option 2 (quick perl module check). You will need to do ths at the command line since you are probably already running the latest version of MailScanner.4. Re-add the dictionary attack ACL, log_selector, etc. to exim.conf.local via WHM exim configuration editor, if desired.