I have just had a good looooong look at my installation ... hMailServer 5.6.8 runs on Windows Server 2003 with 2GB RAM ... Yeah! 32 bit
The new ClamAV 103.2 32bit from Netfarm is using just over 1 GB RAM
So........... Killed ClamAV on the 2K3 Server, my BackupMX is running Windows Server 2019 Essential with 6GB RAM and is virtually doing nothing. It is now the new home of ClamAV.
The ClamAV that Ruud referred to is now installed (64bit plug-n-play) on the W2019 Server and test from hMailAdmin on W2K3 Server show connectivity.
Moving ClamAV however gave me another problem. My SpamAssassin is using a ClamAV plugin - yes emails are scanned twice - but after some digging I now have a solution.
The SpamAssassin ClamAV plugin was updated (ver 2.1) in 2017 to allow the use of Perl module ClamAV::Client ... The old plugin used the Perl module File::Scan::ClamAV and supported sockets or TCP on localhost only.
You may ask WHY do I scan files twice ... Well, no more than 10 minutes ago my server received an email that hMailServer says is clean but SpamAssassin says - X-Spam-Virus: Yes (Porcupine.Junk.40702.UNOFFICIAL(9503bd3aef746a857a71d39bd001380e:1653))
hMailServer and SpamAssassin both ask the same instance of ClamAV.
Code: Select all
Tue May 4 17:27:50 2021 -> Accepted connection from 192.168.0.5 on port 1564, fd 1808
Tue May 4 17:27:50 2021 -> Client disconnected (FD 1808)
Tue May 4 17:27:50 2021 -> stream(192.168.0.5@1564): OK
Tue May 4 17:27:50 2021 -> Accepted connection from 192.168.0.5 on port 1673, fd 1808
Tue May 4 17:27:50 2021 -> Client disconnected (FD 1808)
Tue May 4 17:27:50 2021 -> stream(192.168.0.5@1673): Eicar-Signature(62b97e1a78f740a95997f4b24f59ffd3:69) FOUND
Tue May 4 17:37:50 2021 -> SelfCheck: Database status OK.
Tue May 4 17:47:50 2021 -> SelfCheck: Database status OK.
Need I say more?
Files from my SpamAssassin attached.
SørenR.
Woke is Marxism advancing through Maoist cultural revolution.