update 3.0.2.5 - > 3.0.2.6

Report bugs and workarounds
Post Reply
henk
Posts: 517
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

update 3.0.2.5 - > 3.0.2.6

Post by henk »

I just updated efa from 3.0.2.5 - > 3.0.2.6. No issues in de update process. :clap:

However I noticed a minor change.

1. the MailScanner service is renamed to mailscanner. ( all lowercase) checking the service will still return the MailScanner name

Code: Select all

[root@sansspam log]# service mailscanner status
MailScanner is running under process id 2718
I changed this in /usr/sbin/EFA-Monitor-cron

Code: Select all

# +--------------------------------------------------------------------+
# Configurable Variables
# +--------------------------------------------------------------------+
MaxRestartAttempts=3
# Monitored Service Array (daemon=sysv)
MonitoredServices=("mysqld=mysqld" "MailScanner=mailscanner" "master=postfix" "httpd=httpd" "clamd=clamd" "unbound=unbound" "saslauthd=saslauthd" "dccifd=adcc")
# Enable restart expiry (1 day)
RestartExpiry=1
2. The first

Code: Select all

freshclam -v
was complaining

Code: Select all

Detected duplicate databases /var/lib/clamav/daily.cld and /var/lib/clamav/daily.cvd. The /var/lib/clamav/daily.cld database is older and will not be loaded, you should manually remove it from the database directory
So I removed it and run it again

Code: Select all

rm /var/lib/clamav/daily.cld
3. Run

Code: Select all

sa-update -v
and see if you can compile without errors

Code: Select all

sa-compile
“We are stuck with technology when what we really want is just stuff that works.” -Douglas Adams
paulo88
Posts: 12
Joined: 06 Dec 2017 16:06

Re: update 3.0.2.5 - > 3.0.2.6

Post by paulo88 »

I also just updated to 3.0.2.6 without any major problems but experienced the same problems

I also noticed that if you use the EFA-configure that the utility cannot restart the "MailScanner": "unrecognized service"
The change in the service name ("MailScanner"->"mailscanner") is probably to blame for this as well.
tesme33
Posts: 62
Joined: 22 Mar 2015 10:57
Location: Germany/Munich area

Re: update 3.0.2.5 - > 3.0.2.6

Post by tesme33 »

Hi
im now also on 3.0.2.6 and adjusted the mailscanner wording. Thanks for pointing out.
As this shall be the last release im asking myself if the yum updates can still be applied ?

Thx
User avatar
shawniverson
Posts: 3644
Joined: 13 Jan 2014 23:30
Location: Indianapolis, Indiana USA
Contact:

Re: update 3.0.2.5 - > 3.0.2.6

Post by shawniverson »

"MailScanner" case issue now fixed in 3.0.2.6 update file. New builds will include fix as well.

Fixes are in this commit, in case you need to fix yourself:

https://github.com/E-F-A/v3/commit/a340 ... cb647bd25a
Zwabber
Posts: 69
Joined: 14 Feb 2016 21:26

Re: update 3.0.2.5 - > 3.0.2.6

Post by Zwabber »

After updating i could not longer login to EFA. The "checklogin.php" returns that it cannot connect to my Domain Controllers.
LDAP-Debug script to AD also won't work anymore. It only returns: "Test connection to server Connection to server failed"
After reverting back to snapshot, everything works fine (and debug script works fine to)
User avatar
shawniverson
Posts: 3644
Joined: 13 Jan 2014 23:30
Location: Indianapolis, Indiana USA
Contact:

Re: update 3.0.2.5 - > 3.0.2.6

Post by shawniverson »

Zwabber wrote: 06 Jan 2018 11:42 After updating i could not longer login to EFA. The "checklogin.php" returns that it cannot connect to my Domain Controllers.
LDAP-Debug script to AD also won't work anymore. It only returns: "Test connection to server Connection to server failed"
After reverting back to snapshot, everything works fine (and debug script works fine to)
This update upgrades to PHP 7.2. Is php-ldap present after updating?
Zwabber
Posts: 69
Joined: 14 Feb 2016 21:26

Re: update 3.0.2.5 - > 3.0.2.6

Post by Zwabber »

Problem found in conf.php
There are 2 servers defined in one rule.
define('LDAP_HOST', 'srvdc01.rotzooitje.local srvdc02.rotzooitje.local');
After cleaning it up to only one server it's working again.
henk
Posts: 517
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: update 3.0.2.5 - > 3.0.2.6

Post by henk »

Did some digging. There are still some references to the MailScanner service that need to be changed to mailscanner

in EFA-Daily-cron there a 2 enries:
/usr/local/sbin/EFA-SA-Update -cron >> /var/log/EFA/EFA-SA-Update.log 2>&1
/usr/local/sbin/EFA-MS-Update -cron >> /var/log/EFA/EFA-MS-Update.log 2>&1

so in /usr/local/sbin

Code: Select all

grep -irHn '/etc/init.d/MailScanner' *
EFA-MS-Update:105: /etc/init.d/MailScanner reload #> /dev/null 2>&1
EFA-MS-Update:108: /etc/init.d/MailScanner reload
EFA-MS-Update:113: /etc/init.d/MailScanner stop
EFA-MS-Update:117: /etc/init.d/MailScanner start
EFA-MS-Update:173: /etc/init.d/MailScanner reload #> /dev/null 2>&1
EFA-MS-Update:176: /etc/init.d/MailScanner reload
EFA-MS-Update:181: /etc/init.d/MailScanner stop
EFA-MS-Update:185: /etc/init.d/MailScanner start
EFA-SA-Update:103: /etc/init.d/MailScanner reload #> /dev/null 2>&1
EFA-SA-Update:106: /etc/init.d/MailScanner reload
EFA-SA-Update:111: /etc/init.d/MailScanner stop
EFA-SA-Update:115: /etc/init.d/MailScanner start

and

Code: Select all

vi /usr/local/bin/mailwatch/tools/MailScanner_rule_editor/msre_reload.sh

if [ -e /tmp/msre_reload ];
then
- /etc/init.d/MailScanner reload > /dev/null
+ /etc/init.d/mailscanner reload > /dev/null
rm -f /tmp/msre_reload
fi



@@ Zwabber: nice Domain naming 'rotzooitje.local ' . For the non Dutch : Big mess ;)
“We are stuck with technology when what we really want is just stuff that works.” -Douglas Adams
henk
Posts: 517
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: update 3.0.2.5 - > 3.0.2.6

Post by henk »

Somehow the exec bit was gone on EFA-Backup resulting in no daily backups from /etc/cron.daily/EFA-Backup-cron

Code: Select all

cat /var/log/EFA/EFA-Backup.log | grep denied
/etc/cron.daily/EFA-Backup-cron: line 22: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 23: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 22: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 23: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 22: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 23: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 22: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 23: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 22: /usr/local/sbin/EFA-Backup: Permission denied
/etc/cron.daily/EFA-Backup-cron: line 23: /usr/local/sbin/EFA-Backup: Permission denied

As backups are your best friend, I enabled it again.

Code: Select all

ls -l /usr/local/sbin/EFA-Backup
-rw-r--r--   1 root root  7087 Jan  3 10:28 /usr/local/sbin/EFA-Backup

Code: Select all

chmod +x /usr/local/sbin/EFA-Backup
test backup
[root@sansspam cron.daily]# ./EFA-Backup-cron

Code: Select all

ls -l /var/EFA/backup
total 20812
drwxr-xr-x 4 root root 4096 Oct 4 03:25 3.0.2.5
-rw------- 1 root root 6908518 Jan 3 03:08 backup-01032018-030802.tar.gz
-rw------- 1 root root 6878202 Jan 3 10:26 backup-01032018-102620.tar.gz
-rw------- 1 root root 6895823 Jan 8 09:52 backup-20180108-095234.tar.gz
drwxr-xr-x. 2 root root 4096 Dec 26 04:07 KAM
-rw-r--r-- 1 root root 592062 Jan 8 04:09 phishing.bad.sites.conf.backup
-rw-r--r-- 1 root root 12587 Jan 8 04:10 phishing.safe.sites.conf.backup
drwxr-xr-x 2 root root 4096 Jan 8 09:52 tmp
“We are stuck with technology when what we really want is just stuff that works.” -Douglas Adams
henk
Posts: 517
Joined: 14 Dec 2015 22:16
Location: Netherlands
Contact:

Re: update 3.0.2.5 - > 3.0.2.6

Post by henk »

Solve all the naming issues with one line :clap:
As in: The impossible we can do right now. Miracles take a little longer and on request we can even do magic.
Great fix, thanks.

# Add init.d symlink back for backward compatibility
# ln -s /etc/init.d/mailscanner /etc/init.d/MailScanner
“We are stuck with technology when what we really want is just stuff that works.” -Douglas Adams
Post Reply