Not using downloaded eFa4/repomd.xml because it is older than what we have

Questions and answers about how to do stuff
Post Reply
Brute
Posts: 3
Joined: 05 Jun 2023 09:46

Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by Brute »

Hi guys!

I get a following email every day:

/etc/cron.daily/0yum-daily.cron:

Not using downloaded eFa4/repomd.xml because it is older than what we have:
Current : Thu Jun 1 00:02:07 2023
Downloaded: Sat Mar 18 00:02:07 2023
/etc/cron.daily/mailscanner:


gzip: /etc/MailScanner/phishing.safe.sites.conf.master.gz: unexpected end of file

I tried this:

echo '' | openssl s_client -servername dl.efa-project.org -connect dl.efa-project.org:443 2>/dev/null | openssl x509 -noout -dates
unable to load certificate
140634245171088:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:707:Expecting: TRUSTED CERTIFICATE

What should I do?

THX
User avatar
pdwalker
Posts: 1553
Joined: 18 Mar 2015 09:16

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by pdwalker »

Regarding the second error, the daily mailscanner chron job eventually runs /usr/sbin/ms-update-phishing.

If you edit this file, there is DEBUG=0 on line 34. Change that to 1 and then run it. What do you get? Post the results here so we can have a look.

This is what I got when I ran it:
# /usr/sbin/ms-update-phishing
Found curl
Trying to update phishing.bad.sites.conf.master....
Check or download phishing.bad.sites.conf.master completed OK.
Download fresh phishing.bad.sites.conf.master succeeded, so make a backup
Creating fresh phishing.bad.sites.conf....
Creation of fresh phishing.bad.sites.conf is OK
Trying to update phishing.safe.sites.conf.master....
Check or download phishing.safe.sites.conf.master completed OK.
Download fresh phishing.safe.sites.conf.master succeeded, so make a backup
Creating fresh phishing.safe.sites.conf....
Creation of fresh phishing.safe.sites.conf is OK
(e.g. it is working fine or me)
Brute
Posts: 3
Joined: 05 Jun 2023 09:46

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by Brute »

Thanks for the reply.

I got a following text:

Found curl
Trying to update phishing.bad.sites.conf.master....
Check or download phishing.bad.sites.conf.master completed OK.
Download fresh phishing.bad.sites.conf.master succeeded, so make a backup
Creating fresh phishing.bad.sites.conf....
Creation of fresh phishing.bad.sites.conf is OK
Trying to update phishing.safe.sites.conf.master....

gzip: /etc/MailScanner/phishing.safe.sites.conf.master.gz: unexpected end of file
Check or download phishing.safe.sites.conf.master completed OK.
Remote phishing.safe.sites.conf.master not newer than local copy.... everything OK

So I made a backup of the phishing.safe.sites.conf. and deleted it. Than ran ms-update-phishing again and now it seems ok.

Found curl
Trying to update phishing.bad.sites.conf.master....
Check or download phishing.bad.sites.conf.master completed OK.
Download fresh phishing.bad.sites.conf.master succeeded, so make a backup
Creating fresh phishing.bad.sites.conf....
Creation of fresh phishing.bad.sites.conf is OK
Trying to update phishing.safe.sites.conf.master....
Check or download phishing.safe.sites.conf.master completed OK.
Download fresh phishing.safe.sites.conf.master succeeded, so make a backup
Creating fresh phishing.safe.sites.conf....
Creation of fresh phishing.safe.sites.conf is OK
User avatar
pdwalker
Posts: 1553
Joined: 18 Mar 2015 09:16

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by pdwalker »

Weird.

I cannot see why the initial update failed. It appears to be some sort of issue with your copy of phishing.safe.sites.conf.master.

Permissions problem? 0 byte file problem? I don't know.

Anyway, you've resolved the problem by deleting the problematic phishing.safe.sites.conf.master file and letting the update create you a new one.

Thanks for letting us know.
bostjanc
Posts: 165
Joined: 01 Jun 2016 17:18

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by bostjanc »

For me it didnt help.
If I delete phishing.safe.sites.conf and then run ms-update-phishing then this messages are displayed:

**************************
Found curl
Trying to update phishing.bad.sites.conf.master....
Check or download phishing.bad.sites.conf.master completed OK.
Download fresh phishing.bad.sites.conf.master succeeded, so make a backup
Creating fresh phishing.bad.sites.conf....
Creation of fresh phishing.bad.sites.conf is OK
Trying to update phishing.safe.sites.conf.master....

gzip: /etc/MailScanner/phishing.safe.sites.conf.master.gz: unexpected end of file
Check or download phishing.safe.sites.conf.master completed OK.
Remote phishing.safe.sites.conf.master not newer than local copy.... everything OK
**************************

And if I look into new "phishing.safe.sites.conf" afterwards I see it's 0KB, so I have replaced that file from the backup that I made previously.

What is interesting is also this, that in backup file that I made I look into it's content and here is saying something about static version:

Here I copy just a few lines from that file:

******************
# Add your custom Phishing safe sites to the
# phishing.safe.sites.custom file in your MailScanner
# directory. Note that phishing.safe.sites.conf is
# overwritten when ms-update-phishing is executed.
#
# Built by Mailborder Systems
# Build Time: Tue, 16 May 23 15:14:32 -0400
# https://www.mailborder.com
# Mailborder - Phishing Safe Sites
#
# The source used to build this file was deprecated by Amazon. This
# will be a static version unless we can find a new source.
*.
*. 2023.
*.google.com
*.youtube.com
*.baidu.com
*.bilibili.com
*.facebook.com
*.qq.com
****************************

So what to do?
User avatar
pdwalker
Posts: 1553
Joined: 18 Mar 2015 09:16

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by pdwalker »

delete /etc/MailScanner/phishing.safe.sites.conf.master.gz and try again.

you do not need to backup this file.
bostjanc
Posts: 165
Joined: 01 Jun 2016 17:18

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by bostjanc »

Thank you. Will try
bostjanc
Posts: 165
Joined: 01 Jun 2016 17:18

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by bostjanc »

Hi.
After deleting the gz file and running command again, the output is:
Found curl
Trying to update phishing.bad.sites.conf.master....
Check or download phishing.bad.sites.conf.master completed OK.
Download fresh phishing.bad.sites.conf.master succeeded, so make a backup
Creating fresh phishing.bad.sites.conf....
Creation of fresh phishing.bad.sites.conf is OK
Trying to update phishing.safe.sites.conf.master....
Check or download phishing.safe.sites.conf.master completed OK.
Download fresh phishing.safe.sites.conf.master succeeded, so make a backup
Creating fresh phishing.safe.sites.conf....
Creation of fresh phishing.safe.sites.conf is OK

So I think now it's ok.
Thank you!
bostjanc
Posts: 165
Joined: 01 Jun 2016 17:18

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by bostjanc »

But another gz file did not create automatically?
Will this be trigger with cron job and not with ms-update-phishing ?
User avatar
pdwalker
Posts: 1553
Joined: 18 Mar 2015 09:16

Re: Not using downloaded eFa4/repomd.xml because it is older than what we have

Post by pdwalker »

bostjanc wrote: 14 Jun 2023 14:48 But another gz file did not create automatically?
I don't understand this question.
bostjanc wrote: 14 Jun 2023 14:48 Will this be trigger with cron job and not with ms-update-phishing ?
/etc/cron.daily/mailscanner -> runs
/usr/sbin/ms-cron DAILY -> which runs
/usr/sbin/ms-update-phishing

So yes, it will be triggered by the cron job.

- Paul
Post Reply