7.0-RELEASE-p6 with freebsd-update

freebsd-update is cool

# freebsd-update fetch
Looking up update.FreeBSD.org mirrors… 1 mirrors found.
Fetching metadata signature for 7.0-RELEASE from update1.FreeBSD.org… done.
Fetching metadata index… done.
Fetching 2 metadata patches.. done.
Applying metadata patches… done.
Inspecting system… done.
Preparing to download files… done.
Fetching 8 patches….. done.
Applying patches… done.

The following files will be updated as part of updating to 7.0-RELEASE-p7:
/boot/kernel/kernel
/boot/kernel/kernel.symbols
/usr/libexec/ftpd
/usr/src/libexec/ftpd/extern.h
/usr/src/libexec/ftpd/ftpcmd.y
/usr/src/libexec/ftpd/ftpd.c
/usr/src/sys/conf/newvers.sh
/usr/src/sys/kern/uipc_domain.c

WARNING: FreeBSD 7.0-RELEASE-p6 is approaching its End-of-Life date.
It is strongly recommended that you upgrade to a newer
release within the next 1 month.
edp# freebsd-update install
Installing updates… done.
#

FreeBSD 7.1 RC2 released

With new FreeBSD 7.1 release candidate 2 just arrive I choose to follow it in production server as always :-)

# freebsd-update upgrade -r 7.1-RC2

# freebsd-update install

# shutdown -r now

# freebsd-update install

# shutdown -r now

For next experiment I’ll try livefs in conjuction to ftp install for alternative install.

Still looking a way to disable debug in -CURRENT :-)

Happy New Year

Install havp (HTTP Antivirus Proxy) in FreeBSD 7.1

Many of us still using internet explorer as main browser due to many factor, but much more related to our worksheet display. It’s in progress to make it more compliance to other browser such firefox and opera.

Another problem came up when spyware and virus spread more easier using IE. To prevent it from spread to other host I decide to install havp in junction with installed squid.

Squid already run in port 3128 and I want to install havp in recent FreeBSD 7.1 RC1

Here’s my steps :

1.  Update ports to latest version using csup and install havp

cd /usr/ports/www/havp && make install

2. Install clamav

/usr/ports/security/clamav && make install

3. Edit rc.conf, add these lines :

clamav_freshclam_enable=”YES”

clamav_clamd_enable=”YES”

havp_enable=”YES”

Continue reading

Using Clamav for Scanning Virus in FreeBSD

We provide ftp access to student for storing their work, song, etc in limited space. Around 100 – 150 MB for each student.

Due to report for virus that might appear in their PC in the class I have to scan and remove it in their ftp account before take action to PC level.

I use clamav from FreeBSD ports to scan virus in FTP server, here’s the steps:

*make sure to update ports to latest version*

1. Install Clamav

ftp# cd /usr/ports/security/clamav && make install

2. Edit rc.conf file and insert these lines :

clamav_freshclam_enable=”YES”

clamav_clamd_enable=”YES”

3. Starting Clamav Daemon

ftp# /usr/local/etc/rc.d/clamav-clamd start

4. Update virus database

ftp# freshclam

Continue reading