We are ISP and have several servers. Two of them stopped to update Clamav. It seems Cloudflare banned the servers with 403. Yes, our users could send spam or malware sometimes, we are working hard (actually lie, pretty relaxed) on it. What was the “brilliant” idea to block server with problems from Clamav update? To make the stuff worse? How to de-block the servers?
Cloudflare does not generate any 4xx errors, so this would indicate something has changed at the ClamAV server. Have you contacted ClamAV about this?
If you’re actually receiving a 1020 Access Denied page, this indicates you’ve violated a Firewall Rule set by the site owner. When this happens, you’ll see the error “Access Denied (Error: 1020)” and your request was blocked by the filter based Firewall rule on the site. If you’re the site owner, you can find the requests that was blocked by the Firewall on the Firewall page under the Events menu. See this #CommunityTip for suggestions to avoid this error,
$ curl -I http://database.clamav.net/main.cvd
HTTP/1.1 403 Forbidden
Date: Sun, 19 Sep 2021 03:46:13 GMT
Content-Type: text/plain; charset=UTF-8
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
obviously wget and freshclam fails! Brilliant!
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.