Kaspersky Mail Security - Mailservice steht

Apps & App Center
#1

Guten Tag!

Bei mir steht seit heute morgen das Mailservice. Vorweg:
UCS 4.0-3 errata360
Zarafa 7.1.14-51822

Eventlogs:
/var/log/mail.info

Nov 9 14:12:46 ucs01 postfix/smtp[14590]: connect to 127.0.0.1[127.0.0.1]:10125: Connection refused Nov 9 14:12:46 ucs01 postfix/smtp[14591]: connect to 127.0.0.1[127.0.0.1]:10125: Connection refused Nov 9 14:12:46 ucs01 postfix/smtp[14593]: connect to 127.0.0.1[127.0.0.1]:10125: Connection refused Nov 9 14:12:46 ucs01 postfix/smtp[14595]: connect to 127.0.0.1[127.0.0.1]:10125: Connection refused Nov 9 14:12:46 ucs01 postfix/smtp[14597]: connect to 127.0.0.1[127.0.0.1]:10125: Connection refused Nov 9 14:12:46 ucs01 postfix/smtp[14590]: 6EBD29200F3: to=<root@ucs01.malik.local>, orig_to=<root>, relay=none, delay=15535, delays=15535/0.01/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]:10125: Connection refused) Nov 9 14:12:46 ucs01 postfix/smtp[14591]: 0F1E49200EC: to=<lager@ft-dichtungstechnik.at>, relay=none, delay=17085, delays=17085/0.03/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]:10125: Connection refused) Nov 9 14:12:46 ucs01 postfix/smtp[14597]: 9A3A19200C8: to=<sabine.rettenmoser@malik.at>, orig_to=<Rettenmoser@malik.at>, relay=none, delay=25712, delays=25712/0.06/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]:10125: Connection refused) Nov 9 14:12:46 ucs01 postfix/smtp[14595]: 9589492010F: to=<ingrid.herzog@malik.at>, orig_to=<herzog@malik.at>, relay=none, delay=8711, delays=8711/0.05/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]:10125: Connection refused) Nov 9 14:12:46 ucs01 postfix/smtp[14593]: 9192B9200AA: to=<sabine.rettenmoser@malik.at>, orig_to=<Rettenmoser@malik.at>, relay=none, delay=25712, delays=25712/0.04/0/0, dsn=4.4.1, status=deferred (connect to 127.0.0.1[127.0.0.1]:10125: Connection refused) Nov 9 14:12:46 ucs01 postfix/qmgr[7001]: warning: connect to transport private/retry: No such file or directory Nov 9 14:12:46 ucs01 postfix/qmgr[7001]: warning: connect to transport private/retry: No such file or directory Nov 9 14:12:46 ucs01 postfix/qmgr[7001]: E2CF5920007: to=<ingrid.herzog@malik.at>, orig_to=<herzog@malik.at>, relay=none, delay=21465, delays=21465/0.15/0/0, dsn=4.3.0, status=deferred (mail transport unavailable) Nov 9 14:12:46 ucs01 postfix/qmgr[7001]: CD1449200A5: to=<rene.pecanka@malik.at>, relay=none, delay=38056, delays=38056/0.19/0/0, dsn=4.3.0, status=deferred (mail transport unavailable) Nov 9 14:12:47 ucs01 postfix/qmgr[7001]: 29DB19200C9: to=<sabine.rettenmoser@malik.at>, orig_to=<Rettenmoser@malik.at>, relay=none, delay=25712, delays=25712/0.22/0/0, dsn=4.3.0, status=deferred (mail transport unavailable) Nov 9 14:12:47 ucs01 postfix/qmgr[7001]: 4DCD592010D: to=<rene.pecanka@malik.at>, relay=none, delay=9165, delays=9165/0.25/0/0, dsn=4.3.0, status=deferred (mail transport unavailable) Nov 9 14:12:47 ucs01 postfix/qmgr[7001]: 3A07B920139: to=<ingrid.herzog@malik.at>, orig_to=<herzog@malik.at>, relay=none, delay=989, delays=989/0.29/0/0, dsn=4.3.0, status=deferred (mail transport unavailable) Nov 9 14:12:49 ucs01 KLMS: /opt/kaspersky/klms/libexec/asp_quarantine crashed 100 times during last 5 minutes Nov 9 14:15:44 ucs01 postfix/smtpd[15111]: connect from ucs01.malik.local[172.18.2.6] Nov 9 14:15:44 ucs01 postfix/smtpd[15111]: disconnect from ucs01.malik.local[172.18.2.6]

Dies lässt darauf schließen, dass es hier zu Problemen mit Kaspersky kommt:

/var/log/kaspersky/klms/ASPQuarantine_2015-11-…

09/11/2015 14:09:20.378 0xf67ef6c0 ERR Error while extract plugin info from base 09/11/2015 14:09:20.378 0xf67ef6c0 ERR kas_engine::loader::IKasLoader::DestroyKasEngineQuarantine failed: Storage reading error (a0000007) 09/11/2015 14:09:20.379 0xf67ef6c0 ERR Exception during object construction: /tmp/automate-temp.1423647861.18287/asp_server/source/quarantine.cpp:71: Failed to create KasQuarantine 09/11/2015 14:09:20.379 0xf67ef6c0 ERR void lms::lms_utils::ServerApp<ServiceScopeT, initWatchdog, initTracerOnTheFlySubscription, RootSlHolder>::Init() [with ServiceScopeT = AppServiceScope, lms::lms_utils::InitWatchdog::Type initWatchdog = On, lms::lms_utils::InitTracerOnTheFlySubscription::Type initTracerOnTheFlySubscription = On, RootSlHolder = lms::lms_utils::EsmRootServiceLocatorHolder]:code: 80000072, module name: "EKA", description: "Unknown result code", comment: "/tmp/automate-temp.1423647861.18287/asp_server/include/lms_utils/service_scope.h:27: Create service core error in lms::lms_utils::ServiceScope<ServiceCoreT>::ServiceScope(eka::IServiceLocator*) [with ServiceCoreT = lms::asp_quarantine::QuarantineServiceCore] ERROR: " AVP TRACE FILE Version: 14.0.0.0 Time: 09.11.2015 14:09 PID: 14226(0x3792)

/var/log/kaspersky/klms/TaskManager_2015-11-…

[code]AVP TRACE FILE Version: 14.0.0.0 Time: 01.11.2015 16:00 PID: 11180(0x2bac)

AVP TRACE FILE Version: 14.0.0.0 Time: 01.11.2015 16:01 PID: 11438(0x2cae)

AVP TRACE FILE Version: 14.0.0.0 Time: 06.11.2015 11:32 PID: 5199(0x144f)

06/11/2015 11:32:59.060 0xf2627b70 ERR Error while refreshing license status: Can’t create remote rpc, socket /var/run/klms/Licenser144f6ab48da8 /tmp/automate-temp.1423647862.19222/task_manager/lms_utils/source/transport_client.cpp : 25
06/11/2015 11:32:59.060 0xf2627b70 ERR RefreshLicenseData failed in onLicenseInstalledEventReceived: License error: Can’t create remote rpc, socket /var/run/klms/Licenser144f6ab48da8 /tmp/automate-temp.1423647862.19222/task_manager/lms_utils/source/transport_client.cpp : 25
AVP TRACE FILE Version: 14.0.0.0 Time: 08.11.2015 21:54 PID: 5079(0x13d7)

08/11/2015 21:54:53.102 0xf33feb70 ERR Task 14 restarted 11 times during init, we think it’s a product start failure.
08/11/2015 21:54:56.102 0xf33feb70 ERR Task 14 restarted 12 times during init, we think it’s a product start failure.
08/11/2015 21:54:59.118 0xf33feb70 ERR Task 14 restarted 13 times during init, we think it’s a product start failure.
08/11/2015 21:55:02.112 0xf33feb70 ERR Task 14 restarted 14 times during init, we think it’s a product start failure.
08/11/2015 21:55:05.105 0xf33feb70 ERR Task 14 restarted 15 times during init, we think it’s a product start failure.
08/11/2015 21:55:08.106 0xf33feb70 ERR Task 14 restarted 16 times during init, we think it’s a product start failure.

09/11/2015 12:35:21.627 0xf33feb70 ERR Task 14 restarted 17613 times during init, we think it’s a product start failure.
09/11/2015 12:35:23.573 0xf33feb70 ERR GetAllTasksInfo failed with error 0xf574000e, trying to reinit SettingsManager client.
09/11/2015 12:35:23.573 0xf33feb70 ERR Error connecting to database! Check if KLMS database is up and running.
09/11/2015 12:35:23.577 0xf33feb70 ERR Task 14 restarted 17614 times during init, we think it’s a product start failure.
09/11/2015 12:35:23.578 0xf33feb70 ERR GetAllTasksInfo failed with error 0xf574000e, trying to reinit SettingsManager client.
09/11/2015 12:35:23.578 0xf33feb70 ERR Error connecting to database! Check if KLMS database is up and running.
AVP TRACE FILE Version: 14.0.0.0 Time: 09.11.2015 12:37 PID: 5076(0x13d4)


09/11/2015 12:35:21.627 0xf33feb70 ERR Task 14 restarted 17613 times during init, we think it’s a product start failure.
09/11/2015 12:35:23.573 0xf33feb70 ERR GetAllTasksInfo failed with error 0xf574000e, trying to reinit SettingsManager client.
09/11/2015 12:35:23.573 0xf33feb70 ERR Error connecting to database! Check if KLMS database is up and running.
09/11/2015 12:35:23.577 0xf33feb70 ERR Task 14 restarted 17614 times during init, we think it’s a product start failure.
09/11/2015 12:35:23.578 0xf33feb70 ERR GetAllTasksInfo failed with error 0xf574000e, trying to reinit SettingsManager client.
09/11/2015 12:35:23.578 0xf33feb70 ERR Error connecting to database! Check if KLMS database is up and running.
AVP TRACE FILE Version: 14.0.0.0 Time: 09.11.2015 12:37 PID: 5076(0x13d4)

09/11/2015 12:38:25.719 0xf33feb70 ERR Task 14 restarted 11 times during init, we think it’s a product start failure.
[/code]

Prozesse:

root@ucs01:/var/log/kaspersky/klms# ps fax | grep kas* 15943 pts/3 S+ 0:00 | \_ grep kas* 4953 ? Ss 0:01 /opt/kaspersky/klms/libexec/postgresql/postgres -D /var/opt/kaspersky/klms/postgresql 5106 ? S 0:04 /opt/kaspersky/klms/libexec/klms -c / -d -W /var/run/klms/klms_sock -p /var/run/klms/klms.pid -n 10000 -e /opt/kaspersky/klms/libexec/task_manager /var/run/klms/klms_sock 5107 ? Sl 0:09 \_ /opt/kaspersky/klms/libexec/task_manager /var/run/klms/klms_sock 5117 ? Sl 0:08 \_ /opt/kaspersky/klms/libexec/settings_manager 5135 ? Sl 0:10 \_ /opt/kaspersky/klms/libexec/event_manager 5138 ? Sl 0:04 \_ /opt/kaspersky/klms/libexec/facade 5139 ? Sl 0:01 \_ /opt/kaspersky/klms/libexec/event_logger 5140 ? S 0:00 | \_ /opt/kaspersky/klms/libexec/event_logger 5162 ? Sl 0:01 \_ /opt/kaspersky/klms/libexec/auth 5178 ? Sl 0:05 \_ /opt/kaspersky/klms/libexec/licenser 5179 ? Sl 0:02 \_ /opt/kaspersky/klms/libexec/notifier 5180 ? Sl 0:01 \_ /opt/kaspersky/klms/libexec/backup 5181 ? Sl 0:01 \_ /opt/kaspersky/klms/libexec/statistics

Kann mir hier jemand behilflich sein?

edit: ich habe vorerst alle Funktionen im Webinterface deaktiviert (Content Filter, …) - Mailing funktioniert.

Besten Dank,
Markus

#2

Hallo,

bitte prüfen ob dem System genügend Speicherplatz zum Download der AV- Signaturen zur Verfügung steht. (/var/opt/kaspersky/…), sofern diese nicht mehr geladen werden können oder fehlerhaft sind, können Fehlfunktionen auftreten.

Sonst bitte hier eine direkte Anfrage zur Problematik an: support@bitbone.de schreiben.

Gruß, Jürgen

Mastodon