Difference between revisions of "Clamav"

From UVOO Tech Wiki
Jump to navigation Jump to search
Line 29: Line 29:
 
```
 
```
  
# In Memory on Supported versions
+
# In Memory on Supported versions Windows
 
- https://docs.clamav.net/manual/Usage/Scanning.html#process-memory-scanning
 
- https://docs.clamav.net/manual/Usage/Scanning.html#process-memory-scanning
 
```
 
```

Revision as of 00:23, 10 November 2021

Install on Ubuntu/Debian

install-clamav.sh 

test_dir=/tmp/test
sudo apt-get install -y clamav clamav-daemon
systemctl stop clamav-freshclam
sudo freshclam
sudo systemctl start clamav-freshclam
sudo systemctl enable clamav-freshclam
ls /var/lib/clamav/
mkdir $test_dir
echo 'X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*' > $test_dir/malware-sig-test-eicar.txt
sudo clamscan --infected --remove --recursive $test_dir | tee -a /var/log/clamscan.log

vim /etc/clamav/freshclam.conf 

# Check for new database 24 times a day
Checks 24

Run every night at 3am

/etc/cron.d/clamscan 

 0 3 * * * root scandir=/; sudo clamscan --infected --remove --recursive $scandir | tee -a /var/log/clamscan.log

In Memory on Supported versions Windows

clamscan --memory

Ref:

Retrieved from "https://tech.uvoo.io/index.php?title=Clamav&oldid=2432"