This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
антивирусная_защита_web_трафика_squid [2014/07/04 08:00] val [Установка пакета squidclamav] |
антивирусная_защита_web_трафика_squid [2018/03/19 16:44] val [Debian/Ubuntu] |
||
---|---|---|---|
Line 5: | Line 5: | ||
===== Использование HAVP - HTTP Antivirus Proxy ===== | ===== Использование HAVP - HTTP Antivirus Proxy ===== | ||
- | * Ubuntu Server. Настраиваем антивирусный фильтр роутера (ClamAV)[[http://interface31.ru/tech_it/2010/06/ubuntu-server-nastraivaem-antivirusnyj-fil-tr-routera-clamav.html]] | + | * [[http://interface31.ru/tech_it/2010/06/ubuntu-server-nastraivaem-antivirusnyj-fil-tr-routera-clamav.html|Ubuntu Server. Настраиваем антивирусный фильтр роутера (ClamAV)]] |
- | ==== Ubuntu ==== | + | ==== Debian/Ubuntu ==== |
<code> | <code> | ||
- | root@gate:~# apt-get install havp | + | root@gate:~# apt install havp |
- | root@gate:~# cat /etc/squid3/squid.conf | + | root@gate:~# cat /etc/havp/havp.config |
+ | </code><code> | ||
+ | ... | ||
+ | # Only for courses | ||
+ | SERVERNUMBER 2 | ||
+ | ... | ||
+ | BIND_ADDRESS 127.0.0.1 | ||
+ | ... | ||
+ | # ENABLECLAMLIB true | ||
+ | ... | ||
+ | ENABLECLAMD true | ||
+ | ... | ||
+ | CLAMDSOCKET /var/run/clamav/clamd.ctl | ||
+ | ... | ||
+ | </code><code> | ||
+ | root@gate:~# usermod clamav -G havp | ||
+ | |||
+ | root@gate:~# service clamav-daemon restart | ||
+ | |||
+ | root@gate:~# service havp restart | ||
+ | </code> | ||
+ | |||
+ | Может понадобиться перезапустить всю систему | ||
+ | |||
+ | ==== FreeBSD ==== | ||
+ | |||
+ | * [[http://www.bsdportal.ru/viewtopic.php?f=9&t=26787|clamav+havp Can't allocate memory]] | ||
+ | <code> | ||
+ | [gate.corpX.un:~] # pkg install havp | ||
+ | |||
+ | [gate.corpX.un:~] # touch /usr/local/etc/havp/whitelist | ||
+ | [gate.corpX.un:~] # touch /usr/local/etc/havp/blacklist | ||
+ | [gate.corpX.un:~] # mkdir -p /usr/local/etc/havp/templates/en/ | ||
+ | |||
+ | [gate.corpX.un:~] # cat /usr/local/etc/havp/templates/en/virus.html | ||
+ | </code><code> | ||
+ | <h1>Virus!!!</h1> | ||
+ | </code><code> | ||
+ | [gate.corpX.un:~] # pw groupmod havp -m clamav | ||
+ | [gate.corpX.un:~] # service clamav-clamd restart | ||
+ | |||
+ | [gate.corpX.un:~] # cat /usr/local/etc/havp/havp.config | ||
+ | </code><code> | ||
+ | ... | ||
+ | # REMOVETHISLINE deleteme | ||
+ | ... | ||
+ | BIND_ADDRESS 127.0.0.1 | ||
+ | ... | ||
+ | ENABLECLAMD true | ||
+ | ... | ||
+ | CLAMDSOCKET /var/run/clamav/clamd.sock | ||
+ | ... | ||
+ | </code> | ||
+ | |||
+ | * [[Управление сервисами в FreeBSD#Управление последовательностью запуска сервисов]] | ||
+ | |||
+ | <code> | ||
+ | [gate.corpX.un:~] # service havp rcvar | ||
+ | |||
+ | [gate.corpX.un:~] # service havp start | ||
+ | </code> | ||
+ | |||
+ | ==== Squid ==== | ||
+ | <code> | ||
+ | gate# cat squid.conf | ||
</code><code> | </code><code> | ||
... | ... | ||
Line 20: | Line 84: | ||
never_direct allow Scan_HTTP | never_direct allow Scan_HTTP | ||
... | ... | ||
+ | </code><code> | ||
+ | root@gate:~# service squid3 restart | ||
</code> | </code> | ||