Differences

This shows you the differences between two versions of the page.

--- сервис_clamav [2019/01/21 14:11]
val
+++ сервис_clamav [2024/05/04 11:35] (current)
val [API ядра FANOTIFY]
@@ Line 5: / Line 5: @@
   !!! Требуется не меньше 1024Mb RAM !!!
-==== FreeBSD ====
-<code>
-[gate:~] # pkg install clamav
-[gate:~] # rehash
-</code>
 ==== Debian/Ubuntu ====
@@ Line 22: / Line 16: @@
 ===== Настройка =====
-==== FreeBSD ====
-<code>
-[gate:~] # cat /usr/local/etc/clamd.conf
-</code>
 ==== Debian/Ubuntu ====
@@ Line 35: / Line 24: @@
 ===== Запуск =====
-==== FreeBSD ====
+==== Debian/Ubuntu ====
 <code>
-[gate:~] # cat /etc/rc.conf
+root@gate:~# service clamav-freshclam stop
+</code><code>
+root@gate:~# rm /var/lib/clamav/freshclam.dat
+root@gate:~# cat /etc/clamav/freshclam.conf
 </code><code>
 ...
-clamav_freshclam_enable=yes
+HTTPProxyServer gate.isp.un
-clamav_clamd_enable=yes
+HTTPProxyPort 3128
 </code><code>
-[gate:~] # service clamav-freshclam start
+root@gate:~# service clamav-freshclam start
+</code>
-[gate:~] # ls -l /var/db/clamav/
+ИЛИ
-[gate:~] # service clamav-clamd start
+https://packages.microsoft.com/clamav/
+<code>
-[gate:~] # ls -l /var/run/clamav/clamd.sock
+# wget -O /var/lib/clamav/daily.cvd https://packages.microsoft.com/clamav/daily.cvd
+# wget -O /var/lib/clamav/main.cvd https://packages.microsoft.com/clamav/main.cvd
 </code>
-==== Debian/Ubuntu ====
+ИЛИ
 <code>
-root@gate:~# service clamav-freshclam status
+root@gate:~# wget -O /var/lib/clamav/main.cld https://val.bmstu.ru/unix/clamav/main.cld
+root@gate:~# wget -O /var/lib/clamav/daily.cld https://val.bmstu.ru/unix/clamav/daily.cld
+</code><code>
 root@gate:~# ls /var/lib/clamav/
@@ Line 66: / Line 63: @@
 ===== Использование =====
-==== Из командной строки ====
+==== Командная строка ====
 <code>
 $ cd /tmp
-$ wget http://val.bmstu.ru/unix/virus.zip
+$ wget http://gate.isp.un/unix/virus.zip
 $ clamdscan virus.zip
 </code>
-==== С использованием модуля ядра FANOTIFY ====
+==== API ядра FANOTIFY ====
+  * !!! Проверяет только в момент чтения, НЕ записи!
+  * [[https://www.clamav.net/documents/on-access-scanning|On-Access Scanning]]
   * [[https://blog.clamav.net/2016/03/configuring-on-access-scanning-in-clamav.html|Configuring On-Access Scanning in ClamAV]]
+  * AppArmor [[Модуль AppArmor#Определение наличия и правка профилей для служб]] для добавления проверяемых каталогов
 <code>
+$ cat /boot/config-`uname -r` | grep FANOTIFY
 # cat /etc/clamav/clamd.conf
 </code><code>
 ...
-User root
+OnAccessIncludePath /disk2
-ScanOnAccess yes
-OnAccessIncludePath /home
-OnAccessExcludeUID 0
 OnAccessPrevention yes
+OnAccessExcludeUname clamav
+</code><code>
+# clamonacc
 </code>
 ===== Журнал =====
 <code>
 # tail -f /var/log/clamav/clamav.log
-debian# cat /etc/logrotate.d/clamav-daemon
 </code>

Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Differences

Page Tools