This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
сервис_clamav [2017/10/16 13:27] val [FreeBSD/Ubuntu] |
сервис_clamav [2023/05/23 07:48] val [Debian/Ubuntu] |
||
---|---|---|---|
Line 5: | Line 5: | ||
!!! Требуется не меньше 1024Mb RAM !!! | !!! Требуется не меньше 1024Mb RAM !!! | ||
- | ==== FreeBSD ==== | ||
- | <code> | ||
- | [gate:~] # pkg install clamav | ||
- | |||
- | [gate:~] # rehash | ||
- | </code> | ||
==== Debian/Ubuntu ==== | ==== Debian/Ubuntu ==== | ||
Line 22: | Line 16: | ||
===== Настройка ===== | ===== Настройка ===== | ||
- | |||
- | ==== FreeBSD ==== | ||
- | <code> | ||
- | [gate:~] # cat /usr/local/etc/clamd.conf | ||
- | </code> | ||
==== Debian/Ubuntu ==== | ==== Debian/Ubuntu ==== | ||
Line 35: | Line 24: | ||
===== Запуск ===== | ===== Запуск ===== | ||
- | ==== FreeBSD ==== | + | ==== Debian/Ubuntu ==== |
<code> | <code> | ||
- | [gate:~] # cat /etc/rc.conf | + | root@gate:~# service clamav-freshclam stop |
+ | </code><code> | ||
+ | root@gate:~# rm /var/lib/clamav/freshclam.dat | ||
+ | |||
+ | root@gate:~# cat /etc/clamav/freshclam.conf | ||
</code><code> | </code><code> | ||
... | ... | ||
- | clamav_freshclam_enable=yes | + | HTTPProxyServer gate.isp.un |
- | clamav_clamd_enable=yes | + | HTTPProxyPort 3128 |
</code><code> | </code><code> | ||
- | [gate:~] # service clamav-freshclam start | + | root@gate:~# service clamav-freshclam start |
+ | </code> | ||
- | [gate:~] # ls -l /var/db/clamav/ | + | ИЛИ |
- | [gate:~] # service clamav-clamd start | + | https://packages.microsoft.com/clamav/ |
- | [gate:~] # ls -l /var/run/clamav/clamd.sock | + | ИЛИ |
- | </code> | + | |
- | + | ||
- | ==== Debian/Ubuntu ==== | + | |
<code> | <code> | ||
- | root@gate:~# service clamav-freshclam status | + | root@gate:~# wget -O /var/lib/clamav/main.cld https://val.bmstu.ru/unix/clamav/main.cld |
+ | root@gate:~# wget -O /var/lib/clamav/daily.cld https://val.bmstu.ru/unix/clamav/daily.cld | ||
+ | </code><code> | ||
root@gate:~# ls /var/lib/clamav/ | root@gate:~# ls /var/lib/clamav/ | ||
Line 66: | Line 59: | ||
===== Использование ===== | ===== Использование ===== | ||
- | ==== Debian/Ubuntu/FreeBSD ==== | + | ==== Командная строка ==== |
<code> | <code> | ||
- | gate# cd /tmp | + | $ cd /tmp |
- | gate# wget http://val.bmstu.ru/unix/virus.zip | + | $ wget http://gate.isp.un/unix/virus.zip |
- | или | + | |
- | gate# fetch http://val.bmstu.ru/unix/virus.zip | + | |
- | gate# clamdscan virus.zip | + | $ clamdscan virus.zip |
</code> | </code> | ||
+ | ==== API ядра FANOTIFY ==== | ||
+ | |||
+ | * !!! Проверяет только в момент чтения, НЕ записи! | ||
+ | * [[https://www.clamav.net/documents/on-access-scanning|On-Access Scanning]] | ||
+ | * [[https://blog.clamav.net/2016/03/configuring-on-access-scanning-in-clamav.html|Configuring On-Access Scanning in ClamAV]] | ||
+ | * [[Модуль AppArmor]] | ||
+ | |||
+ | <code> | ||
+ | $ cat /boot/config-`uname -r` | grep FANOTIFY | ||
+ | |||
+ | # cat /etc/clamav/clamd.conf | ||
+ | </code><code> | ||
+ | ... | ||
+ | OnAccessIncludePath /disk2 | ||
+ | OnAccessPrevention yes | ||
+ | OnAccessExcludeUname clamav | ||
+ | </code><code> | ||
+ | # clamonacc | ||
+ | </code> | ||
===== Журнал ===== | ===== Журнал ===== | ||
<code> | <code> | ||
# tail -f /var/log/clamav/clamav.log | # tail -f /var/log/clamav/clamav.log | ||
- | |||
- | # cat /etc/logrotate.d/clamav-daemon | ||
</code> | </code> | ||
- |