ClamAV
From ArchWiki
i18n |
---|
English |
Español |
Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX. It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner and advanced tool for automatic database updates. Because ClamAV's main use is on file/mail servers for Windows desktops it primarily detects Windows viruses and malware.
Contents |
Installation
Install with pacman by:
# pacman -Sy clamav
Configuration
To run as a server edit /etc/clamav/clamd.conf and /etc/clamav/freshclam.conf and comment out the Example flag. In /etc/conf.d/clamav change the start options from "no" to "yes".
# change these to "yes" to start START_FRESHCLAM="yes" START_CLAMD="yes"
- To start clamav at boot edit /etc/rc.conf and add clamav.
Update Database
The daemon needs to be running for the virus update to be updated:
# /etc/rc.d/clamav start
Then update the virus definitions with:
# freshclam
The database files are saved in:
/var/lib/clamav/daily.cvd /var/lib/clamav/main.cvd
Scan for Viruses
clamscan can be used to scan certain files, home directory, or an entire system:
$ clamscan myfile $ clamscan -r -i /home $ clamscan -r -i --exclude-dir=^/sys\|^/proc\|^/dev /
If you'd like clamscan to remove the infected file use the --remove option in the command.
Troubleshooting
If you get the following messages after running freshclam:
WARNING: Clamd was NOT notified: Can't connect to clamd through /var/lib/clamav/clamd.sock connect(): No such file or directory
Add a sock file for clamav:
# touch /var/lib/clamav/clamd.sock # chown clamav:clamav /var/lib/clamav/clamd.sock
If you get the next error when starting the daemon:
LibClamAV Error: cli_loaddb(): No supported database files found in /var/lib/clamav ERROR: Not supported data format
Run freshclam as root:
# freshclam -v