-recursive: ensures that all subdirectories in the directory will be scanned.-infected: displays only infected files.-verbose: shows the version of the tool.Here are some of the options and what they do: Depending on how large a directory you ask it to scan, it can report results fairly quickly or take hours to run. It will report on the files and directories scanned and the number of infections. ClamAV optionsĬlamAV is extremely easy to use and examines individual files in whatever directory you point it at. This means that you will get frequent updates of the virus signatures without having to install them yourself. The process you see should look like this: $ ps -ef | grep freshclamĬlamupd+ 2536188 1 0 Mar03 ? 00:00:02 /usr/bin/freshclam -d -foreground=true It will then default to running 12 checks a day. You can also use the -d (or - deamon) option with freshclam. When you simply run freshclam to update, it should find the configuration file under it’s own /etc directory and you should now be able to scan the filesystem using ‘clamscan’ without having to type in the absolute path to the new binary loaded active running ClamAV virus database updater Again, for this to take effect, you’ll need to logout and log back in again. This appends the path to the binary directory of our new ClamAV to the system path. Under Debian, this is:įind the following section, or something that looks similar: –Įxport PATH USER LOGNAME MAIL HOSTNAME HISTSIZE HISTCONTROLĮxport PATH=$PATH:/usr/local/clamav-0.98.3/bin Once this is done, you’ll need to add the new ClamAV to the system path. If you want to remove the repo version of ClamAV, you’ll need to uninstall it. Once you login again you should be running the latest version of ClamAV. The new settings for the ‘.bashrc’ file are only picked up on login of that user. Basically, when the alias is typed as a command, it points to the command we specify, regardless of what is in the system $PATH environment variable. Since we’re only going to be running ClamAV with the root user so that we have permissions to scan the entire file system, we’ll add a new alias.Īlias clamscan=’/usr/local/clamav-0.98.3/bin/clamscan’Īlias freshclam=’/usr/local/clamav-0.98.3/bin/freshclam’Īlias clamd=’/usr/local/clamav-0.98.3/sbin/clamd’Īliases are very handy. We want to override this and run our new manually installed version. This is because the system $PATH variable finds the old version first as it’s part of the system path. However, if you try to run ClamAV from anywhere but the ‘/usr/local/clamav-0.98.3/bin’ directory where the program executables are, you’ll still get the warning that ClamAV is out of date. I’ll show you both.Īssuming you want to keep the version of ClamAV you have in case it ever gets updated via the repositories, you’ll need to copy your ‘/etc/nf’ to the new location.Ĭp /etc/nf /usr/local/clamav-0.98.3/etc You can either keep the repository version and use aliasing to run the version you want or you can uninstall the repo version and add append the path to the system $PATH environment variable. If you have the version of ClamAV installed from your distribution’s repositories, you have two choices. This will install the new version of ClamAV to the directory you specified in the configure script. Once this is complete and you have no errors, you can run: – configure –prefix=/usr/local/clamav-0.98.3 Make sure you’re still in the sub-directory where you unpacked the archive and run: – Once you’ve got all the prerequisites installed, you can run the configure script. On the 0.98.x versions of clamav there’s a requisite that you’ve installed openssl. If you do need to do this, you can do it under Debian with: If you run into dependency problems, you’ll probably need to install GCC/Make if it isn’t already. So I’ll need to configure it to install to that directory. I want to install my new version of ClamAV in ‘/usr/local/clamav-0.98.3′. Okay, you should now be in the ClamAV directory. I’m just going to copy the download URL and download it with wget. As of the time of writing, the latest version is 0.98.3. You can download the tar.gz file here for the latest stable release version. Which is what we’re going to do □įirst, you’ll need to grab the source code. The only way to get the latest latest version is to download the stable source code release direct from ClamAV’s website and install it manually. Not ideal, especially when you’re talking about security. The problem is, ClamAV gets updated faster than the new versions can be added to the respositories, so every time you run a freshclam virus database update, ClamAV will inform you that it’s not the latest version. ClamAV antivirus software is in most Linux distribution repositories.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |