Manjaro Difference between revisions of "ClamAV"

Difference between revisions of "ClamAV"

From Manjaro
imported>FadeMind
(First release)
 
imported>FadeMind
(add url for customized config files, change layout)
Line 22: Line 22:
= Setup ClamAV =
= Setup ClamAV =


* Prepare configuration files:
Prepare configuration files:


  sudo cp /etc/clamav/clamd.conf.sample /etc/clamav/clamd.conf
  sudo cp /etc/clamav/clamd.conf.sample /etc/clamav/clamd.conf
Line 28: Line 28:
  sudo cp /etc/clamav/freshclam.conf.sample /etc/clamav/freshclam.conf
  sudo cp /etc/clamav/freshclam.conf.sample /etc/clamav/freshclam.conf


sudo sed -i 's/Example/#Example/' /etc/clamav/clamd.conf
Edit configuration files:


  sudo sed -i 's/Example/#Example/' /etc/clamav/freshclam.conf
  sudo gedit /etc/clamav/clamd.conf


* Fix ''clamd.sock'' error:
sudo gedit /etc/clamav/freshclam.conf
 
Replace the contents of the configuration files as follows:
 
* [https://pastebin.com/raw.php?i=PUS1RLFb Customized '''/etc/clamav/clamd.conf''' file for proper working.]<br/>
* [https://pastebin.com/raw.php?i=xuWSWm3P Customized '''/etc/clamav/freshclam.conf''' file for proper working.]
 
Fix ''clamd.sock'' error:


  sudo touch /var/lib/clamav/clamd.sock
  sudo touch /var/lib/clamav/clamd.sock
Line 38: Line 45:
  sudo chown clamav:clamav /var/lib/clamav/clamd.sock
  sudo chown clamav:clamav /var/lib/clamav/clamd.sock


* First update database:
First update database:


  sudo freshclam -v
  sudo freshclam -v


* Setup daemons:
Setup daemons:
   
   
  sudo freshclam -d
  sudo freshclam -d
Line 50: Line 57:
  sudo systemctl start clamd && sudo systemctl start freshclamd
  sudo systemctl start clamd && sudo systemctl start freshclamd


* Check status daemons:
Check status daemons:


  sudo systemctl status clamd && sudo systemctl status freshclamd
  sudo systemctl status clamd && sudo systemctl status freshclamd


* Check database version:
Check database version:


  freshclam -V
  freshclam -V

Revision as of 12:30, 27 January 2014

Clam.png

About

Clam AntiVirus (ClamAV) is a free, cross-platform antivirus software tool-kit able to detect many types of malicious software, including viruses. One of its main uses is on mail servers as a server-side email virus scanner. The application was developed for Unix and has third party versions available for AIX, BSD, HP-UX, Linux, OS X, OpenVMS, OSF (Tru64) and Solaris. As of version 0.97.5, ClamAV builds and runs on Microsoft Windows. Both ClamAV and its updates are made available free of charge. Sourcefire, now acquired by Cisco, a maker of intrusion detection products and the owner of Snort, announced on 17 August 2007 that it had acquired the trademarks and copyrights to ClamAV from five key developers.

ClamAV includes a number of utilities: a command-line scanner, automatic database updater and a scalable multi-threaded daemon, running on an anti-virus engine from a shared library. The application also features a Milter interface for sendmail and on-demand scanning. It has support for Zip, RAR, Tar, Gzip, Bzip2, OLE2, Cabinet, CHM, BinHex, SIS formats, most mail file formats, ELF executables and Portable Executable (PE) files compressed with UPX, FSG, Petite, NsPack, wwpack32, MEW, Upack and obfuscated with SUE, Y0da Cryptor. It also supports many document formats, including Microsoft Office, HTML, Rich Text Format (RTF) and Portable Document Format (PDF). The ClamAV virus database is updated several times each day and as of 30 October 2011 contained 1,063,024 virus signatures with the daily update Virus DB number at 13867.

ClamAV is currently tested daily in comparative tests against other antivirus products on Shadowserver. In 2011, Shadowserver tested over 25 million samples against ClamAV and numerous other antivirus products. Out of the 25 million samples tested, ClamAV scored 76.60% ranking 12 out of 19, a higher rating than some much more established competitors. ClamAV was included in comparative tests against other antivirus products. In the 2008 AV-Test it rated: on-demand: very poor, false positives: poor, on-access: poor, response time: very good, rootkits: very poor. In a Shadowserver six-month test between June and December 2011, ClamAV detected over 75.45% of all viruses tested, putting it in fifth place behind AhnLab, Avira, BitDefender and Avast. AhnLab, the top antivirus, detected 80.28% [1]

Installing ClamAV

ClamAV is available in official repository. You can install it by command:

sudo pacman -S clamav

Setup ClamAV

Prepare configuration files:

sudo cp /etc/clamav/clamd.conf.sample /etc/clamav/clamd.conf
sudo cp /etc/clamav/freshclam.conf.sample /etc/clamav/freshclam.conf

Edit configuration files:

sudo gedit /etc/clamav/clamd.conf
sudo gedit /etc/clamav/freshclam.conf

Replace the contents of the configuration files as follows:

Fix clamd.sock error:

sudo touch /var/lib/clamav/clamd.sock
sudo chown clamav:clamav /var/lib/clamav/clamd.sock

First update database:

sudo freshclam -v

Setup daemons:

sudo freshclam -d
sudo systemctl enable clamd && sudo systemctl enable freshclamd
sudo systemctl start clamd && sudo systemctl start freshclamd

Check status daemons:

sudo systemctl status clamd && sudo systemctl status freshclamd

Check database version:

freshclam -V

ClamTK - graphical interface of ClamAV

ClamTK is available in AUR. You can install it by command:

yaourt -S clamtk

TIP: ClamTK need full gnome icon theme installed. If some icon's are missing, then will don't start.

  • Fix for KFaenza icon theme:

Paste this code and save as file and execute in terminal as root.

#!/bin/sh
sudo ln -s /usr/share/icons/KFaenza/places/16/network-workgroup.png /usr/share/icons/KFaenza/places/16/gtk-network.png
sudo ln -s /usr/share/icons/KFaenza/places/22/network-workgroup.png /usr/share/icons/KFaenza/places/22/gtk-network.png
sudo ln -s /usr/share/icons/KFaenza/places/32/network-workgroup.png /usr/share/icons/KFaenza/places/32/gtk-network.png
sudo ln -s /usr/share/icons/KFaenza/places/48/network-workgroup.png /usr/share/icons/KFaenza/places/48/gtk-network.png
sudo ln -s /usr/share/icons/KFaenza/places/64/network-workgroup.png /usr/share/icons/KFaenza/places/64/gtk-network.png
sudo ln -s /usr/share/icons/KFaenza/places/128/network-workgroup.png /usr/share/icons/KFaenza/places/128/gtk-network.png
sudo ln -s /usr/share/icons/KFaenza/places/256/network-workgroup.png /usr/share/icons/KFaenza/places/256/gtk-network.png
sudo ln -s /usr/share/icons/KFaenza/places/scalable/network-workgroup.png /usr/share/icons/KFaenza/places/scalable/gtk-network.png

Support

Official forum topic: [2]

See Also

ClamAV Homepage

ClamTK Homepage

AUR:clamtk

Cookies help us deliver our services. By using our services, you agree to our use of cookies.