ClamAV: Difference between revisions
From DWIKI
mNo edit summary |
|||
Line 5: | Line 5: | ||
*[http://www.clamav.net/ Homepage] | *[http://www.clamav.net/ Homepage] | ||
*[[clamav-milter]] | *[[clamav-milter]] | ||
*[http://www.sanesecurity.com/ Phishing and Scam Signatures for ClamAV ] | |||
==A handy script for adding more goodies== | ==A handy script for adding more goodies== | ||
Line 11: | Line 12: | ||
#!/usr/local/bin/bash | #!/usr/local/bin/bash | ||
#extra signatures to catch spam and phishing | #extra signatures to catch spam and phishing | ||
#or look at http://www.sanesecurity.com/ | |||
LOCATION=/var/db/clamav | LOCATION=/var/db/clamav | ||
GUNZIP=/usr/bin/gunzip | GUNZIP=/usr/bin/gunzip |
Revision as of 12:13, 22 September 2009
Clam Antivirus
Virus scanner for mail and files.
A handy script for adding more goodies
#!/usr/local/bin/bash #extra signatures to catch spam and phishing #or look at http://www.sanesecurity.com/ LOCATION=/var/db/clamav GUNZIP=/usr/bin/gunzip WGET=/usr/local/bin/wget #and now the script itself cd $LOCATION || exit -1 $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/phish.ndb.gz && ${GUNZIP} -f phish.ndb.gz $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/scam.ndb.gz && ${GUNZIP} -f scam.ndb.gz $WGET --timestamping http://download.mirror.msrbl.com/MSRBL-SPAM.ndb $WGET --timestamping http://download.mirror.msrbl.com/MSRBL-Images.hdb $WGET -O - http://www.malware.com.br/cgi/submit?action=list_clamav > mbl.db /usr/sbin/chown clamav:clamav * killall -HUP clamd
FAQ
Amavis not finding socket clamd.ctl
Means clamd is busy handling the queue after a powre failure or such, the socket won't be created before it's done.
Milter (clmilter): local socket name /var/run/clamav/clmilter.sock unsafe
Usually means something like clamd not running.