ClamAV: Difference between revisions

From DWIKI
Line 8: Line 8:
==A handy script for adding more goodies==
==A handy script for adding more goodies==


  #!/bin/bash
 
  LOCATION=/var/lib/clamav
  #!/usr/local/bin/bash
#extra signatures to catch spam and phishing
  LOCATION=/var/db/clamav
 
GUNZIP=/usr/bin/gunzip
WGET=/usr/local/bin/wget
 


  cd $LOCATION || exit -1
  cd $LOCATION || exit -1
  wget --timestamping http://ftp.tiscali.nl/sanesecurity/phish.ndb.gz && gunzip -f phish.ndb.gz
  $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/phish.ndb.gz && ${GUNZIP} -f phish.ndb.gz
  wget --timestamping http://ftp.tiscali.nl/sanesecurity/scam.ndb.gz && gunzip -f scam.ndb.gz
  $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/scam.ndb.gz && ${GUNZIP} -f scam.ndb.gz
  wget --timestamping http://download.mirror.msrbl.com/MSRBL-SPAM.ndb
  $WGET --timestamping http://download.mirror.msrbl.com/MSRBL-SPAM.ndb
  wget --timestamping  http://download.mirror.msrbl.com/MSRBL-Images.hdb
  $WGET --timestamping  http://download.mirror.msrbl.com/MSRBL-Images.hdb
  wget http://www.malware.com.br/cgi/submit?action=list_clamav
$WGET -O - http://www.malware.com.br/cgi/submit?action=list_clamav > mbl.db
  chown clamav.clamav *
  /usr/sbin/chown clamav:clamav *
  killall -HUP clamd
  killall -HUP clamd



Revision as of 21:28, 11 December 2008

Clam Antivirus

Virus scanner for mail and files.

A handy script for adding more goodies

#!/usr/local/bin/bash
#extra signatures to catch spam and phishing
LOCATION=/var/db/clamav
GUNZIP=/usr/bin/gunzip
WGET=/usr/local/bin/wget


cd $LOCATION || exit -1
$WGET --timestamping http://ftp.tiscali.nl/sanesecurity/phish.ndb.gz && ${GUNZIP} -f phish.ndb.gz
$WGET --timestamping http://ftp.tiscali.nl/sanesecurity/scam.ndb.gz && ${GUNZIP} -f scam.ndb.gz
$WGET --timestamping http://download.mirror.msrbl.com/MSRBL-SPAM.ndb
$WGET --timestamping  http://download.mirror.msrbl.com/MSRBL-Images.hdb
$WGET -O - http://www.malware.com.br/cgi/submit?action=list_clamav > mbl.db
/usr/sbin/chown clamav:clamav *
killall -HUP clamd

FAQ

Amavis not finding socket clamd.ctl

Means clamd is busy handling the queue after a powre failure or such, the socket won't be created before it's done.


Milter (clmilter): local socket name /var/run/clamav/clmilter.sock unsafe

Usually means something like clamd not running.