ClamAV: Difference between revisions
From DWIKI
| Line 8: | Line 8: | ||
==A handy script for adding more goodies== | ==A handy script for adding more goodies== | ||
#!/bin/bash | |||
LOCATION=/var/ | #!/usr/local/bin/bash | ||
#extra signatures to catch spam and phishing | |||
LOCATION=/var/db/clamav | |||
GUNZIP=/usr/bin/gunzip | |||
WGET=/usr/local/bin/wget | |||
cd $LOCATION || exit -1 | cd $LOCATION || exit -1 | ||
$WGET --timestamping http://ftp.tiscali.nl/sanesecurity/phish.ndb.gz && ${GUNZIP} -f phish.ndb.gz | |||
$WGET --timestamping http://ftp.tiscali.nl/sanesecurity/scam.ndb.gz && ${GUNZIP} -f scam.ndb.gz | |||
$WGET --timestamping http://download.mirror.msrbl.com/MSRBL-SPAM.ndb | |||
$WGET --timestamping http://download.mirror.msrbl.com/MSRBL-Images.hdb | |||
$WGET -O - http://www.malware.com.br/cgi/submit?action=list_clamav > mbl.db | |||
chown clamav | /usr/sbin/chown clamav:clamav * | ||
killall -HUP clamd | killall -HUP clamd | ||
Revision as of 21:28, 11 December 2008
Clam Antivirus
Virus scanner for mail and files.
A handy script for adding more goodies
#!/usr/local/bin/bash #extra signatures to catch spam and phishing LOCATION=/var/db/clamav
GUNZIP=/usr/bin/gunzip WGET=/usr/local/bin/wget
cd $LOCATION || exit -1 $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/phish.ndb.gz && ${GUNZIP} -f phish.ndb.gz $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/scam.ndb.gz && ${GUNZIP} -f scam.ndb.gz $WGET --timestamping http://download.mirror.msrbl.com/MSRBL-SPAM.ndb $WGET --timestamping http://download.mirror.msrbl.com/MSRBL-Images.hdb $WGET -O - http://www.malware.com.br/cgi/submit?action=list_clamav > mbl.db /usr/sbin/chown clamav:clamav * killall -HUP clamd
FAQ
Amavis not finding socket clamd.ctl
Means clamd is busy handling the queue after a powre failure or such, the socket won't be created before it's done.
Milter (clmilter): local socket name /var/run/clamav/clmilter.sock unsafe
Usually means something like clamd not running.
