ClamAV: Difference between revisions
From DWIKI
m (→Clam Antivirus) |
|||
| Line 6: | Line 6: | ||
*[[clamav-milter]] | *[[clamav-milter]] | ||
*[http://www.sanesecurity.com/ Phishing and Scam Signatures for ClamAV ] | *[http://www.sanesecurity.com/ Phishing and Scam Signatures for ClamAV ] | ||
*[https://github.com/extremeshok/clamav-unofficial-sigs Unofficial sigs] | |||
==A handy script for adding more goodies== | ==A handy script for adding more goodies== | ||
Revision as of 13:10, 19 November 2015
Clam Antivirus
Virus scanner for mail and files.
A handy script for adding more goodies
#!/usr/local/bin/bash #extra signatures to catch spam and phishing #or look at http://www.sanesecurity.com/ LOCATION=/var/db/clamav GUNZIP=/usr/bin/gunzip WGET=/usr/local/bin/wget #and now the script itself cd $LOCATION || exit -1 $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/phish.ndb.gz && ${GUNZIP} -f phish.ndb.gz $WGET --timestamping http://ftp.tiscali.nl/sanesecurity/scam.ndb.gz && ${GUNZIP} -f scam.ndb.gz $WGET --timestamping http://download.mirror.msrbl.com/MSRBL-SPAM.ndb $WGET --timestamping http://download.mirror.msrbl.com/MSRBL-Images.hdb $WGET -O - http://www.malware.com.br/cgi/submit?action=list_clamav > mbl.db /usr/sbin/chown clamav:clamav * killall -HUP clamd
FAQ
Amavis not finding socket clamd.ctl
Means clamd is busy handling the queue after a powre failure or such, the socket won't be created before it's done.
INetMsg.SpamDomain-xxx
That's from sanesecurity.net
Milter (clmilter): local socket name /var/run/clamav/clmilter.sock unsafe
Usually means something like clamd not running.
