ClamAV

Primary tabs

Credits

Various bits of code, scripts, and procedures were put together with information from John Simpson's qmail.jms1.net website. It's an excellent resource on managing and setting up a Qmail server.

clamav

Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX, designed especially for e-mail scanning on mail gateways. It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner and advanced tool for automatic database updates.

Prerequisites
In order to verifty the digital signature of the virus database, install gmp-devel

yum -y install gmp-devel

Installation
Create a user and group for ClamAV to run as:

groupadd clamav
useradd -g clamav -s /bin/false -c "Clam AntiVirus" clamav

Download the latest version (0.99 at time of writing):

cd /extra/src
wget http://downloads.sourceforge.net/clamav/clamav-0.99.tar.gz 
tar zxf clamav-0.99.tar.gz
cd clamav-0.99
./configure
make
make install

Create and chown the /usr/local/share/clamav directory:

mkdir /usr/local/share/clamav
chown clamav:clamav /usr/local/share/clamav

Configuration
Copy the sample configuration files:

cp /usr/local/etc/clamd.conf.sample /usr/local/etc/clamd.conf
cp /usr/local/etc/freshclam.conf.sample /usr/local/etc/freshclam.conf

Before starting up clamd, we'll need to edit /usr/local/etc/clamd.conf with a few options:

#Example
#LogFile
LogSyslog no
FixStaleSocket yes
Foreground yes
PidFile /var/run/clamd.pid
LocalSocket /tmp/clamd.socket

We also need to edit /usr/local/etc/freshclam.conf before it will run under daemontools:

#Example
#UpdateLogFile
LogSyslog no 
Foreground yes

daemontools startup
Rather than using init.d scripts, we'll use daemontools to manage running clamd. Create the directories to hold the services:

mkdir -m 1755 /var/service/clamav
mkdir -m 755 /var/service/clamav/log

Then set up the service and log scripts:

cd /var/service/clamav
echo '#!/bin/sh' > run
echo 'exec 2>&1' >> run
echo 'exec clamd' >> run
chmod 755 run
cd log
wget http://qmail.jms1.net/scripts/service-any-log-run 
mv service-any-log-run run
chmod 755 run

Repeat the procedure for freshclam:

mkdir -m 1755 /var/service/freshclam
mkdir -m 755 /var/service/freshclam/log
cd /var/service/freshclam
echo '#!/bin/sh' > run
echo 'exec 2>&1' >> run
echo 'exec freshclam -d --stdout' >> run
chmod 755 run
cd log
wget http://qmail.jms1.net/scripts/service-any-log-run 
mv service-any-log-run run
chmod 755 run

Create the symbolic links in /service to start clamd and freshclam:

ln -s /var/service/clamav /service/
ln -s /var/service/freshclam /service/

After about 10 seconds, confirm they are running:

svstat /service/clamav /service/freshclam

Uninstalling ClamAV
Remove the symbolic link in /service and then stop the clamav daemontools service:

cd /service/clamav
rm /service/clamav
svc -dx . log

Then stop the freshclam daemontools service:

cd /service/freshclam
rm /service/freshclam
svc -dx . log

Go into the source, assuming you still have it, and uninstall it:

cd /extra/src/clamav-0.98.7
./configure
make uninstall

Make sure that you haven’t got old libraries (libclamav.so) lying around your filesystem. You can verify it using:

ldd `which freshclam`

Also make sure there is really only one version of ClamAV installed on your system:

whereis freshclam
whereis clamscan

Recent Updates

nginx

8 months 3 weeks ago

1.27.2 update
lighttpd

9 months 4 days ago

Drupal 10/11 config
Drupal 11

9 months 5 days ago
PHP

9 months 5 days ago

PHP 8.3.11 and AlmaLinux
Pound SSL Proxy

9 months 6 days ago

New version of Pound

Recent Links

SquidGuard

SquidGuard is a URL redirector used to use blacklists with the proxysoftware Squid. There are two big advantages to squidguard: it is fast and it is free.
NCurses Disk Usage

A disk usage analyzer with an ncurses interface, aimed to be run on a remote server where you don't have an entire gaphical setup, but have to do with a simple SSH connection. ncdu aims to be fast, simple and easy to use, and should be able to run in any minimal POSIX-like environment with ncurses installed.
WPKG

WPKG is an automated software deployment, upgrade and removal program for Windows.

It can be used to push/pull software packages, such as Service Packs, hotfixes, or program installations from a central server (for example, Samba or Active Directory) to a number of workstations.

It can run as a service to install software in the background (silent install), without user interaction.

It can install MSI, InstallShield, PackagefortheWeb, Inno Setup, Nullsoft, other software installers or .exe packages, .bat and .cmd scripts and similar: no more repackaging to perform software installation.

WPKG is open source software.
opsi

opsi (Open PC Server Integration) the Open Source client management system
Vagrant

Vagrant is a tool for building complete development environments. With an easy-to-use workflow and focus on automation, Vagrant lowers development environment setup time, increases development/production parity, and makes the "works on my machine" excuse a relic of the past.

Main menu

You are here

ClamAV

Primary tabs

Credits

Recent Updates

Recent Links