Hi, I'm running a Fedora 8 system and recompiled my kernel with dazuko support. This all works fine and also clamd is using it. My goal was to prevent anything that clamav can detect to be written to my samba shares. If there are better methods for this, I'd like to hear that of course, although I now chose the above. I'm quite new to the subject, so I wonder about a few things.
I've tested writing a virus test file and I can see in the log that it's gets detected when I access it, so my setup is working correctly I think. Now the questions that I have are related to what I can/should do when something suspicious is detected. The fact that it is detected is nice, but I want infected to files at least to be moved to a place where no other user can access them (so, away from any samba share) and possible receive email about this action. Also, I would like to prevent a virus to be written to my share if possible. Can it be done such way the file is simply refused to be written ? Regrads, Marcel _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
