Istvan.

Check out the ScanOnAccess, OnAccessIncludePath, OnAccessExtraScanning, and
related options in your clamd.conf file.

Setting ScanOnAccess to yes and pointing OnAccessIncludePath to your target
directory will have clamd kick off a scan on open and read events for files
within the target directory and all sub directories. Turning on
OnAccessExtraScanning will also let you catch create and move events.

- Mickey



On Tue, Jan 12, 2016 at 11:29 AM, Istvan Szabo <istv...@sfwltd.co.uk> wrote:

> Hi,
>
> I speak about linux, so it's good :)
> So basically I don't need to do anything? Clamd is scanning automatically
> on my centos servers?
> ________________________________________
> From: clamav-users <clamav-users-boun...@lists.clamav.net> on behalf of
> Yuri Voinov <yvoi...@gmail.com>
> Sent: Tuesday, January 12, 2016 4:23 PM
> To: clamav-users@lists.clamav.net
> Subject: Re: [clamav-users] Stream scanning
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
> Sadly. Linux is not single OS in the world for servers.
>
> 12.01.16 22:20, Mickey Sola ?????:
> > More specifically, only Linux is supported for on access scanning.
> >
> > While some legacy functionality may be available on OS X 10.5+ using the
> > ClamAuth kernel extension, all major features currently supported heavily
> > rely on the fanotify api, which is exclusive to the Linux kernel (version
> > 2.6.37 and up).
> >
> > On Tue, Jan 12, 2016 at 10:43 AM, Yuri Voinov <yvoi...@gmail.com> wrote:
> >
> >>
> > // Corrected. You are welcome ;)
> >
> > 12.01.16 21:42, Mickey Sola ?????:
> > >>> Hi Istvan,
> > >>>
> > >>> While clamd does provide on-access scanning capabilities, that
> feature is
> > >>> only available on Linux/*NIX systems. On Windows, you will need to
> > periodically
> > >>> run a scan on the target directory.
> > >>>
> > >>> Cheers,
> > >>> Mickey
> > >>>
> > >>> On Tue, Jan 12, 2016 at 9:52 AM, Istvan Szabo <istv...@sfwltd.co.uk>
> > wrote:
> > >>>
> > >>>> If clamd is running on the system, it would automatically monitor
> the
> > >>>> directory? Or how can I set to continuously monitor that
> directory and
> > do
> > >>>> the steps that needed?
> > >>>>
> > >>>> So based on your suggestion the 2nd step would be the last step and
> > in the
> > >>>> 2nd step would scan clamd the files, but how would it monitor and
> how
> > would
> > >>>> it report? I created a script for a daily scan but it is just a scan
> > not a
> > >>>> real time monitoring.
> > >>>> ________________________________________
> > >>>> From: clamav-users <clamav-users-boun...@lists.clamav.net> on
> behalf of
> > >>>> Matus UHLAR - fantomas <uh...@fantomas.sk>
> > >>>> Sent: Tuesday, January 12, 2016 12:48 PM
> > >>>> To: clamav-users@lists.clamav.net
> > >>>> Subject: Re: [clamav-users] Stream scanning
> > >>>>
> > >>>> On 12.01.16 12:14, Istvan Szabo wrote:
> > >>>>> Is it possible to  handle somehow this request with clamav?
> > >>>>>
> > >>>>>
> > >>>>> 1.
> > >>>>> User uploads file to web site
> > >>>>> 2.
> > >>>>> File is loaded into memory (byte stream)
> > >>>>> 3.
> > >>>>> File byte stream is sent to ClamAV for scanning
> > >>>>> 4.
> > >>>>> ClamAV returns OK or VIRUS
> > >>>>> 5.
> > >>>>> If OK, store file in the database, if VIRUS, return error to user
> > >>>>>
> > >>>>> I'd imagine to scan the file ClamAV will need to write the byte
> stream
> > >>>> into a temporary file which then gets deleted after the scan.
> > >>>>
> > >>>> the file is already stored as file on web server, there's no need
> for
> > >>>> messing with it. clamd can scan it there, it just neede proper
> > permissions
> > >>>> for reading uploaded files.
> > >>>> --
> > >>>> Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
> > >>>> Warning: I wish NOT to receive e-mail advertising to this address.
> > >>>> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
> > >>>> Fighting for peace is like fucking for virginity...
> > >>>> _______________________________________________
> > >>>> Help us build a comprehensive ClamAV guide:
> > >>>> https://github.com/vrtadmin/clamav-faq
> > >>>>
> > >>>> http://www.clamav.net/contact.html#ml
> > >>>>
> > >>>> This communication and any attachments transmitted with it is
> intended
> > >>>> only for the stated addressee(s) and may be confidential. Any
> > unauthorised
> > >>>> disclosure, use or dissemination, either whole or in part is
> > prohibited. If
> > >>>> you have received this email in error, please notify the SFW IT
> Support
> > >>>> team immediately at supp...@sfwltd.co.uk and delete, erase or
> otherwise
> > >>>> destroy this email. Opinions expressed in this email are those of
> the
> > >>>> author and do not necessarily reflect the opinions of SFW Ltd or SFW
> > India
> > >>>> Pvt Ltd.
> > >>>>
> > >>>> SFW Ltd. Registered Office: Southern House, Station Approach,
> Woking,
> > >>>> Surrey, GU22 7UY Registered in England No: 2740301 VAT No. 591
> 7842 02
> > >>>>
> > >>>> _______________________________________________
> > >>>> Help us build a comprehensive ClamAV guide:
> > >>>> https://github.com/vrtadmin/clamav-faq
> > >>>>
> > >>>> http://www.clamav.net/contact.html#ml
> > >>>>
> > >>> _______________________________________________
> > >>> Help us build a comprehensive ClamAV guide:
> > >>> https://github.com/vrtadmin/clamav-faq
> > >>>
> > >>> http://www.clamav.net/contact.html#ml
> >
> >>
> >> _______________________________________________
> >> Help us build a comprehensive ClamAV guide:
> >> https://github.com/vrtadmin/clamav-faq
> >>
> >> http://www.clamav.net/contact.html#ml
> >>
> > _______________________________________________
> > Help us build a comprehensive ClamAV guide:
> > https://github.com/vrtadmin/clamav-faq
> >
> > http://www.clamav.net/contact.html#ml
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iQEcBAEBCAAGBQJWlSiCAAoJENNXIZxhPexGYXkH/ikdEJ/t6DLWG8gVbhBTEidR
> i8iGYjBANAhDFf01VAgA+ult5rMITEmqK0XopvN1773NxCmcRSOaGcgr26OgnYBI
> tbs7eMtv2XJl0BfGv9d/ENwp4qF1Y7+WKNQzcEaUyA7WGGnlPm4pSAB6s00ragh/
> 1d+0X6swWqAaXamSx43M1piiDvesJTuEuawalhcSQBu0C3W1m2AXaSUkYeaWXFsh
> g1cKGe2BWUG+0zacIlXkdhH+FqT7O/NN/zk76at6DmDFYElYRDs97c/8dKXOrtYp
> oKvUqqhiCghqCT9BPtTvDlXxNZ0PLGn1lNEJZgScJqD4vHqzsTNqylLADHx4K80=
> =ZzKw
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
> This communication and any attachments transmitted with it is intended
> only for the stated addressee(s) and may be confidential. Any unauthorised
> disclosure, use or dissemination, either whole or in part is prohibited. If
> you have received this email in error, please notify the SFW IT Support
> team immediately at supp...@sfwltd.co.uk and delete, erase or otherwise
> destroy this email. Opinions expressed in this email are those of the
> author and do not necessarily reflect the opinions of SFW Ltd or SFW India
> Pvt Ltd.
>
> SFW Ltd. Registered Office: Southern House, Station Approach, Woking,
> Surrey, GU22 7UY Registered in England No: 2740301 VAT No. 591 7842 02
>
> _______________________________________________
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Reply via email to