Hello all! Sorry, if I used the wrong email.
I hope this message finds you well. I’m new to using ClamAV and am currently in the process of implementing it on our production servers. During our testing phase, I encountered a couple of performance-related issues that I’d like to address with your guidance. 1. *RAM Usage*: There’s a significant memory usage spike for approximately 5 minutes during certain operations, although I’m unsure of the root cause. 2. *High CPU Usage During Scans*: I understand that ClamAV scans are resource-intensive by design (this is the case even for enterprise AV), but I’d like to explore ways to reduce their impact. Specifically, I’m considering reducing scan times by excluding specific folders, though I’m not entirely sure which folders are safe to whitelist with low risk for the system. My main goal is to prepare a config of ClamAV that prioritizes performance with low risks in undetecting threats. Could you please advise on the following? - Are there existing best practices, configurations, or builds designed specifically for optimizing ClamAV’s performance on production servers? - Can you recommend approaches to safely whitelist folders or files without undermining security? - Are there any specific configuration parameters or tools within ClamAV that can help mitigate RAM spikes and reduce CPU usage? Thank you for your time and support!
_______________________________________________ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/Cisco-Talos/clamav-documentation https://docs.clamav.net/#mailing-lists-and-chat
