Hi there,
On Tue, 29 Sep 2020, Paul via clamav-users wrote:
I run "/usr/bin/freshclam --quiet --on-update-execute=EXIT_1 " hourly and
find that the temporary directory is emptied but not removed from
/var/lib/clamav
when freshclam picks up the daily updates. This appears to have been
occ
Hi,
I require some assistance in configuring clamav in solaris11 box.
I have tried going through the manuals, but I admit that they are quite hard
for me to execute.
I am seeking some assistance.
I have been able to install clamav successfully.
Victor Miriti
ICT Security Operation Centre
VOIP 1
Hi there,
On Wed, 30 Sep 2020, Victor Miriti [ICT Security] wrote:
I require some assistance in configuring clamav in solaris11 box.
ClamAV is configurable so that it can be configured to suit a range of
different requirements. We can best help you to configure ClamAV to
suit your particular
Hi,
I would like to scan the files in my solaris 11 box.
I installed clamd
[cid:image001.png@01D6972B.74D17400]
Victor Miriti
ICT Security Operation Centre
VOIP 12066
Tel: 2854600 | 0711013066|
Co-op Trust Plaza, Lower Hill Rd
***Soli Deo Gloria
Whoever speaks, let him speak, as
Hi,
I'm new to Clamav and have one question regarding the scan summary.
When running the command clamdscan I'm unable to get a report as detailed
as the one obtained via clamscan.
Do you know if it's possible to output that missing information?
Maybe I missed some configuration in /etc/clamd.d/s
Hello again,
In what I have written below I have tried to be clear, but if my use
of English is difficult for you to understand please say so and I will
try harder. I am sorry if some of the things I have written seem too
obvious, but I do not know what is obvious to you and what is not.
On Wed
The clamscan man page says:
--disable-cache
Disable caching and cache checks for hash sums of scanned files.
I've looked high and low via google, strace, looking at source code, conducting
tests,
and I see no sign of caching done by clamscan. Is this on the to-do list?
We'd
Thank you. Your communication makes sense.
The challenge I have at the moment is that when I try to run the scan I get a
prompt saying that the following prompt : No supported database files found in
/var/opt/csw/clamav/db.
Also note that my server environment is disconnected from the interne
Hi there,
On Wed, 30 Sep 2020, Carlos André via clamav-users wrote:
I'm new to Clamav and have one question regarding the scan summary.
When running the command clamdscan I'm unable to get a report as detailed
as the one obtained via clamscan.
That's right.
Do you know if it's possible to
Hi there,
On Wed, 30 Sep 2020, Dave Sill via clamav-users wrote:
The clamscan man page says:
--disable-cache
Disable caching and cache checks for hash sums of scanned files.
I've looked high and low via google, strace, looking at source code, conducting
tests,
and I see no
Hi there,
On Wed, 30 Sep 2020, Victor Miriti [ICT Security] wrote:
The challenge I have at the moment is that when I try to run the
scan I get a prompt saying that the following prompt : No supported
database files found in /var/opt/csw/clamav/db.
Also note that my server environment is discon
"G.W. Haywood via clamav-users" wrote:
>
> In the second scan, how did clamscan manage to do what it claims to
> have done in the time that it did it?
OK, you could have just said that the cache is internal to each invocation
of clamscan, but that helps.
> For further enlightenment, on one of y
On Wed, 30 Sep 2020, Dave Sill via clamav-users wrote:
"G.W. Haywood via clamav-users" wrote:
In the second scan, how did clamscan manage to do what it claims to
have done in the time that it did it?
OK, you could have just said that the cache is internal to each invocation
of clamscan, b
Hi there,
On Wed, 30 Sep 2020, Dave Sill via clamav-users wrote:
... you could have just said that the cache is internal to each
invocation of clamscan, but that helps.
There was a bit more to it than that but I'm glad it helped.
The problem with clamdscan is that it runs into permissions s
Andrew C Aitchison via clamav-users wrote:
>
> No. clamD scans data passed to it by clamdscan, usually over a socket or
> pipe.
Ah... I missed INSTREAM in the clamd man page. Locally, though, surely
SCAN/CONTSCAN/etc, are nuch more efficient. And remotely, sending the
entire contents of the syst
"G.W. Haywood via clamav-users" wrote:
>
> There are ways around that, even if you don't want to run clamdscan
> (and clamd) as root - which I'd entirely understand.
Is --fdpass one of them? And --stream? Any others?
> >We've got about 3000 Linux systems that we'd like to periodically scan,
> >
Dave Sill via clamav-users wrote:
>
> > >Skipping multiple copies of the same file won't really help because
> > >the duplication is across systems, and because every file will be
> > >rescanned every time clamscan is run.
> >
> > That's not true of clamdscan.
>
> Hmm...that's promising. I'll g
Does clamav support remove ransomware?
If Yes, how effective compared to some specialized ransomware cleanup
software out there?
___
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us
Hi there,
On Wed, 30 Sep 2020, Dave Sill via clamav-users wrote:
Unfortunately, it looks like the cache is too small to help.
I ran clamdscan twice on my /home (69k files) and got:
# clamdscan --fdpass /home
/home/de5/eicar.tar.gz: Eicar-Signature FOUND
WARNING: /home/de5/.cisco/hostscan/.lib
Hi there,
On Wed, 30 Sep 2020, Dave Sill via clamav-users wrote:
"G.W. Haywood via clamav-users" wrote:
There are ways around that, even if you don't want to run clamdscan
(and clamd) as root - which I'd entirely understand.
Is --fdpass one of them? And --stream? Any others?
No. I'd be
I'm certain that the answer to your first question is yes, as there are almost
15,000 signatures in the current database that specifically address ransomware
and have been since they first appeared. Most address the Windows platform.
Ransomware detection and removal is no different from that use
Hi there,
On Wed, 30 Sep 2020, Mat via clamav-users wrote:
Does clamav support remove ransomware?
No.
It does have options to remove or move files which it considers to be
'infected' but you would need to be sure that you understand the risks
of doing something like that before doing it auto
Hi there,
On Wed, 30 Sep 2020, Al Varnell via clamav-users wrote:
I'm certain that the answer to your first question is yes ...
Careful, the OP said 'remove' not 'detect'!
--
73,
Ged.
___
clamav-users mailing list
clamav-users@lists.clamav.net
h
It is a security requirement that needs to be done.
Thank you for this advice. I worked on your idea and it worked. I got a go
between and voila! The Clamscan worked beautifully. Thank you guys.
Just some more questions:
1. How do I automate these scheduled scans?
2. Is there a way to get al
24 matches
Mail list logo
