Hi ,
My goal is to terminate scan of big number of files like '/' on CPU busy
hours.
Then to continue approximately from the interrupted directory on nonbusy
hours.
Seems that I have to put some code in clamscan/manager.c
Thanks,
Zvi
On Tue, Jan 5, 2021 at 6:01 PM G.W. Haywood via clamav-users
Hi there,
On Wed, 6 Jan 2021, Zvi Kave via clamav-users wrote:
My goal is to terminate scan of big number of files like '/' on CPU busy hours.
Do not scan everything under the root directory.
See my other posts in the list archives for reasons.
Seems that I have to put some code in clamsca
Hi,
On 6 Jan 2021 at 9:58, G.W. Haywood via clamav-users wrote:
> > My goal is to terminate scan of big number of files like '/' on CPU busy
> > hours.
> Do not scan everything under the root directory.
Use zfs, make regular snapshots, scan once, then use zfs diff to find the
new/changed(/remo
Would it be better to *pause* the scan if/when the computer gets busy ?
If you "nice" the scan it will only run when the cpu is less busy;
if you have "ionice" you can make it run when the disk is less busy.
On Wed, 6 Jan 2021, Zvi Kave via clamav-users wrote:
Hi ,
My goal is to terminate s
Hi there,
On Wed, 6 Jan 2021, Andrew C Aitchison via clamav-users wrote:
On Wed, 6 Jan 2021, Zvi Kave via clamav-users wrote:
My goal is to terminate scan of big number of files like '/' on CPU
Would it be better to *pause* the scan if/when the computer gets busy ?
There are many ways to t
Hello Joel, all
sorry if i insist on this topic, i'm still learning the tool.
How can i crosscheck a .ldb file like the one published from Red Eye
with the content of the cvd files i download from clamav?
I tried to unpack those with sigtool but the syntax of the cvd is much more
clear
a signatu
Hi Ged,
Can you send link to your posts about root directory scan?
Thanks,
Zvi
On Wed, Jan 6, 2021 at 2:20 PM G.W. Haywood via clamav-users <
clamav-users@lists.clamav.net> wrote:
> Hi there,
>
> On Wed, 6 Jan 2021, Andrew C Aitchison via clamav-users wrote:
> > On Wed, 6 Jan 2021, Zvi Kave vi
The problem with only scanning files that have changed since they were
last scanned is that there usually have been virus signature updates in
the meantime. So you could have an "old" file that contains what was a
zero-day virus at the time it was scanned, and now there is a signature
that would de
Lilia -
Thanks for the response. We're seeing some others getting triggered as well:
Virus Urlhaus.Malware.490516-9766015-0:
10.21.2.5
https://curben.gitlab.io/malware-filter/urlhaus-filter-online.txt: 2 Time(s)
10.21.2.5
https://raw.githubusercontent.com/curbengh/urlhaus-fi
