clamav源码编译安装

发表回复

yum方式安装,病毒库不方便更新
编译安装方法如下:
# cd /opt
# wget http://www.clamav.net/downloads/production/clamav-0.99.4.tar.gz
# cd `tar xvpf clamav-0.99.4.tar.gz`
# mkdir /usr/local/clamav
# groupadd clamav
# useradd -g clamav -s /bin/false -c “Clam AntiVirus” clamav
要带pcre,要不然后面执行clamscan会报错:
# ./configure –prefix=/usr/local/clamav –with-pcre
# make && make install
# cd /usr/local/clamav
# mkdir -p logs database worktmp
# cd etc
# cp clamd.conf.sample clamd.conf
# grep -v “^#\|^$” /usr/local/clamav/etc/clamd.conf
LogFile /usr/local/clamav/logs/clamd.log
PidFile /usr/local/clamav/worktmp/clamd.pid
DatabaseDirectory /usr/local/clamav/database
# grep ^#Example /usr/local/clamav/etc/clamd.conf
#Example

# cp freshclam.conf.sample freshclam.conf
# grep -v “^#\|^$” /usr/local/clamav/etc/freshclam.conf
DatabaseDirectory /usr/local/clamav/database/
UpdateLogFile /usr/local/clamav/logs/freshclam.log
PidFile /usr/local/clamav/worktmp/freshclam.pid
DatabaseMirror database.clamav.net
# grep ^#Example /usr/local/clamav/etc/freshclam.conf
#Example

# touch /usr/local/clamav/logs/freshclam.log
# touch /usr/local/clamav/logs/clamd.log
# chown -R clamav:clamav /usr/local/clamav/logs
# chown clamav:clamav /usr/local/clamav/worktmp
# chown clamav:clamav /usr/local/clamav/database
更新病毒库:
# /usr/local/clamav/bin/freshclam
下载速度有点慢,也可以wget到本地来
# wget http://database.clamav.net/main.cvd
# wget http://database.clamav.net/daily.cvd
# wget http://database.clamav.net/bytecode.cvd
# chown clamav:clamav /usr/local/clamav/database/*
扫描目录(-r):
# /usr/local/clamav/bin/clamscan -r /data/xxxxx

chkrootkit安装部署:
# wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz
# cd `tar -zxvf chkrootkit.tar.gz`
# ./chkrootkit | grep INFECTED

Print Friendly

发表评论

电子邮件地址不会被公开。 必填项已用*标注