linux下ClamAV使用

標籤：過程   ddc   amp   rect   eve   五步   依賴   touch   ssl   

 

第一步：Clamav下載
http://www.clamav.net/downloads
#yuminstall wget –y
第二步：建立clamav使用者和組
groupaddclamav   (建立clamav組)
useradd-g clamav clamav(建立clamav使用者並加入clamav組)
<ignore_js_op>
第三步：編譯安裝
tar xfclamav-0.99.2.tar.gz
cdclamav-0.99.2
<ignore_js_op>
安裝依賴包
yuminstall gcc openssl openssl-devel  -y
<ignore_js_op>
./configure--prefix=/usr/local/clamav
make&&make install
第四步：配置
mkdir /usr/local/clamav/logs      (日誌存放目錄)
touch /usr/local/clamav/logs/clamd.log
touch /usr/local/clamav/logs/freshclam.log
mkdir /usr/local/clamav/updata   (clanav 病毒庫目錄)
chown  -R root.clamav /usr/local/clamav/
chown -R clamav.clamav /usr/local/clamav/updata/
chown clamav.clamav /usr/local/clamav/logs/clamd.log
chown clamav.clamav /usr/local/clamav/logs/freshclam.log
cd /usr/local/clamav/etc
cp clamd.conf.sample clamd.conf
cp freshclam.conf.sample freshclam.conf
vim clamd.conf
#Example    注釋掉這一行.
LogFile /usr/local/clamav/logs/clamd.log   
PidFile /usr/local/clamav/updata/clamd.pid    
DatabaseDirectory /usr/local/clamav/updata
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
vim freshclam.conf
#Example    注釋掉這一行. 
DatabaseDirectory /usr/local/clamav/updata
UpdateLogFile /usr/local/clamav/logs/freshclam.log
PidFile /usr/local/clamav/updata/freshclam.pid
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
第五步：升級病毒庫
/usr/local/clamav/bin/freshclam
這個過程很久，大概半個小時。可以開啟screen來進行。
/usr/local/clamav/bin/clamscan--remove (查殺目前的目錄並刪除感染的檔案)
注意:確保網路正常
第六步：計劃任務
實際生產環境應用
一般使用計劃任務，讓伺服器每天晚上定時跟新和定時殺毒。儲存殺毒日誌，我的crontab檔案如下
1  3  * **         /usr/local/clamav/bin/freshclam
30 3  * * *          /usr/local/clamav/bin/clamscan  --infected  -r /  --remove -l /var/log/clamscan.log

linux下ClamAV使用