1、yum安裝html
yum install clamav clamav-server clamav-data clamav-update clamav-filesystem clamav-scanner-systemd clamav-devel clamav-lib clamav-server-systemd pcre* gcc zlib zlib-devel libssl-devel libssl opensslgit
|
|
這種方法安裝後,病毒庫默認地址是/var/lib/clamav。github
回到頂部vim
2、編譯安裝安全
2.1:下載軟件包服務器
#官網地址:
http://www.clamav.net/downloads
#Linux中下載地址:
wget http://www.clamav.net/downloads/production/clamav-0.100.0.tar.gz網絡
#參考文檔:性能
https://github.com/vrtadmin/clamav-faq/raw/master/manual/clamdoc.pdfui
2.2:建立clamav用戶和存放病毒庫目錄spa
#clamav用戶和用戶組
groupadd clamav && useradd -g clamav clamav && id clamav
#日誌存放目錄
mkdir -p /usr/local/clamav/logs
touch /usr/local/clamav/logs/clamd.log
touch /usr/local/clamav/logs/freshclam.log
chown clamav.clamav /usr/local/clamav/logs/clamd.log
chown clamav.clamav /usr/local/clamav/logs/freshclam.log
#病毒存放目錄
mkdir -p /usr/local/clamav/updata
chown -R root.clamav /usr/local/clamav/
chown -R clamav.clamav /usr/local/clamav/updata/
2.3:解壓安裝包
tar xf clamav-0.100.0.tar.gz
2.4:安裝依賴
yum install gcc openssl openssl-devel -y
2.5:編譯安裝
cd clamav-0.100.0/
./configure --prefix=/usr/local/clamav --with-pcre
make && make install
echo $?
2.6:配置clamav
cd /usr/local/clamav/etc
cp clamd.conf.sample clamd.conf
cp freshclam.conf.sample freshclam.conf
vim clamd.conf
#Example 註釋掉這一行.
添加下面三行:
LogFile /usr/local/clamav/logs/clamd.log
PidFile /usr/local/clamav/updata/clamd.pid
DatabaseDirectory /usr/local/clamav/updata
vim freshclam.conf
#Example 註釋掉這一行.
添加下面三行
DatabaseDirectory /usr/local/clamav/updata
UpdateLogFile /usr/local/clamav/logs/freshclam.log
PidFile /usr/local/clamav/updata/freshclam.pid
2.7:啓動clamav
按 Ctrl+C 複製代碼
按 Ctrl+C 複製代碼
2.8:更新病毒庫
#先中止freshclam
systemctl stop clamav-freshclam.service
#再更新
/usr/local/clamav/bin/freshclam (根據網絡質量肯定更新時長)
或者
cd /usr/local/clamav/share/clamav
wget http://database.clamav.net/main.cvd
wget http://database.clamav.net/daily.cvd
wget http://database.clamav.net/bytecode.cvd
#更新完成啓動
systemctl start clamav-freshclam.service
systemctl status clamav-freshclam.service
#建立軟連接
ln -s /usr/local/clamav/bin/clamscan /usr/local/sbin/clamscan
說明:若是在手動更新病毒庫的時候遇到錯誤,此時就要刪除掉舊的鏡像地址文件#rm -f /var/lib/clamav/mirrors.dat,再手動更新一次病毒庫。
2.9:掃描殺毒
clamdscan:
clamdscan /usr
clamscan:
掃描參數:
#掃描全部文件而且顯示有問題的文件的掃描結果
clamscan -r --bell -i /
#只顯示找到的病毒信息
clamscan --no-summary -ri /tmp
#掃描home
clamscan --infected --remove --recursive /home
2.10:定時殺毒
#讓服務器天天晚上定時更新和殺毒,保存殺毒日誌,crontab文件以下:
1 3 * * * /usr/local/clamav/bin/freshclam --quiet
20 3 * * * /usr/local/clamav/bin/clamscan -r /home --remove -l /var/log/clamscan.log