Installing, using Clamav with SuSE 9.3
Hi, everyone.
I just installed clamav and clamav-db from the SuSE 9.3 DVD. I immediately did
an on-line update and downloaded the security fix.
I now have clamav (v. 0.87.1-0.1) and clamav-db (v. 0.83.4).
I then went to www.clamav.net and noted that the latest stable version is
listed as 0.87.1, so I am assuming (??) that I do have the latest version on
my pooter.
In K-Mail I then clicked
On Sun, 2006-01-08 at 11:15 -0500, Gil Weber wrote:
Hi, everyone.
I just installed clamav and clamav-db from the SuSE 9.3 DVD. I immediately did an on-line update and downloaded the security fix.
I now have clamav (v. 0.87.1-0.1) and clamav-db (v. 0.83.4).
I then went to www.clamav.net and noted that the latest stable version is listed as 0.87.1, so I am assuming (??) that I do have the latest version on my pooter.
In K-Mail I then clicked
and told K-Mail to use Clamav, and to send anything it detected to a folder I created. At this point I would appreciate guidance on the following....
1) Have I taken the necessary steps to install and activate clamav, or have I overlooked anything? Do I need to "turn it on" or is clamav now running?
/etc/init.d/clamd status will show if it is running.
2) How do I update the virus definitions in clamav-db? I did not see anything on the clamav.net website about updating the database, but maybe I overlooked what was right in my face?? :o)
3) What is "freshclam," and do I need to get that? If yes, where do I get it and what do I do with the file once I have it?
Freshclam is the program that does the database updates. I use the following in a shell script in /etc/cron.hourly: pc5:~ # cat /etc/cron.hourly/clamd-update #!/bin/sh cd /usr/bin ./freshclam | /bin/mail -s 'freshclam hourly report' root The cron job checks for updates hourly, there have been 2-3 updates in a row so hourly is a good check, updates the damon process with the updates and mails root the report: ClamAV update process started at Sun Jan 8 11:00:01 2006 main.cvd is up to date (version: 35, sigs: 41649, f-level: 6, builder: tkojm) daily.cvd is up to date (version: 1234, sigs: 455, f-level: 6, builder: diego) -- Ken Schneider UNIX since 1989, linux since 1994, SuSE since 1998
Ken Schneider wrote:
Freshclam is the program that does the database updates.
I use the following in a shell script in /etc/cron.hourly:
pc5:~ # cat /etc/cron.hourly/clamd-update #!/bin/sh cd /usr/bin ./freshclam | /bin/mail -s 'freshclam hourly report' root
The cron job checks for updates hourly, there have been 2-3 updates in a row so hourly is a good check, updates the damon process with the updates and mails root the report:
Another option is to run freshclam as a daemon by itself and have it notify clamd automatically too. To get notified on updates, I use the --on-update-execute option to send an email. (plus a few other things). /Per Jessen, Zürich
On Sun January 8 2006 11:39 am, Ken Schneider wrote:
On Sun, 2006-01-08 at 11:15 -0500, Gil Weber wrote:
(snip)
1) Have I taken the necessary steps to install and activate clamav, or have I overlooked anything? Do I need to "turn it on" or is clamav now running?
/etc/init.d/clamd status will show if it is running.
Ken, thanks for reply. In a shell as root I entered /etc/init.d/clamd status. The result was as follows: Checking for Clam AntiVirus daemon running So far so good! :o)
2) How do I update the virus definitions in clamav-db? I did not see anything on the clamav.net website about updating the database, but maybe I overlooked what was right in my face?? :o)
3) What is "freshclam," and do I need to get that? If yes, where do I get it and what do I do with the file once I have it?
Freshclam is the program that does the database updates.
I use the following in a shell script in /etc/cron.hourly:
pc5:~ # cat /etc/cron.hourly/clamd-update #!/bin/sh cd /usr/bin ./freshclam | /bin/mail -s 'freshclam hourly report' root
Please forgive the naive questions. By this do you mean to open an editor and insert these lines into /etc/cron.hourly? Or do you mean something else?? Can I just cut and paste the 4 lines you gave here, or do I need to enter something different -- customized to my pooter?
The cron job checks for updates hourly, there have been 2-3 updates in a row so hourly is a good check, updates the damon process with the updates and mails root the report:
ClamAV update process started at Sun Jan 8 11:00:01 2006 main.cvd is up to date (version: 35, sigs: 41649, f-level: 6, builder: tkojm) daily.cvd is up to date (version: 1234, sigs: 455, f-level: 6, builder: diego)
Don't understand what is meant by "...mails root the report..." Thanks for clarification on these points. :o) Gil
On Sun, 2006-01-08 at 12:14 -0500, Gil Weber wrote:
On Sun January 8 2006 11:39 am, Ken Schneider wrote:
On Sun, 2006-01-08 at 11:15 -0500, Gil Weber wrote:
(snip)
1) Have I taken the necessary steps to install and activate clamav, or have I overlooked anything? Do I need to "turn it on" or is clamav now running?
/etc/init.d/clamd status will show if it is running.
Ken, thanks for reply.
In a shell as root I entered /etc/init.d/clamd status. The result was as follows:
Checking for Clam AntiVirus daemon running
So far so good! :o)
2) How do I update the virus definitions in clamav-db? I did not see anything on the clamav.net website about updating the database, but maybe I overlooked what was right in my face?? :o)
3) What is "freshclam," and do I need to get that? If yes, where do I get it and what do I do with the file once I have it?
Freshclam is the program that does the database updates.
I use the following in a shell script in /etc/cron.hourly:
pc5:~ # cat /etc/cron.hourly/clamd-update #!/bin/sh cd /usr/bin ./freshclam | /bin/mail -s 'freshclam hourly report' root
Please forgive the naive questions. By this do you mean to open an editor and insert these lines into /etc/cron.hourly? Or do you mean something else??
Look at the command I used, (hint cat), and you can see the filename I used. Call the script anything you want and make sure that it is executable as well or it will not run.
Can I just cut and paste the 4 lines you gave here, or do I need to enter something different -- customized to my pooter?
It is not 4 lines it is 3. The cat command was used to show the contents of the file that I used.
The cron job checks for updates hourly, there have been 2-3 updates in a row so hourly is a good check, updates the damon process with the updates and mails root the report:
ClamAV update process started at Sun Jan 8 11:00:01 2006 main.cvd is up to date (version: 35, sigs: 41649, f-level: 6, builder: tkojm) daily.cvd is up to date (version: 1234, sigs: 455, f-level: 6, builder: diego)
Don't understand what is meant by "...mails root the report..."
Umm... It sends an email to root after the freshclam process has completed which is accomplished by piping the results to /bin/mail with the subject (-s) as shown. -- Ken Schneider UNIX since 1989, linux since 1994, SuSE since 1998
participants (3)
-
Gil Weber
-
Ken Schneider
-
Per Jessen