Documenting ClamAV on Fedora?

James Kosin jkosin at beta.intcomgrp.com
Mon Apr 12 16:40:16 UTC 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Ron Goulard wrote:

| On Mon, 2004-04-12 at 01:11, Ow Mun Heng wrote:
|
|
|>are there any plans to also document setting up ClamAV with
|>samba-vscan?
|
|
| Yes, I noticed your mail earlier and have already begun looking into
| it.  I previously didn't know of samba-vscan and was considering simply
| scripting a cronjob calling clamscan itself, but I like the idea of
| samba-vscan better.
|
| I'll let you know what I come up with.
|
| Ron
|
|
Ron,

1)  Using samba-vscan with ClamAV......
~    a) Currently, I believe clamd needs to be setup to run as root.
Otherwise, clamd needs access to the share directories for samba.  The
simplest way I've found is to give clamd root user in the config file.
~    b) Samba-Vscan uses /var/run/clamav/clamav.sock to perform the scan
another change in the config files for ClamAV to set it to use the file
socket instead of the localhost socket.
~    c) The documentation says you have to compile Samba-Vscan against
the Samba source.  I didn't have any problems using the binary
distributions at http://crash.fce.vutbr.cz/crash-hat/1/samba-vscan/ ...
~    d) You will also need a test file..  Best gotten here
http://www.eicar.org/anti_virus_test_file.htm ....
~    e) Setup only 1 share at a time with the VFS module at a time and
test each.

I'm hoping someday someone will rewrite the current samba-vscan-clamav
engine to use clamav's newer features and security measures.  Until
then, I don't mind running clamd as root.

James
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD4DBQFAesZwc7lFLjBWKW0RAhgOAJj+ezYrQcV6Utddlwd/H+o1zNE1AKCRfZNq
Ofk8kK37vQPyaICKoSNRuQ==
=bgiA
-----END PGP SIGNATURE-----





More information about the fedora-list mailing list