Categories

Debian – Antivirus ClamAV Debian 8 Jessie

Installation Antivirus ClamAV Debian

root@srv-khanh:~# apt-get install clamav 
Reading package lists… Done
Building dependency tree
Reading state information… Done
The following extra packages will be installed:
clamav-base clamav-freshclam libclamav7 libmspack0
Suggested packages:
clamav-docs apparmor libclamunrar7
The following NEW packages will be installed:
clamav clamav-base clamav-freshclam libclamav7 libmspack0
0 upgraded, 5 newly installed, 0 to remove and 27 not upgraded.
Need to get 1,964 kB of archives.
After this operation, 3,905 kB of additional disk space will be used.
Do you want to continue? [Y/n]

Configuration pour ajouter le proxy :

root@debian8:/etc/clamav# cat freshclam.conf
# Automatically created by the clamav-freshclam postinst
# Comments will get lost when you reconfigure the clamav-freshclam packageDatabaseOwner clamav
UpdateLogFile /var/log/clamav/freshclam.log
LogVerbose true
LogSyslog true
LogFacility LOG_LOCAL6
LogFileMaxSize 0
LogRotate true
LogTime true
Foreground false
Debug false
MaxAttempts 5
DatabaseDirectory /var/lib/clamav
DNSDatabaseInfo current.cvd.clamav.net
ConnectTimeout 30
ReceiveTimeout 30
TestDatabases yes
ScriptedUpdates yes
CompressLocalDatabase no
SafeBrowsing false
Bytecode true
NotifyClamd /etc/clamav/clamd.conf
# Check for new database 24 times a day
Checks 24
DatabaseMirror db.fr.clamav.net
#DatabaseMirror database.clamav.net
HTTPProxyServer http://193.56.47.20
HTTPProxyPort 8080
root@debian8:/etc/clamav#

Rédémarrer le démon :

root@debian8:~# /etc/init.d/clamav-freshclam start
[ ok ] Starting clamav-freshclam (via systemctl): clamav-freshclam.service.

Vérifier le fichier LOG :

Wed Mar 29 12:23:24 2017 -> ————————————–
Wed Mar 29 12:23:24 2017 -> Current working dir is /var/lib/clamav
Wed Mar 29 12:23:24 2017 -> freshclam daemon 0.99.2 (OS: linux-gnu, ARCH: x86_64, CPU: x86_64)
Wed Mar 29 12:23:24 2017 -> Max retries == 5
Wed Mar 29 12:23:24 2017 -> ClamAV update process started at Wed Mar 29 12:23:24 2017
Wed Mar 29 12:23:24 2017 -> Using IPv6 aware code
Wed Mar 29 12:23:24 2017 -> Querying current.cvd.clamav.net
Wed Mar 29 12:23:24 2017 -> WARNING: Can’t query current.cvd.clamav.net
Wed Mar 29 12:23:24 2017 -> WARNING: Invalid DNS reply. Falling back to HTTP mode.
Wed Mar 29 12:23:24 2017 -> Connecting via 193.56.47.20
Wed Mar 29 12:23:24 2017 -> Retrieving http://db.fr.clamav.net/main.cvd
Wed Mar 29 12:23:24 2017 -> Trying to download http://db.fr.clamav.net/main.cvd
Wed Mar 29 12:24:12 2017 -> Downloading main.cvd [100%]
Wed Mar 29 12:24:16 2017 -> Loading signatures from main.cvd
Wed Mar 29 12:24:24 2017 -> Properly loaded 4218792 signatures from new main.cvd
Wed Mar 29 12:24:24 2017 -> main.cvd updated (version: 57, sigs: 4218790, f-level: 60, builder: amishhammer)
Wed Mar 29 12:24:24 2017 -> Querying main.57.82.1.0.C1382F14.ping.clamav.net
Wed Mar 29 12:24:24 2017 -> Can’t query main.57.82.1.0.C1382F14.ping.clamav.net
Wed Mar 29 12:24:24 2017 -> Connecting via 193.56.47.20
Wed Mar 29 12:24:24 2017 -> Retrieving http://db.fr.clamav.net/daily.cvd
Wed Mar 29 12:24:24 2017 -> Trying to download http://db.fr.clamav.net/daily.cvd
Wed Mar 29 12:24:28 2017 -> Downloading daily.cvd [100%]
Wed Mar 29 12:24:29 2017 -> Loading signatures from daily.cvd
Wed Mar 29 12:24:32 2017 -> Properly loaded 1360451 signatures from new daily.cvd
Wed Mar 29 12:24:32 2017 -> daily.cvd updated (version: 17386, sigs: 1360451, f-level: 63, builder: neo)
Wed Mar 29 12:24:32 2017 -> Querying daily.17386.82.1.0.C1382F14.ping.clamav.net
Wed Mar 29 12:24:32 2017 -> Can’t query daily.17386.82.1.0.C1382F14.ping.clamav.net
Wed Mar 29 12:24:32 2017 -> Connecting via 193.56.47.20
Wed Mar 29 12:24:32 2017 -> Retrieving http://db.fr.clamav.net/bytecode.cvd
Wed Mar 29 12:24:32 2017 -> Trying to download http://db.fr.clamav.net/bytecode.cvd
Wed Mar 29 12:24:32 2017 -> Downloading bytecode.cvd [100%]
Wed Mar 29 12:24:32 2017 -> Loading signatures from bytecode.cvd
Wed Mar 29 12:24:33 2017 -> Properly loaded 55 signatures from new bytecode.cvd
Wed Mar 29 12:24:33 2017 -> bytecode.cvd updated (version: 291, sigs: 55, f-level: 63, builder: neo)
Wed Mar 29 12:24:33 2017 -> Querying bytecode.291.82.1.0.C1382F14.ping.clamav.net
Wed Mar 29 12:24:33 2017 -> Can’t query bytecode.291.82.1.0.C1382F14.ping.clamav.net
Wed Mar 29 12:24:37 2017 -> [LibClamAV] **************************************************
Wed Mar 29 12:24:37 2017 -> [LibClamAV] *** The virus database is older than 7 days! ***
Wed Mar 29 12:24:37 2017 -> [LibClamAV] *** Please update it as soon as possible. ***
Wed Mar 29 12:24:37 2017 -> [LibClamAV] **************************************************
Wed Mar 29 12:24:38 2017 -> Database updated (5579296 signatures) from db.fr.clamav.net
Wed Mar 29 12:24:38 2017 -> ERROR: NotifyClamd: Can’t find or parse configuration file /etc/clamav/clamd.conf
Wed Mar 29 12:24:38 2017 -> ————————————–

Répertoire des fichiers de signatures :

root@debian8:/etc/clamav# ls -ltr /var/lib/clamav
total 139540
-rw-r–r– 1 clamav clamav 109143933 Mar 29 12:24 main.cvd
-rw-r–r– 1 clamav clamav 33635218 Mar 29 12:24 daily.cvd
-rw-r–r– 1 clamav clamav 103980 Mar 29 12:24 bytecode.cvd
root@debian8:/etc/clamav#

 

 

Leave a Reply

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

  

  

  

This site uses Akismet to reduce spam. Learn how your comment data is processed.