Freshclam
freshclam aktualisiert die ClamAV - Datenbank
Beschreibung
freshclam is a virus database update tool for ClamAV
Installation
Syntax
freshclam [options]
Parameter
Optionen
FreshClam reads its configuration from freshclam.conf. The settings can be overwritten with command line options.
| Short | Long | Beschreibung |
|---|---|---|
| -h | --help | Output help information and exit. |
| -V | --version | Print version number and exit. |
| -v | --verbose | Be verbose. This option causes freshclam to print much additional information. |
| --debug | Enable debug messages from LibClamAV. | |
| --quiet | Be quiet - output only error messages. | |
| --no-warnings | Don't print and log warnings. | |
| --stdout | Write all messages to stdout. | |
| --show-progress | Show download progress percentage. | |
| --config-file=FILE | Read configuration from FILE. | |
| -l FILE | --log=FILE | Log report to FILE. |
| -d | --daemon | Run in a daemon mode. Defaults to 12 checks per day unless otherwise specified by --checks or freshclam.conf. |
| -p FILE | --pid=FILE | Write daemon's pid to FILE. |
| -F | --foreground | Don't fork into background (for use in daemon mode). |
| -u USER | --user USER | Run as USER. By default (when started by root) freshclam drops privileges and operates as the 'clamav' user. |
| --no-dns | This option forces old non-DNS verification method (without a TTL delay). | |
| -c #n | --checks=#n | Check #n times per day for a new database. #n must be between 1 and 50. |
| --datadir=DIRECTORY | Install new database in DIRECTORY. The directory must be writable for the 'clamav' user or unprivileged user running freshclam. | |
| --daemon-notify=/path/to/clamd.conf | Notify the daemon about the new database. By default it reads a hardcoded config file but you can use a different one. Both local and TCP sockets are supported. | |
| -a IP | --local-address=IP | Use (local) IP for HTTP downloads. Useful for multi-homed systems. If binding fails for whatever reason, a warning is issued and freshclam behaves like without this flag. |
| --on-update-execute=COMMAND | Execute COMMAND after successful update. | |
| --on-error-execute=COMMAND | Execute COMMAND if error occurred. Remember, that virus database freshness is the most important thing in anti-virus system. With this option freshclam can alert you (eg. send SMS) when something is going wrong. | |
| --on-outdated-execute=COMMAND | Execute COMMAND when freshclam reports outdated version. In the command string %v will be replaced by the new version number. | |
| --update-db=DBNAME | With this option you can limit updates to a subset of database files. The DB‐NAME should be "main", "daily", "bytecode", "safebrowsing" or one of the 3rd party database names. This option can be used multiple times and only works with the official and 3rd party databases distributed through the ClamAV mirrors, your custom databases (specified with DatabaseCustomURL in freshclam.conf) will not be ignored. |
Umgebungsvariablen
- CURL_CA_BUNDLE
May be set to the path of a file (bundle) containing one or more CA certificates. This will override the default openssl certificate path. Note that the CURL_CA_BUNDLE environment variable is also used by the curl command line tool for the same purpose.
Exit-Status
Some return codes of freshclam can be overwritten with a built-in command EXIT_n which can be passed to --on-*-execute, eg. --on-update-execute=EXIT_1 will force freshclam to always return 1 after successful database update.
| Status | Beschreibung |
|---|---|
| 0 | Database is up-to-date or successfully updated. |
| 40 | Unknown option passed. |
| 50 | Can't change directory. |
| 51 | Can't check MD5 sum. |
| 52 | Connection (network) problem. |
| 53 | Can't unlink file. |
| 54 | MD5 or digital signature verification error. |
| 55 | Error reading file. |
| 56 | Config file error. |
| 57 | Can't create new file. |
| 58 | Can't read database from remote server. |
| 59 | Mirrors are not fully synchronized (try again later). |
| 60 | Can't get information about 'clamav' user from /etc/passwd. |
| 61 | Can't drop privileges. |
| 62 | Can't initialize logger. |
Konfiguration
Dateien
/usr/local/etc/freshclam.conf
Anwendung
Download database to default directory
# freshclam Mon May 16 13:23:54 2022 -> ClamAV update process started at Mon May 16 13:23:54 2022 Mon May 16 13:23:56 2022 -> daily database available for update (local version: 26542, remote version: 26543) Current database is 1 version behind. Downloading database patch # 26543... Time: 0.3s, ETA: 0.0s [========================>] 2.12KiB/2.12KiB Mon May 16 13:23:56 2022 -> Testing database: '/var/lib/clamav/tmp.2f94ecd969/clamav-0c3b47c0377e3827944de16a4e3d3497.tmp-daily.cld' ... Mon May 16 13:23:59 2022 -> Database test passed. Mon May 16 13:23:59 2022 -> daily.cld updated (version: 26543, sigs: 1984431, f-level: 90, builder: raynman) Mon May 16 13:23:59 2022 -> main.cld database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr) Mon May 16 13:23:59 2022 -> bytecode.cld database is up-to-date (version: 333, sigs: 92, f-level: 63, builder: awillia2) Mon May 16 13:23:59 2022 -> Clamd successfully notified about the update.
Download database to current directory
freshclam --datadir=.
Run as a daemon and check 2 times per day for new database
freshclam -d -c 2
Sicherheit
Dokumentation
RFC
Man-Pages
Info-Pages
Projekt
Links
Siehe auch
Weblinks
Einzelnachweise
Testfragen
Testfrage 1
Antwort1
Testfrage 2
Antwort2
Testfrage 3
Antwort3
Testfrage 4
Antwort4
Testfrage 5
Antwort5