Freshclam: Unterschied zwischen den Versionen

Aus Foxwiki
Die Seite wurde neu angelegt: „Kategorie:Sicherheit:Schadsoftware:Scanner
 
K Textersetzung - „Man-Pages“ durch „Man-Page“
 
(39 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt)
Zeile 1: Zeile 1:
[[Kategorie:Sicherheit:Schadsoftware:Scanner]]
'''freshclam''' aktualisiert die [[ClamAV]] - Datenbank
 
= Beschreibung =
''freshclam'' is a virus database update tool for [[ClamAV]]
 
= Installation =
= Syntax =
freshclam [options]
== Parameter ==
== Optionen ==
FreshClam reads its configuration from freshclam.conf. The settings can be overwritten with command line options.
 
{| class="wikitable sortable"
|-
! Short !! Long !! Beschreibung
|-
| -h || --help || Output help information and exit.
|-
| -V || --version || Print version number and exit.
|-
| -v || --verbose || Be verbose. This option causes freshclam to print much additional information.
|-
| || --debug || Enable debug messages from LibClamAV.
|-
| || --quiet || Be quiet - output only error messages.
|-
| || --no-warnings ||Don't print and log warnings.
|-
| || --stdout || Write all messages to stdout.
|-
| || --show-progress || Show download progress percentage.
|-
| || --config-file=FILE || Read configuration from FILE.
|-
| -l FILE || --log=FILE || Log report to FILE.
|-
| -d || --daemon || Run in a daemon mode. Defaults to 12 checks per day unless otherwise specified by --checks or freshclam.conf.
|-
| -p FILE || --pid=FILE || Write daemon's pid to FILE.
|-
| -F || --foreground || Don't fork into background (for use in daemon mode).
|-
| -u USER || --user USER || Run  as  USER. By default (when started by root) freshclam drops privileges and operates as the 'clamav' user.
|-
| || --no-dns || This option forces old non-DNS verification method (without a TTL delay).
|-
| -c #n || --checks=#n || Check #n times per day for a new database. #n must be between 1 and 50.
|-
| || --datadir=DIRECTORY || Install new database in DIRECTORY. The directory must be writable for the 'clamav' user or unprivileged user running freshclam.
|-
| || --daemon-notify=/path/to/clamd.conf || Notify  the daemon about the new database. By default it reads a hardcoded config file but you can use a different one. Both local and TCP sockets  are  supported.
|-
| -a IP || --local-address=IP || Use  (local)  IP for HTTP downloads. Useful for multi-homed systems. If binding fails for whatever reason, a warning is issued and freshclam behaves like without this flag.
|-
| || --on-update-execute=COMMAND || Execute COMMAND after successful update.
|-
| || --on-error-execute=COMMAND || Execute  COMMAND  if error occurred. Remember, that virus database freshness is the most important thing in anti-virus system. With this option  freshclam can alert you (eg. send SMS) when something is going wrong.
|-
| || --on-outdated-execute=COMMAND || Execute  COMMAND when freshclam reports outdated version. In the command string %v will be replaced by the new version number.
|-
| || --update-db=DBNAME || With this option you can limit updates to a subset of database files.  The  DB‐NAME  should  be  "main", "daily", "bytecode", "safebrowsing" or one of the 3rd party database names. This option can be used multiple  times  and  only  works with  the  official and 3rd party databases distributed through the ClamAV mirrors,  your  custom  databases  (specified  with  DatabaseCustomURL  in  freshclam.conf) will not be ignored.
|}
 
== Umgebung ==
;CURL_CA_BUNDLE 
May be set to the path of a file (bundle) containing one or more CA certificates. This will override the default openssl certificate path. Note that the CURL_CA_BUNDLE environment variable is also used by the curl command line tool for the same purpose.
 
 
== Rückgabewert ==
Some return codes of freshclam can be overwritten with a built-in command EXIT_n which can be passed to --on-*-execute, eg. --on-update-execute=EXIT_1 will  force  freshclam to always return 1 after successful database update.
 
{| class="wikitable sortable"
|-
! Status !! Beschreibung
|-
| 0 || Database is up-to-date or successfully updated.
|-
|40 || Unknown option passed.
|-
|50 || Can't change directory.
|-
|51 || Can't check MD5 sum.
|-
|52 || Connection (network) problem.
|-
|53 || Can't unlink file.
|-
|54 || MD5 or digital signature verification error.
|-
|55 || Error reading file.
|-
|56 || Config file error.
|-
|57 || Can't create new file.
|-
|58 || Can't read database from remote server.
|-
|59 || Mirrors are not fully synchronized (try again later).
|-
|60 || Can't get information about 'clamav' user from /etc/passwd.
|-
|61 || Can't drop privileges.
|-
|62 || Can't initialize logger.
|}
 
= Konfiguration =
== Dateien ==
/usr/local/etc/freshclam.conf
 
= Anwendung =
== Download database to default directory ==
# '''freshclam'''
Mon May 16 13:23:54 2022 -> ClamAV update process started at Mon May 16 13:23:54 2022
Mon May 16 13:23:56 2022 -> daily database available for update (local version: 26542, remote version: 26543)
Current database is 1 version behind.
Downloading database patch # 26543...
Time:    0.3s, ETA:    0.0s [========================>]    2.12KiB/2.12KiB
Mon May 16 13:23:56 2022 -> Testing database: '/var/lib/clamav/tmp.2f94ecd969/clamav-0c3b47c0377e3827944de16a4e3d3497.tmp-daily.cld' ...
Mon May 16 13:23:59 2022 -> Database test passed.
Mon May 16 13:23:59 2022 -> daily.cld updated (version: 26543, sigs: 1984431, f-level: 90, builder: raynman)
Mon May 16 13:23:59 2022 -> main.cld database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
Mon May 16 13:23:59 2022 -> bytecode.cld database is up-to-date (version: 333, sigs: 92, f-level: 63, builder: awillia2)
Mon May 16 13:23:59 2022 -> Clamd successfully notified about the update.
 
== Download database to current directory ==
freshclam --datadir=.
 
== Run as a daemon and check 2 times per day for new database ==
freshclam -d -c 2
 
= Sicherheit =
= Dokumentation =
== RFC ==
== Man-Page ==
== Info-Pages ==
== Projekt ==
 
= Links =
== Siehe auch ==
# freshclam.conf(5)
# [[clamd]](8)
# clamd.conf(5)
# [[clamscan]](1)
 
== Weblinks ==
 
 
 
 
[[Kategorie:ClamAV]]

Aktuelle Version vom 6. November 2024, 12:27 Uhr

freshclam aktualisiert die ClamAV - Datenbank

Beschreibung

freshclam is a virus database update tool for ClamAV

Installation

Syntax

freshclam [options]

Parameter

Optionen

FreshClam reads its configuration from freshclam.conf. The settings can be overwritten with command line options.

Short Long Beschreibung
-h --help Output help information and exit.
-V --version Print version number and exit.
-v --verbose Be verbose. This option causes freshclam to print much additional information.
--debug Enable debug messages from LibClamAV.
--quiet Be quiet - output only error messages.
--no-warnings Don't print and log warnings.
--stdout Write all messages to stdout.
--show-progress Show download progress percentage.
--config-file=FILE Read configuration from FILE.
-l FILE --log=FILE Log report to FILE.
-d --daemon Run in a daemon mode. Defaults to 12 checks per day unless otherwise specified by --checks or freshclam.conf.
-p FILE --pid=FILE Write daemon's pid to FILE.
-F --foreground Don't fork into background (for use in daemon mode).
-u USER --user USER Run as USER. By default (when started by root) freshclam drops privileges and operates as the 'clamav' user.
--no-dns This option forces old non-DNS verification method (without a TTL delay).
-c #n --checks=#n Check #n times per day for a new database. #n must be between 1 and 50.
--datadir=DIRECTORY Install new database in DIRECTORY. The directory must be writable for the 'clamav' user or unprivileged user running freshclam.
--daemon-notify=/path/to/clamd.conf Notify the daemon about the new database. By default it reads a hardcoded config file but you can use a different one. Both local and TCP sockets are supported.
-a IP --local-address=IP Use (local) IP for HTTP downloads. Useful for multi-homed systems. If binding fails for whatever reason, a warning is issued and freshclam behaves like without this flag.
--on-update-execute=COMMAND Execute COMMAND after successful update.
--on-error-execute=COMMAND Execute COMMAND if error occurred. Remember, that virus database freshness is the most important thing in anti-virus system. With this option freshclam can alert you (eg. send SMS) when something is going wrong.
--on-outdated-execute=COMMAND Execute COMMAND when freshclam reports outdated version. In the command string %v will be replaced by the new version number.
--update-db=DBNAME With this option you can limit updates to a subset of database files. The DB‐NAME should be "main", "daily", "bytecode", "safebrowsing" or one of the 3rd party database names. This option can be used multiple times and only works with the official and 3rd party databases distributed through the ClamAV mirrors, your custom databases (specified with DatabaseCustomURL in freshclam.conf) will not be ignored.

Umgebung

CURL_CA_BUNDLE

May be set to the path of a file (bundle) containing one or more CA certificates. This will override the default openssl certificate path. Note that the CURL_CA_BUNDLE environment variable is also used by the curl command line tool for the same purpose.


Rückgabewert

Some return codes of freshclam can be overwritten with a built-in command EXIT_n which can be passed to --on-*-execute, eg. --on-update-execute=EXIT_1 will force freshclam to always return 1 after successful database update.

Status Beschreibung
0 Database is up-to-date or successfully updated.
40 Unknown option passed.
50 Can't change directory.
51 Can't check MD5 sum.
52 Connection (network) problem.
53 Can't unlink file.
54 MD5 or digital signature verification error.
55 Error reading file.
56 Config file error.
57 Can't create new file.
58 Can't read database from remote server.
59 Mirrors are not fully synchronized (try again later).
60 Can't get information about 'clamav' user from /etc/passwd.
61 Can't drop privileges.
62 Can't initialize logger.

Konfiguration

Dateien

/usr/local/etc/freshclam.conf

Anwendung

Download database to default directory

# freshclam
Mon May 16 13:23:54 2022 -> ClamAV update process started at Mon May 16 13:23:54 2022
Mon May 16 13:23:56 2022 -> daily database available for update (local version: 26542, remote version: 26543)
Current database is 1 version behind.
Downloading database patch # 26543...
Time:    0.3s, ETA:    0.0s [========================>]    2.12KiB/2.12KiB
Mon May 16 13:23:56 2022 -> Testing database: '/var/lib/clamav/tmp.2f94ecd969/clamav-0c3b47c0377e3827944de16a4e3d3497.tmp-daily.cld' ...
Mon May 16 13:23:59 2022 -> Database test passed.
Mon May 16 13:23:59 2022 -> daily.cld updated (version: 26543, sigs: 1984431, f-level: 90, builder: raynman)
Mon May 16 13:23:59 2022 -> main.cld database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
Mon May 16 13:23:59 2022 -> bytecode.cld database is up-to-date (version: 333, sigs: 92, f-level: 63, builder: awillia2)
Mon May 16 13:23:59 2022 -> Clamd successfully notified about the update.

Download database to current directory

freshclam --datadir=.

Run as a daemon and check 2 times per day for new database

freshclam -d -c 2

Sicherheit

Dokumentation

RFC

Man-Page

Info-Pages

Projekt

Links

Siehe auch

  1. freshclam.conf(5)
  2. clamd(8)
  3. clamd.conf(5)
  4. clamscan(1)

Weblinks