mirror of
https://github.com/Cisco-Talos/clamav.git
synced 2025-10-22 20:03:17 +00:00
06e931e5db
Conflicts: docs/clamdoc.pdf docs/html/WARNINGS docs/html/clamdoc.html docs/html/index.html docs/html/node1.html docs/html/node10.html docs/html/node11.html docs/html/node12.html docs/html/node13.html docs/html/node14.html docs/html/node15.html docs/html/node16.html docs/html/node17.html docs/html/node18.html docs/html/node19.html docs/html/node2.html docs/html/node20.html docs/html/node21.html docs/html/node22.html docs/html/node23.html docs/html/node24.html docs/html/node25.html docs/html/node26.html docs/html/node27.html docs/html/node28.html docs/html/node29.html docs/html/node3.html docs/html/node30.html docs/html/node31.html docs/html/node32.html docs/html/node33.html docs/html/node34.html docs/html/node35.html docs/html/node36.html docs/html/node37.html docs/html/node38.html docs/html/node39.html docs/html/node4.html docs/html/node40.html docs/html/node41.html docs/html/node42.html docs/html/node43.html docs/html/node44.html docs/html/node45.html docs/html/node46.html docs/html/node47.html docs/html/node48.html docs/html/node49.html docs/html/node5.html docs/html/node50.html docs/html/node51.html docs/html/node52.html docs/html/node53.html docs/html/node54.html docs/html/node55.html docs/html/node56.html docs/html/node57.html docs/html/node58.html docs/html/node59.html docs/html/node6.html docs/html/node60.html docs/html/node61.html docs/html/node62.html docs/html/node63.html docs/html/node64.html docs/html/node65.html docs/html/node66.html docs/html/node67.html docs/html/node68.html docs/html/node7.html docs/html/node8.html docs/html/node9.html
96 lines
3.1 KiB
HTML
96 lines
3.1 KiB
HTML
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
|
|
|
|
<!--Converted with LaTeX2HTML 2008 (1.71)
|
|
original version by: Nikos Drakos, CBLU, University of Leeds
|
|
* revised and updated by: Marcus Hennecke, Ross Moore, Herb Swan
|
|
* with significant contributions from:
|
|
Jens Lippmann, Marek Rouchal, Martin Wilck and others -->
|
|
<HTML>
|
|
<HEAD>
|
|
<TITLE>On-access Scanning</TITLE>
|
|
<META NAME="description" CONTENT="On-access Scanning">
|
|
<META NAME="keywords" CONTENT="clamdoc">
|
|
<META NAME="resource-type" CONTENT="document">
|
|
<META NAME="distribution" CONTENT="global">
|
|
|
|
<META NAME="Generator" CONTENT="LaTeX2HTML v2008">
|
|
<META HTTP-EQUIV="Content-Style-Type" CONTENT="text/css">
|
|
|
|
<LINK REL="STYLESHEET" HREF="clamdoc.css">
|
|
|
|
<LINK REL="next" HREF="node32.html">
|
|
<LINK REL="previous" HREF="node30.html">
|
|
<LINK REL="up" HREF="node28.html">
|
|
<LINK REL="next" HREF="node32.html">
|
|
</HEAD>
|
|
|
|
<BODY >
|
|
|
|
<DIV CLASS="navigation"><!--Navigation Panel-->
|
|
<A NAME="tex2html619"
|
|
HREF="node32.html">
|
|
<IMG WIDTH="37" HEIGHT="24" ALIGN="BOTTOM" BORDER="0" ALT="next" SRC="next.png"></A>
|
|
<A NAME="tex2html615"
|
|
HREF="node28.html">
|
|
<IMG WIDTH="26" HEIGHT="24" ALIGN="BOTTOM" BORDER="0" ALT="up" SRC="up.png"></A>
|
|
<A NAME="tex2html609"
|
|
HREF="node30.html">
|
|
<IMG WIDTH="63" HEIGHT="24" ALIGN="BOTTOM" BORDER="0" ALT="previous" SRC="prev.png"></A>
|
|
<A NAME="tex2html617"
|
|
HREF="node1.html">
|
|
<IMG WIDTH="65" HEIGHT="24" ALIGN="BOTTOM" BORDER="0" ALT="contents" SRC="contents.png"></A>
|
|
<BR>
|
|
<B> Next:</B> <A NAME="tex2html620"
|
|
HREF="node32.html">Clamdtop</A>
|
|
<B> Up:</B> <A NAME="tex2html616"
|
|
HREF="node28.html">Usage</A>
|
|
<B> Previous:</B> <A NAME="tex2html610"
|
|
HREF="node30.html">Clamdscan</A>
|
|
<B> <A NAME="tex2html618"
|
|
HREF="node1.html">Contents</A></B>
|
|
<BR>
|
|
<BR></DIV>
|
|
<!--End of Navigation Panel-->
|
|
|
|
<H2><A NAME="SECTION00063000000000000000"></A><A NAME="On-access"></A>
|
|
<BR>
|
|
On-access Scanning
|
|
</H2>
|
|
There is a special thread in <code>clamd</code> that performs on-access
|
|
scanning under Linux and shares internal virus database
|
|
with the daemon. <SPAN CLASS="textbf">You must follow some important rules when
|
|
using it:</SPAN>
|
|
|
|
<UL>
|
|
<LI>Always stop the daemon cleanly - using the SHUTDOWN command or
|
|
the
|
|
<BR>
|
|
SIGTERM signal. In other case you can lose access
|
|
to protected files until the system is restarted.
|
|
</LI>
|
|
<LI>Never protect the directory your mail-scanner software
|
|
uses for attachment unpacking. Access to all infected
|
|
files will be automatically blocked and the scanner (including
|
|
<code>clamd</code>!) will not be able to detect any viruses. In the
|
|
result <SPAN CLASS="textbf">all infected mails may be delivered.</SPAN>
|
|
|
|
</LI>
|
|
</UL>
|
|
For example, to protect the whole system add the following lines to
|
|
<code>clamd.conf</code>:
|
|
<PRE>
|
|
ScanOnAccess yes
|
|
OnAccessIncludePath /
|
|
OnAccessExcludePath /proc
|
|
OnAccessExcludePath /temporary/dir/of/your/mail/scanning/software
|
|
</PRE>
|
|
For more configuration options, type 'man clamd.conf' or reference the
|
|
example clamd.conf.
|
|
|
|
<P>
|
|
<BR><HR>
|
|
<ADDRESS>
|
|
Cisco 2014-05-21
|
|
</ADDRESS>
|
|
</BODY>
|
|
</HTML>
|