# yum install zlib zlib-devel //安装可忽略
如果涌现如下提示缺点:
Multilib version problems found. This often means that the root cause is something else and multilib version checking is just pointing out that there is a problem. Eg.:
办理方法如下:
yum install --setopt=protected_multilib=false zlib1.2:解压安装包
tar xf clamav-0.100.0.tar.gz1.3:安装依赖
yum install gcc openssl openssl-devel -y1.4:编译安装
cd clamav-0.100.0/./configure --prefix=/usr/local/clamav make make install
安装的过程中可能会涌现以下信息:checking for make-g++... nochecking for make-c++... nochecking for make-gpp... nochecking for make-cl.exe... nochecking for make-FCC... nochecking for make-KCC... nochecking for make-RCC... nochecking for make-xlC_r... nochecking for make-xlC... nochecking whether the C++ compiler works... noconfigure: error: in `/opt/module/clamav':configure: error: C++ compiler cannot create executablesSee `config.log' for more details
涌现上述缘故原由是由于短缺c++环境:实行下面的指令安装gccyum install gcc gcc-c++yum groupinstall "development tools"1.5: 创建clamav用户和存放病毒库目录
#clamav用户和用户组添加用户组和组成员
# groupadd clamav# useradd -g clamav clamav
1、创建日志目录和病毒库目录
# mkdir /usr/local/clamav /logs# mkdir /usr/local/clamav /updata
2、创建日志文件
# touch /usr/local/clamav /logs/clamd.log# touch /usr/local/clamav /logs/freshclam.log
3、文件授权
# chown clamav:clamav /usr/local/clamav /logs/clamd.log# chown clamav:clamav /usr/local/clamav /logs/freshclam.log# chown clamav:clamav /usr/local/clamav /updata1.6:配置clamav
cd /usr/local/clamav /etccp clamd.conf.sample clamd.confcp freshclam.conf.sample freshclam.confvim clamd.conf
#Example //注释掉这一行LogFile /usr/local/clamav /logs/clamd.logPidFile /usr/local/clamav /updata/clamd.pidDatabaseDirectory /usr/local/clamav /updata
vim freshclam.conf#Example //注释掉这一行DatabaseDirectory /usr/local/clamav /updataUpdateLogFile /usr/local/clamav /logs/freshclam.logPidFile /usr/local/clamav/updata/freshclam.pid1.7:启动clamav
chown -R clamav:clamav /usr/local/clamav/systemctl start clamav-freshclam.servicesystemctl enable clamav-freshclam.service systemctl status clamav-freshclam.service 如果启动失落败:运行systemctl daemon-reload之后再启动systemctl start clamav-freshclam.service 停滞clamavsystemctl stop clamav-freshclam.service1.8:更新病毒库
#先停滞freshclamsystemctl stop clamav-freshclam.service #再更新/usr/local/clamav /bin/freshclam (根据网络质量确定更新时长)或者cd /usr/local/clamav /share/clamavwget http://database.clamav.net/main.cvdwget http://database.clamav.net/daily.cvdwget http://database.clamav.net/bytecode.cvd
更新病毒库
#更新完成启动systemctl start clamav-freshclam.servicesystemctl status clamav-freshclam.service
重启杀毒软件
#创建软链接ln -s /usr/local/clamav/bin/clamscan /usr/local/sbin/clamscan
解释:如果在手动更新病毒库的时候碰着缺点,此时就要删除掉旧的镜像地址文件
#rm -f /var/lib/clamav/mirrors.dat,再手动更新一次病毒库。1.9:扫描杀毒
clamdscan:
· 一样平常用yum安装才能利用,须要启动clamd做事,实行速率快;
· 用clamdscan扫描,须要开始做事才能利用。速率快,不用带-r,默认会递归扫描子目录;
clamdscan /usr
clamscan:
· 通用,不依赖做事,命令参数较多,实行速率稍慢;
· 用clamscan扫描,不须要开始做事就能利用;
· -r 递归扫描子目录
· -i 只显示创造的病毒文件
· --no-summary 不显示统计信息
扫描参数:
· -r/--recursive[=yes/no] 所有文件
· --log=FILE/-l FILE 增加扫描报告
· --move [路径] 移动病毒文件至..
· --remove [路径] 删除病毒文件
· --quiet 只输出错误
· --infected/-i 只输出传染文件
· --suppress-ok-results/-o 跳过扫描OK的文件
· --bell 扫描到病毒文件发出警报声音
· --unzip(unrar) 解压压缩文件扫描
查杀当前目录并删除传染的文件
clamscan -r --remove2.0:定时杀毒
/var/spool/cron/ 这个目录下存放的是每个用户包括root的crontab任务,每个任务以创建者的名字命名,比如tom建的crontab任务对应的文件便是/var/spool/cron/tom。一样平常一个用户最多只有一个crontab文件
crontab -e 创建一个任务
#让做事器每天晚上定时更新和杀毒,保存杀毒日志,crontab文件如下:1 3 /usr/local/clamav/bin/freshclam --quiet20 3 /usr/local/clamav/bin/clamscan -r /home --remove -l /var/log/clamscan.log
第六步:操持任务实际生产环境运用一样平常利用操持任务,让做事器每天晚上定时跟新和定时杀毒。保存杀毒日志,我的crontab文件如下
1 3 /usr/local/clamav/bin/freshclam30 3 /usr/local/clamav/bin/clamscan --infected -r / --remove -l /var/log/clamscan.log
杀毒脚本killVirus.sh
#!/bin/bash/usr/local/clamav/bin/freshclam/usr/local/clamav/bin/clamscan --infected -r / --remove -l /var/log/clamscan.log
定时任务:每天23:59实行杀毒脚本killVirus.sh
59 23 /home/killVirus.sh
杀毒日志文件clamscan.log 可以看到杀毒报告
杀毒软件安装完成之后他会自动设置开机自启
上述讲解了杀毒软件的安装与利用,希望对您有所帮助!
