Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Configure clamdscan to scan all files on a system on Ubuntu 12.04

Tags:

ubuntu

ubuntu-12.04

I did the following to install clamscan:

sudo aptitude install clamav 
sudo aptitude install clamav-daemon

and verified:

sudo ps -eal | grep clam
1 S 116 4788 1 2 80 0 - 4004 pause ? 00:00:13 freshclam
1 S 116 5930 1 0 80 0 - 69984 poll_s ? 00:00:00 clamd

however when I try to scan all the files on the the system by running

#sudo clamdscan /

I keep getting the following error message:

lstat() failed: Permission denied. ERROR

However if I run

sudo clamscan /

it works, but this process is much longer and not a good option.

From my understanding clamd uses the user 'clamav' and is listed in the /etc/clamav/clamd.conf file. I've added the user clamav to the following groups : root, adm, sudo but it still doesn't work.

I've also tried disabling Apparmor as I read that could be the issue but no success.

like image 943
Maria Avatar asked Aug 22 '14 00:08

Maria

People also ask

How do I scan a whole system with ClamAV?

Scan Files for Viruses with ClamAV This translates to the following command on the terminal: “clamscan -r --bell -i /home/bill/Downloads”. To scan the whole system (it may take a while) and remove all infected files in the process, you can use the command in the following form: “clamscan -r --remove /”.

Does ClamAV scan automatically?

Use this procedure to configure automatic ClamAV antivirus scanning. Automatic scans are performed on a daily basis at the time you specify.

What is clamscan in Linux?

clamscan is a command line anti-virus scanner.

1 Answers

sudo clamdscan /path/to/some_file.txt will pass the request along to the clamd daemon. That daemun runs under a different user, which may not have access to /path/to/some_file.txt

However, the user invoking the command, may very well have access to that file. In order to pass your permissions along to the daemon, use the --fdpass flag:

--fdpass
    Pass the file descriptor permissions to clamd. This is useful if clamd is running as a different user as it is faster than streaming the file to clamd. Only available if connected to clamd via local(unix) socket.

In your case sudo clamdscan --fdpass / should do the trick.

like image 65
berkes Avatar answered Sep 28 '22 13:09

berkes
Sign in to Comment

Related questions

Cannot access to web server via local IP address on UBUNTU 12.10
Increase max open files for Ubuntu/Upstart (initctl)
Docker opens up a tiny new window that does nothing
How do I run a program as nobody?
Bruteforce GPG passphrase using script [duplicate]
how to remove open-jdk completely in ubuntu?
AttributeError: '_socketobject' object has no attribute 'set_tlsext_host_name'
How to get the service IP in Kubernetes?
How to unmount Google Bucket in Linux created with gcsfuse
starting avd fails, saying it can't find emulator, but it exists
How to set environment variables using Fabric
Python 3 tkinter iconbitmap error in ubuntu
how to create docker overlay network between multi hosts?
How to use getopts option without argument at the end in bash
android studio java finished with non-zero exit value 2
IntelliJ IDEA lost icon after launch
Find out which environment variables used by a command
Building QT libraries on Ubuntu Linux
passenger-install-apache2-module fails on ubuntu 12.04
Scripts launched from udev do not have DISPLAY access anymore?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!