ErXBout/clamav-rest
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Add more configuration options for ClamAV

Browse source 
- Scan alerts
 - On Access Scanning
This commit is contained in:
Yi Sheng Yap 2019-02-14 15:11:14 +08:00
parent d8cc0c8477
commit b0eb5989fa
No known key found for this signature in database
GPG key ID: AB94B71808869CF3
5 changed files with 34 additions and 1 deletions

22
Dockerfile
View file

@ -14,11 +14,31 @@ RUN apk --no-cache add clamav clamav-libunrar \
&& mkdir /run/clamav \
&& chown clamav:clamav /run/clamav
# Configure clamAV to run in foreground with port 3310
RUN sed -i 's/^#Foreground .*$/Foreground true/g' /etc/clamav/clamd.conf \
&& sed -i 's/^#TCPSocket .*$/TCPSocket 3310/g' /etc/clamav/clamd.conf \
&& sed -i 's/^#Foreground .*$/Foreground true/g' /etc/clamav/freshclam.conf
RUN freshclam --quiet
# Configure scan alerts
RUN touch /var/log/clamav-infected.log && chmod 0777 /var/log/clamav-infected.log
COPY ./alert.sh /opt/clamav-utils/
RUN chmod -Rf 0755 /opt/clamav-utils/alert.sh
RUN sed -i 's:^#VirusEvent .*$:VirusEvent /opt/clamav-utils/alert.sh:g' /etc/clamd.d/scan.conf
# Configure ClamAV user, ScanOnAccess requires root
#RUN sed -i 's/^User .*$/User root/g' /etc/clamd.d/scan.conf
# ScanOnAccess configurations
RUN mkdir /scan-target
RUN sed -i 's/^#ScanOnAccess .*$/ScanOnAccess yes/g' /etc/clamav/clamd.conf \
&& sed -i 's:#OnAccessMountPath /home/user:&\r\nOnAccessMountPath /scan-target:g' /etc/clamav/clamd.conf
RUN freshclam -v --no-dns
# --quiet
# Build go package
ADD . /go/src/clamav-rest/

10
alert.sh Normal file
View file

@ -0,0 +1,10 @@
#!/bin/sh
echo "$(date) - $CLAM_VIRUSEVENT_VIRUSNAME > $CLAM_VIRUSEVENT_FILENAME" >> /var/log/clamav-infected.log
if [ -e "$CLAM_VIRUSEVENT_FILENAME" ] && [ ! -d "$CLAM_VIRUSEVENT_FILENAME" ]; then
echo "Virus $CLAM_VIRUSEVENT_FILENAME exist and is not a directory"
# rm $CLAM_VIRUSEVENT_FILENAME
fi
# curl {API}

1
eicar.test Normal file
View file

@ -0,0 +1 @@
X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

1
scan-target/eicar.com.txt Normal file
View file

@ -0,0 +1 @@
X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

1
scan-target/random.txt Normal file
View file

@ -0,0 +1 @@
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.