On 06.08.14 02:29, Daniel Friske wrote:
I’ve been asked to have install clamav on all of our linux boxes and have
their scan results syslogged to a central server. We already have a
syslog server set up for our network devices, I’m just having trouble
getting this to work on the linux boxes.
I’m on a centos box that has rsyslogd already on it but can’t for the life
of me figure out how to get it to work.
I added the following line in the rsyslog.conf file and I started to get logs
from cron jobs among other things but none from clamav
*.* @server:514
I ran a clam scan to test
clamscan /tmp --log=/var/log/clamav/clamscan.log
Still nothing coming up on the syslog server
clamscan does not use syslog. It's an interactive program that sends output
to the log file or the stdout.
Clamscan also loads the virus library on each start, which consumet much
time.
You apparently want to use clamdscan (note the 'd' in the middle) which asks
the clamav daemon to do the scanning. Clamav daemon does use syslog, if you
configure it to.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I wonder how much deeper the ocean would be without sponges.
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/support/ml
