You are not logged in.
- Topics: Active | Unanswered
#1 2020-09-28 15:14:35
- Xwang
- Member
- Registered: 2012-05-14
- Posts: 353
Which directories can be skipped while scanning with clamav?
Hi to all,
I'd like to perform a full system scan with clamav and at the moment I'm using the following command:
sudo clamscan --stdout -l /var/log/clamav/clamscan.log --recursive /so that to have a feedback on stdout of the scanning process with all the OK lines and at the same time have the errors and FOUND messages in the log file.
Reading the wiki (https://wiki.archlinux.org/index.php/Cl … or_viruses), it seems that some folder can (or should?) be excluded.
Are there any other folder that should be excluded?
According to https://wiki.archlinux.org/index.php/Rs … tem_backup /dev, /proc, /sys, /tmp, and /run are populated every time the system is rebooted. Can they be excluded too or some virus file can survive in those folders after a reboot?
Finally is there a way to avoid that every empty file or symbolic link is reported in the log file?
I'm still learning English so please excuse me if my English is not good enough and feel free to correct me via PM if you want.
Offline
#2 2020-09-28 15:36:24
- schard
- Forum Moderator
- From: Hannover
- Registered: 2016-05-06
- Posts: 1,985
- Website
Re: Which directories can be skipped while scanning with clamav?
Since ClamAV primarily detects Windows viruses, you can limit your search to the locations, where you would suspect those.
I.e. folders shared with Windows systems or upload folders that you do not control alone.
Last edited by schard (2020-09-28 15:36:50)
macro_rules! yolo { { $($tokens:tt)* } => { unsafe { $($tokens)* } }; }
Offline