Linux ClamTK virusscanner Post: 302978778

Sponsored Content

Special Forums Cybersecurity Linux ClamTK virusscanner Post 302978778 by galien8 on Wednesday 3rd of August 2016 07:32:17 PM

08-03-2016

Registered User

Linux ClamTK virusscanner?

ClamTK virus scanner finds each day the same viruses, I delete them, but each day they are refreshed. Some say that are harmless (to LINUX) and only windows viruses, and that ClamTK is only for windows viruses, so that a LINUX server does not distribute them among windows client computers that he is serving.

Example:

Code:

PUA.Html,Exploit.CVE_2015_1692-1

Is to me a Day Zero LINUX Exploit in Html code, so platform independent, comes in Mozilla subdirectories, can within the FireFox browser mess up the system

Example:

Code:

PUA.Win.Trojan.Xored-1

(comes in Mozilla subdirectories too)

Are these only for LINUX harmless windows viruses? And is it correct that ClamTK is meant for LINUX servers serving windows clients, as it only tracks down windows viruses?

Anyway, when I leave them on the machine, system becomes non responsive, can freeze, to a point that you don't have functionality any more, not even LINUX main menu, only mouse can move.

Sometimes they come on my system while I had only Google, Gmail en Facebook TABS open in FireFox

So they must come through the ports, however I got Gufw Firewall:

Code:

Profile Public (High Risk)
Incoming: Deny
Outgoing: Allow

Last edited by rbatte1; 08-08-2016 at 06:00 AM.. Reason: More info and forgot questions - rbatte1 added CODE tags for output

galien8

View Public Profile for galien8

Find all posts by galien8

LEARN ABOUT DEBIAN

mailgraph

MAILGRAPH(8)						      System Manager's Manual						      MAILGRAPH(8)

NAME

       mailgraph - daemon which produces graphs of SMTP traffic

SYNOPSIS

       mailgraph [ options ]

DESCRIPTION

       mailgraph  is a daemon which produces mail statistics RRDtool for Postfix and Sendmail. This stats are stored for generating daily, weekly,
       monthly and yearly graphs of sent/received/rejected and bounced/viruses/spam mails.

OPTIONS

       -h, --help
	      Display help and exit.

       -v, --verbose
	      Be verbose about what you do.

       -V, --version
	      Output version information and exit.

       -c, --cat
	      Cause the logfile to be only read and not monitored.

       -l, --logfile file
	       Monitor logfile file instead of /var/log/syslog.

       -t, --logtype type
	      Set logfile's type (default: syslog).

       -y, --year
	      Start year of the log file (default: current year).

       --host=HOST
	      Use only entries for HOST (regexp) in syslog.

       -d, --daemon
	      Start in the background

       --daemon-pid=FILE
	      Write PID to FILE instead of /var/run/mailgraph.pid.

       --daemon-rrd=DIR
	      Write RRDs to DIR instead of /var/lib/mailgraph/.

       --daemon-log=FILE
	      Write verbose-log to FILE instead of /var/log/mailgraph.log.

       --ignore-localhost
	      Ignore mail to/from localhost (used for virus scanner).

       --ignore-host=HOST
	      Ignore mail to/from HOST (used for virus scanner).

       --no-mail-rrd
	      Do not update the mail rrd.

       --no-virus-rrd
	      Do not update the virus rrd.

       --no-greylist-rrd
	      Do not update the greylist rrd.

       --rrd-name=NAME
	      Use NAME.rrd, NAME_virus.rrd and NAME_greylist.rrd for the rrd files.

       --rbl-is-spam
	      Count rbl rejects as spam.

       --virbl-is-virus
	      Count virbl rejects as viruses.

SEE ALSO

       rrdtool(1), RRDs(3pm)

AUTHOR

       David Schweikert <dws@ee.ethz.ch>

																      MAILGRAPH(8)