2015\u5e741\u67084\u65e5\u4fee\u6b63
\nclamscan\u3067\u30b9\u30ad\u30e3\u30f3\u3059\u308b\u3068\u6642\u9593\u304c\u7d50\u69cb\u304b\u304b\u3063\u3066\u305f\u306e\u3067\u3001\u3088\u308a\u9ad8\u901f\u306b\u52d5\u4f5c\u3059\u308bclamdscan\u3067\u30a6\u30a4\u30eb\u30b9\u30b9\u30ad\u30e3\u30f3\u3059\u308b\u3088\u3046\u306b\u5909\u66f4\u3002\u307e\u305f\u3001\u9664\u5916\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u30fc\u3082\u65b0\u305f\u306b\u8a2d\u5b9a\u3002
\n\u203bclamdscan\u306f\u30b9\u30ad\u30e3\u30f3\u3057\u3066\u3001\u5909\u66f4\u306e\u7121\u3044\u30d5\u30a1\u30a4\u30eb\u306f2\u5ea6\u76ee\u4ee5\u964d\u306e\u30b9\u30ad\u30e3\u30f3\u3092\u30b9\u30ad\u30c3\u30d7\u3059\u308b\u306e\u3067\u9ad8\u901f\u3067\u3042\u308b\u3002<\/p>\n
\u25a0Clam AntiVirus\u3092Repoforge\u30ea\u30dd\u30b8\u30c8\u30ea\u304b\u3089\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb \u25a0\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u5909\u66f4<\/p>\n \u203b\u3069\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u9664\u5916\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u30fc\u306b\u6307\u5b9a\u3059\u308b\u304b\u306f\u4ee5\u4e0b\u3092\u53c2\u7167\u3002 \u25a0Clam AntiVirus\u306e\u8d77\u52d5<\/p>\n \u25a0\u300cfreshclam\u300d\u3092\u4f7f\u7528\u3057\u3066VirusDB\u3092\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8<\/p>\n \u203bclamAV\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u304c\u53e4\u3044\u3068\u3044\u3046\u30e1\u30c3\u30bb\u30fc\u30b8\u304c\u51fa\u308b\u304c\u3001\u7279\u306b\u554f\u984c\u306a\u3044\u306e\u3067\u653e\u7f6e\u3002<\/p>\n \u25a0VirusDB\u81ea\u52d5\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u30b9\u30af\u30ea\u30d7\u30c8\u306e\u4f5c\u6210 \u25a0clamscan\u3067\u30a6\u30a4\u30eb\u30b9\u30b9\u30ad\u30e3\u30f3 \u25a0\u3088\u308a\u9ad8\u901f\u306b\u52d5\u4f5c\u3059\u308bclamdscan\u3067\u30a6\u30a4\u30eb\u30b9\u30b9\u30ad\u30e3\u30f3 \u25a0clamdscan\u306e\u5b9a\u671f\u81ea\u52d5\u5b9f\u884c\u8a2d\u5b9a\uff08\u6bce\u65e5\u5b9f\u884c\u3059\u308b\u306e\u3067\/etc\/cron.daily\u306b\u4fdd\u5b58\uff09<\/p>\n \u25a0Clam AntiVirus\u5b9a\u671f\u81ea\u52d5\u5b9f\u884c\u30b9\u30af\u30ea\u30d7\u30c8\u306b\u5b9f\u884c\u6a29\u9650\u4ed8\u52a0<\/p>\n \u25a0\u30a6\u30a3\u30eb\u30b9\u30b9\u30ad\u30e3\u30f3\u78ba\u8a8d<\/p>\n \u25a0\u518d\u8d77\u52d5\u3059\u308b\u3068clamd\u304c\u8d77\u52d5\u3057\u306a\u3044\u3068\u3044\u3046\u30c8\u30e9\u30d6\u30eb\u767a\u751f<\/p>\n \u30bd\u30b1\u30c3\u30c8\u30d5\u30a1\u30a4\u30eb\u304c\u898b\u3064\u304b\u3089\u306a\u3044\u3068\u3044\u3046\u30a8\u30e9\u30fc\u3067 clamd \u304c\u8d77\u52d5\u3057\u306a\u304f\u306a\u308b\u3002\u539f\u56e0\u306fcentos7\u3067\u306f\/ver\/run\u304ctempfs\u306b\u306a\u3063\u305f\u306e\u3067\u518d\u8d77\u52d5\u5f8c\u306b\u306f\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u7b49\u5168\u3066\u6d88\u3048\u3066\u3057\u307e\u3046\u3002\u306a\u306e\u3067\u30bd\u30b1\u30c3\u30c8\u30d5\u30a1\u30a4\u30eb\u304c\u898b\u3064\u304b\u3089\u306a\u3044\u3068\u3044\u3046\u30a8\u30e9\u30fc\u306b\u306a\u308b\u306e\u3067\u306f\u3068\u601d\u3046\u3002<\/p>\n \u25a0\u624b\u52d5\u3067\u30bd\u30b1\u30c3\u30c8\u7528\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u30fc\u3092\u4f5c\u6210\u3057\u3066clamd\u3092\u8d77\u52d5\u3055\u305b\u3066\u307f\u308b<\/p>\n \u25a0 2015\/1\/2\u8ffd\u8a18 \u25a0\u78ba\u8a8d<\/p>\n \u81ea\u52d5\u8d77\u52d5\u3067\u304d\u305f\u3002<\/p>\n \u25a0epel.repo\u3067clam\u3092\u9664\u5916\u30002015\u5e742\u670814\u65e5\u8ffd\u8a18 2015\u5e741\u67084\u65e5\u4fee\u6b63 clamscan\u3067\u30b9\u30ad\u30e3\u30f3\u3059\u308b\u3068\u6642\u9593\u304c\u7d50\u69cb\u304b\u304b\u3063\u3066\u305f\u306e\u3067 … \u7d9a\u304d\u3092\u8aad\u3080
\nyum\u3067\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u5834\u5408\u3001Repoforge\u30ea\u30dd\u30b8\u30c8\u30ea<\/a>\u3092\u8ffd\u52a0\u3057\u3066\u304a\u304f\u5fc5\u8981\u304c\u3042\u308b<\/p>\n[root@server1 ~]# yum -y install clamd\r\n\u8aad\u307f\u8fbc\u3093\u3060\u30d7\u30e9\u30b0\u30a4\u30f3:fastestmirror, langpacks, priorities\r\nLoading mirror speeds from cached hostfile\r\n * base: ftp.nara.wide.ad.jp\r\n * centosplus: ftp.nara.wide.ad.jp\r\n * epel: mirrors.ustc.edu.cn\r\n * extras: ftp.nara.wide.ad.jp\r\n * rpmforge: ftp.neowiz.com\r\n * updates: ftp.nara.wide.ad.jp\r\n77 packages excluded due to repository priority protections\r\n\u4f9d\u5b58\u6027\u306e\u89e3\u6c7a\u3092\u3057\u3066\u3044\u307e\u3059\r\nThere are unfinished transactions remaining. You might consider running yum-complete-transaction, or \"yum-complete-transaction --cleanup-only\" and \"yum history redo last\", first to finish them. If those don't work you'll have to try removing\/installing packages by hand (maybe package-cleanup can help).\r\n--> \u30c8\u30e9\u30f3\u30b6\u30af\u30b7\u30e7\u30f3\u306e\u78ba\u8a8d\u3092\u5b9f\u884c\u3057\u3066\u3044\u307e\u3059\u3002\r\n---> \u30d1\u30c3\u30b1\u30fc\u30b8 clamd.x86_64 0:0.98.4-1.el7.rf \u3092 \u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\r\n--> \u4f9d\u5b58\u6027\u89e3\u6c7a\u3092\u7d42\u4e86\u3057\u307e\u3057\u305f\u3002\r\n\r\n\u4f9d\u5b58\u6027\u3092\u89e3\u6c7a\u3057\u307e\u3057\u305f\r\n\r\n====================================================================================================\r\n Package \u30a2\u30fc\u30ad\u30c6\u30af\u30c1\u30e3\u30fc \u30d0\u30fc\u30b8\u30e7\u30f3 \u30ea\u30dd\u30b8\u30c8\u30ea\u30fc \u5bb9\u91cf\r\n====================================================================================================\r\n\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u4e2d:\r\n clamd x86_64 0.98.4-1.el7.rf rpmforge 158 k\r\n\r\n\u30c8\u30e9\u30f3\u30b6\u30af\u30b7\u30e7\u30f3\u306e\u8981\u7d04\r\n====================================================================================================\r\n\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb 1 \u30d1\u30c3\u30b1\u30fc\u30b8\r\n\r\n\u7dcf\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u5bb9\u91cf: 158 k\r\n\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u5bb9\u91cf: 680 k\r\nDownloading packages:\r\nclamd-0.98.4-1.el7.rf.x86_64.rpm | 158 kB 00:00:00\r\nRunning transaction check\r\nRunning transaction test\r\nTransaction test succeeded\r\nRunning transaction\r\n \u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u4e2d : clamd-0.98.4-1.el7.rf.x86_64 1\/1\r\n \u691c\u8a3c\u4e2d : clamd-0.98.4-1.el7.rf.x86_64 1\/1\r\n\r\n\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb:\r\n clamd.x86_64 0:0.98.4-1.el7.rf\r\n\r\n\u5b8c\u4e86\u3057\u307e\u3057\u305f!<\/pre>\n
[root@server1 ~]# vi \/etc\/clamd.conf\r\n\r\n#\u9664\u5916\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u30fc\u3092\u6307\u5b9a\r\n# Don't scan files and directories matching regex\r\n# This directive can be used multiple times\r\n# Default: scan all\r\n#ExcludePath ^\/proc\/\r\n#ExcludePath ^\/sys\/\r\n#------\u8ffd\u52a0\u3053\u3053\u304b\u3089------\r\nExcludePath ^\/proc\/\r\nExcludePath ^\/sys\/\r\nExcludePath ^\/backup\/\r\nExcludePath ^\/home\/share\/\r\n#--------\u3053\u3053\u307e\u3067--------\r\n\r\n#\u30eb\u30fc\u30c8\u3067\u52d5\u4f5c\u3059\u308b\u3088\u3046\u306b\u5909\u66f4\r\nUser clamav\r\n\u2193\r\n#User clamav\r\n\r\n#\u58ca\u308c\u305f\u30d5\u30a1\u30a4\u30eb\u306f\u8aa4\u691c\u51fa\u304c\u591a\u3044\u305f\u3081\u7121\u52b9\r\nDetectBrokenExecutables yes\r\n\u2193\r\n#DetectBrokenExecutables yes\r\n\r\n#\u5727\u7e2e\u30d5\u30a1\u30a4\u30eb\u306e\u30b9\u30ad\u30e3\u30f3\u306f\u7121\u52b9\r\n# ClamAV can scan within archives and compressed files.\r\n# Default: yes\r\nScanArchive yes\r\n\u3000\u2193\r\nScanArchive no<\/pre>\n
\nCentOS\u306e\u5404\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306b\u683c\u7d0d\u3055\u308c\u3066\u3044\u308b\u30d5\u30a1\u30a4\u30eb\u306b\u3064\u3044\u3066<\/p>\nbin \u3000\u3000CentOS\u306b\u6700\u521d\u304b\u3089\u6709\u308b\u30b3\u30de\u30f3\u30c9\u7fa4\r\nboot \u3000\u3000\u30d6\u30fc\u30c8\u306b\u95a2\u3059\u308b\u30d5\u30a1\u30a4\u30eb\r\ndev \u3000\u3000\u30c7\u30d0\u30a4\u30b9\u306b\u95a2\u3059\u308b\u30d5\u30a1\u30a4\u30eb\r\netc \u3000\u3000\u30b3\u30f3\u30d5\u30a3\u30b0\u30d5\u30a1\u30a4\u30eb\r\nhome \u3000\u3000root\u4ee5\u5916\u306e\u30e6\u30fc\u30b6\u30fc\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\r\nlib \u3000\u3000\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3059\u308b\u305f\u3081\u306e\u30d5\u30a1\u30a4\u30eb\r\nlib64\u3000\u3000\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3059\u308b\u305f\u3081\u306e64\u30d3\u30c3\u30c8\u7528\u30d5\u30a1\u30a4\u30eb\r\nmedia\u3000\u3000CD\u3084DVD\u306e\u30de\u30a6\u30f3\u30c8\u30dd\u30a4\u30f3\u30c8\r\nmnt \u3000\u3000\u30d5\u30a1\u30a4\u30eb\u30b7\u30b9\u30c6\u30e0\u306e\u30de\u30a6\u30f3\u30c8\u30dd\u30a4\u30f3\u30c8\r\nopt \u3000\u3000\u30d1\u30c3\u30b1\u30fc\u30b8\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u5148\r\nproc \u3000\u3000\u30d7\u30ed\u30bb\u30b9\u3084\u30ab\u30fc\u30cd\u30eb\u306b\u95a2\u3059\u308b\u30d5\u30a1\u30a4\u30eb\r\nroot \u3000\u3000root\u30e6\u30fc\u30b6\u30fc\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\r\nrun \u3000\u3000\u30d7\u30ed\u30bb\u30b9\u306e\u30c7\u30fc\u30bf\u3000\/var\/run\u306f\/run\u306e\u30b7\u30f3\u30dc\u30ea\u30c3\u30af\u30ea\u30f3\u30af\r\nsbin \u3000\u3000\u7ba1\u7406\u8005\u304c\u4f7f\u7528\u3059\u308b\u30b3\u30de\u30f3\u30c9\r\nsrv \u3000\u3000\u30b7\u30b9\u30c6\u30e0\u306e\u30b5\u30fc\u30d3\u30b9\u30c7\u30fc\u30bf\r\nsys \u3000\u3000\u30c9\u30e9\u30a4\u30d0\u95a2\u9023\u306e\u30d5\u30a1\u30a4\u30eb\r\ntmp \u3000\u3000\u30c6\u30f3\u30dd\u30e9\u30ea\u30d5\u30a1\u30a4\u30eb\r\nusr \u3000\u3000\u30e6\u30fc\u30b6\u30fc\u304c\u5171\u901a\u3067\u4f7f\u3046\u30d7\u30ed\u30b0\u30e9\u30e0\u7fa4\u3002\r\n\u3000\u3000 \u3000\u3000\u203b\/usr\/share\/applications\u304cWindows\u306e\u30b3\u30f3\u30c8\u30ed\u30fc\u30eb\u30d1\u30cd\u30eb\u306b\u76f8\u5f53\r\nvar \u3000\u3000\u30ed\u30b0\u3084Apache\u306e\u30c7\u30d5\u30a9\u30eb\u30c8\u306e\u30c9\u30ad\u30e5\u30e1\u30f3\u30c8\u30eb\u30fc\u30c8\u306a\u3069<\/pre>\n
clamd\u306e\u8d77\u52d5\r\n[root@server1 ~]# systemctl start clamd\r\n\r\nclamd\u306e\u81ea\u52d5\u8d77\u52d5\u8a2d\u5b9a\r\n[root@server1 ~]# systemctl enable clamd\r\nclamd.service is not a native service, redirecting to \/sbin\/chkconfig.\r\nExecuting \/sbin\/chkconfig clamd on\r\nThe unit files have no [Install] section. They are not meant to be enabled\r\nusing systemctl.\r\nPossible reasons for having this kind of units are:\r\n1) A unit may be statically enabled by being symlinked from another unit's\r\n .wants\/ or .requires\/ directory.\r\n2) A unit's purpose may be to act as a helper for some other unit which has\r\n a requirement dependency on it.\r\n3) A unit may be started when needed via activation (socket, path, timer,\r\n D-Bus, udev, scripted systemctl call, ...).<\/pre>\n
\u30a6\u30a3\u30eb\u30b9\u5b9a\u7fa9\u30d5\u30a1\u30a4\u30eb\u306e\u66f4\u65b0\u6a5f\u80fd\u3092\u6709\u52b9\u5316\r\n[root@server1 ~]# sed -i 's\/Example\/#Example\/g' \/etc\/freshclam.conf\r\n\r\nVirusDB\u3092\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\r\n[root@server1 ~]# freshclam\r\nClamAV update process started at Sun Jan 4 12:47:36 2015\r\nWARNING: Your ClamAV installation is OUTDATED!\r\nWARNING: Local version: 0.98.4 Recommended version: 0.98.5\r\nDON'T PANIC! Read http:\/\/www.clamav.net\/support\/faq\r\nmain.cld is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo)\r\nDownloading daily-19879.cdiff [100%]\r\ndaily.cld updated (version: 19879, sigs: 1301911, f-level: 63, builder: neo)\r\nbytecode.cld is up to date (version: 244, sigs: 44, f-level: 63, builder: dgoddard)\r\nDatabase updated (3726180 signatures) from db.local.clamav.net (IP: 218.44.253.75)\r\nClamd successfully notified about the update.<\/pre>\n
\nyum\u3067\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u3068\u81ea\u52d5\u3067\u6bce\u65e5\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3057\u3066\u304f\u308c\u308b\u304c\u3001\u4f55\u3089\u304b\u306e\u7406\u7531\u3067\u30d5\u30a1\u30a4\u30eb\u304c\u7121\u3044\u3068\u3044\u3046\u5834\u5408\u306b\u306f\u4ee5\u4e0b\u306e\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u6210\u3002<\/p>\n[root@server1 ~]# vi \/etc\/cron.daily\/freshclam\r\n#!\/bin\/sh\r\n\r\n### A simple update script for the clamav virus database.\r\n### This could as well be replaced by a SysV script.\r\n\r\n### fix log file if needed\r\nLOG_FILE=\"\/var\/log\/clamav\/freshclam.log\"\r\nif [ ! -f \"$LOG_FILE\" ]; then\r\n touch \"$LOG_FILE\"\r\n chmod 644 \"$LOG_FILE\"\r\n chown clamav.clamav \"$LOG_FILE\"\r\nfi\r\n\r\n\/usr\/bin\/freshclam \\\r\n --quiet \\\r\n --datadir=\"\/var\/clamav\" \\\r\n --log=\"$LOG_FILE\" \\\r\n --daemon-notify=\"\/etc\/clamd.conf\"<\/pre>\n
\n\u203b\/root\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u30b9\u30ad\u30e3\u30f3\u3057\u3066\u30a6\u30a4\u30eb\u30b9\u304c\u898b\u3064\u304b\u3063\u305f\u5834\u5408\u3060\u3051\u8868\u793a\u3001\u524a\u9664\u3059\u308b\u3002<\/p>\n[root@server1 ~]# clamscan \/root --infected --remove --recursive\r\n\r\n----------- SCAN SUMMARY -----------\r\nKnown viruses: 3720154\r\nEngine version: 0.98.4\r\nScanned directories: 1456\r\nScanned files: 3455\r\nInfected files: 0\r\nData scanned: 139.04 MB\r\nData read: 3429.55 MB (ratio 0.04:1)\r\nTime: 36.553 sec (0 m 36 s)<\/pre>\n
\n\u203bclamdscan\u306f\u30a6\u30a4\u30eb\u30b9\u30b9\u30ad\u30e3\u30f3\u3057\u3066\u3001\u5909\u66f4\u306e\u7121\u3044\u30d5\u30a1\u30a4\u30eb\u306f2\u5ea6\u76ee\u4ee5\u964d\u306e\u30a6\u30a4\u30eb\u30b9\u30b9\u30ad\u30e3\u30f3\u3092\u30b9\u30ad\u30c3\u30d7\u3059\u308b\u306e\u3067\u9ad8\u901f\u3067\u3042\u308b\u3002<\/p>\n[root@server1 ~]# clamdscan \/root\r\n\/root: OK\r\n\r\n----------- SCAN SUMMARY -----------\r\nInfected files: 0\r\nTime: 21.567 sec (0 m 21 s)<\/pre>\n
[root@server1 ~]# vi \/etc\/cron.daily\/clamdscan\r\n#!\/bin\/bash\r\nPATH=\/usr\/local\/sbin:\/usr\/local\/bin:\/sbin:\/bin:\/usr\/sbin:\/usr\/bin\r\n \r\nCLAMSCANTMP=`mktemp`\r\n \r\nclamdscan \/ --remove > $CLAMSCANTMP 2>&1\r\n \r\n[ ! -z \"$(grep FOUND$ $CLAMSCANTMP)\" ] && \\\r\ngrep FOUND$ $CLAMSCANTMP | mail -s \"Virus Found\" hoge@example.com\r\n \r\n[ -z \"$(grep FOUND$ $CLAMSCANTMP)\" ] && \\\r\necho \"clamdscan normal end\" | mail -s \"Virus Not Found\" hoge@example.com\r\n \r\nrm -f $CLAMSCANTMP\r\n<\/pre>\n
[root@server1 ~]# chmod +x \/etc\/cron.daily\/clamdscan<\/pre>\n
[root@server1 ~]# sh \/etc\/cron.daily\/clamdscan\r\n\r\n\u30a6\u30a4\u30eb\u30b9\u30b9\u30ad\u30e3\u30f3\u304c\u7d42\u4e86\u3059\u308b\u3068\u3001\u554f\u984c\u306a\u3051\u308c\u3070\u4ee5\u4e0b\u306e\u69d8\u306a\u30e1\u30fc\u30eb\u304c\u5c4a\u304f\u3002\r\nVirus Not Found\r\n\r\nclamdscan normal end<\/pre>\n
[root@server1 ~]# systemctl status clamd\r\nclamd.service - SYSV: Clam AntiVirus Daemon is a TCP\/IP or socket protocol server.\r\n Loaded: loaded (\/etc\/rc.d\/init.d\/clamd)\r\n Active: failed (Result: exit-code) since \u65e5 2014-07-20 11:26:16 JST; 2min 7s ago\r\n Process: 21056 ExecStart=\/etc\/rc.d\/init.d\/clamd start (code=exited, status=1\/FAILURE)\r\n\r\n 7\u6708 20 12:09:17 server1.yokensaka.com systemd[1]: Starting SYSV: Clam AntiVirus Daemon is a T.....\r\n 7\u6708 20 12:09:17 server1.yokensaka.com clamd[1034]: clamd daemon 0.98.4 (OS: linux-gnu, ARCH: ...4)\r\n 7\u6708 20 12:09:17 server1.yokensaka.com clamd[1034]: Log file size limited to 4294967295 bytes.\r\n 7\u6708 20 12:09:17 server1.yokensaka.com clamd[1034]: Reading databases from \/var\/clamav\r\n 7\u6708 20 12:09:17 server1.yokensaka.com clamd[1034]: Not loading PUA signatures.\r\n 7\u6708 20 12:09:17 server1.yokensaka.com clamd[1034]: Bytecode: Security mode set to \"TrustSigned\".\r\n 7\u6708 20 12:09:33 server1.yokensaka.com clamd[1034]: Loaded 3502516 signatures.\r\n 7\u6708 20 12:09:34 server1.yokensaka.com clamd[1034]: TCP: Bound to address 127.0.0.1 on port 3310\r\n 7\u6708 20 12:09:34 server1.yokensaka.com clamd[1034]: TCP: Setting connection queue length to 30\r\n 7\u6708 20 12:09:34 server1.yokensaka.com clamd[1034]: LOCAL: Socket file \/var\/run\/clamav\/clamd.s...ry\r\n 7\u6708 20 12:09:34 server1.yokensaka.com clamd[1034]: Can't unlink the socket file \/var\/run\/clam...ck\r\n 7\u6708 20 12:09:34 server1.yokensaka.com clamd[1021]: Starting Clam AntiVirus Daemon: ERROR: LOC...ry\r\n 7\u6708 20 12:09:34 server1.yokensaka.com clamd[1021]: ERROR: Can't unlink the socket file \/var\/r...ck\r\n 7\u6708 20 12:09:34 server1.yokensaka.com clamd[1021]: [\u5931\u6557]\r\n 7\u6708 20 12:09:34 server1.yokensaka.com systemd[1]: clamd.service: control process exited, code...=1\r\n 7\u6708 20 12:09:34 server1.yokensaka.com systemd[1]: Failed to start SYSV: Clam AntiVirus Daemon.....\r\n 7\u6708 20 12:09:34 server1.yokensaka.com systemd[1]: Unit clamd.service entered failed state.\r\nHint: Some lines were ellipsized, use -l to show in full.<\/pre>\n
[root@server1 ~]# mkdir \/var\/run\/clamav\r\n[root@server1 ~]# chown -R clamav:clamav \/var\/run\/clamav\r\n[root@server1 ~]# chmod -R 700 \/var\/run\/clamav\r\n[root@server1 ~]# systemctl start clamd\r\n[root@server1 ~]# systemctl status clamd\r\nclamd.service - SYSV: Clam AntiVirus Daemon is a TCP\/IP or socket protocol server.\r\n Loaded: loaded (\/etc\/rc.d\/init.d\/clamd)\r\n Active: active (running) since \u65e5 2014-07-20 12:02:43 JST; 7s ago\r\n Process: 2583 ExecStart=\/etc\/rc.d\/init.d\/clamd start (code=exited, status=0\/SUCCESS)\r\n Main PID: 2586 (clamd)\r\n CGroup: \/system.slice\/clamd.service\r\n \u2514\u25002586 clamd\r\n\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: ELF support enabled.\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: Detection of broken executables enabled.\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: Mail files support enabled.\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: OLE2 support enabled.\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: PDF support enabled.\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: SWF support enabled.\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: HTML support enabled.\r\n 7\u6708 20 12:02:42 server1.yokensaka.com clamd[2586]: Self checking every 600 seconds.\r\n 7\u6708 20 12:02:43 server1.yokensaka.com clamd[2583]: Starting Clam AntiVirus Daemon: [ OK ]\r\n 7\u6708 20 12:02:43 server1.yokensaka.com systemd[1]: Started SYSV: Clam AntiVirus Daemon is a TCP\/IP or socket protocol server..\r\n\r\n\u8d77\u52d5\u3067\u304d\u305f<\/pre>\n
\u518d\u8d77\u52d5\u5f8c\u306b\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u30fc\u3092\u4f5c\u6210\u3059\u308b\u3088\u3046\u306b\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u3092\u7de8\u96c6\uff08\u8d64\u5b57\u306e\u90e8\u5206\u3092\u8ffd\u8a18\uff09<\/del><\/p>\n[root@server1 ~]# vi \/etc\/init.d\/clamd\r\n#!\/bin\/sh\r\n#\r\n# Startup script for the Clam AntiVirus Daemon\r\n#\r\n# chkconfig: 2345 61 39\r\n# description: Clam AntiVirus Daemon is a TCP\/IP or socket protocol \\\r\n# server.\r\n# processname: clamd\r\n# pidfile: \/var\/run\/clamav\/clamd.pid\r\n# config: \/etc\/clamav.conf\r\n\r\n# Source function library.\r\n. \/etc\/rc.d\/init.d\/functions\r\n\r\n# Source networking configuration.\r\n. \/etc\/sysconfig\/network\r\n\r\n[ -x \/usr\/sbin\/clamd ] || exit 0\r\n\r\nstart(){\r\n echo -n \"Starting Clam AntiVirus Daemon: \"\r\n #\u518d\u8d77\u52d5\u5f8c\u306bclamav\u306edir\u3092\u4f5c\u6210<\/del>\r\n mkdir \/var\/run\/clamav > \/dev\/null 2>&1<\/del>\r\n schown clamav:clamav \/var\/run\/clamav > \/dev\/null 2>&1<\/del><\/span>\r\n daemon clamd\r\n RETVAL=$?\r\n echo\r\n [ $RETVAL -eq 0 ] && touch \/var\/lock\/subsys\/clamd\r\n return $RETVAL\r\n}\r\n\r\nstop() {\r\n echo -n \"Stopping Clam AntiVirus Daemon: \"\r\n killproc clamd\r\n rm -f \/var\/clamav\/clamd.socket\r\n rm -f \/var\/run\/clamav\/clamav.pid\r\n RETVAL=$?\r\n echo\r\n ### heres the fix... we gotta remove the stale files on restart\r\n [ $RETVAL -eq 0 ] && rm -f \/var\/lock\/subsys\/clamd\r\n return $RETVAL\r\n}\r\n\r\nrestart() {\r\n stop\r\n start\r\n}\r\n\r\n# See how we were called.\r\ncase \"$1\" in\r\n start)\r\n start\r\n ;;\r\n stop)\r\n stop\r\n ;;\r\n status)\r\n status clamd\r\n RETVAL=$?\r\n ;;\r\n restart|reload)\r\n restart\r\n ;;\r\n condrestart)\r\n [ -e \/var\/lock\/subsys\/clamd ] && $0 restart\r\n RETVAL=$?\r\n ;;\r\n *)\r\n echo \"Usage: clamd {start|stop|status|restart|reload|condrestart}\"\r\n exit 1\r\nesac\r\n\r\nexit $RETVAL<\/pre>\n
\n\u4ee5\u524d\u306fclamd\u306e\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u3092\u7de8\u96c6\u3057\u3066\u3044\u305f\u304c\u3001\/etc\/tmpfiles.d\/\u306bclamd.conf\u3092\u8ffd\u8a18\u3059\u308b\u3053\u3068\u3067\u3001OS\u8d77\u52d5\u6642\u306b\/var\/run\/clamav\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u4f5c\u6210\u3067\u304d\u308b\u3088\u3046\u306b\u5909\u66f4<\/p>\n[root@server1 ~]# vi \/etc\/tmpfiles.d\/clamd.conf\r\nd \/var\/run\/clamav 0755 root root -\u3000\u2190\u3000\u8ffd\u52a0\r\n[root@server1 ~]# systemd-tmpfiles --create clamd.conf\r\n\r\nsystemd\u3092\u30ea\u30ed\u30fc\u30c9\r\n[root@server1 ~]# systemctl daemon-reload\r\nclamd\u3092\u518d\u8d77\u52d5\r\n[root@server1 ~]# systemctl restart clamd<\/pre>\n
[root@server1 ~]# reboot\r\n\r\n[root@server1 ~]# systemctl status clamd\r\nclamd.service - SYSV: Clam AntiVirus Daemon is a TCP\/IP or socket protocol server.\r\n Loaded: loaded (\/etc\/rc.d\/init.d\/clamd)\r\n Active: active (running) since \u91d1 2015-01-02 16:24:11 JST; 30s ago\r\n Process: 1005 ExecStart=\/etc\/rc.d\/init.d\/clamd start (code=exited, status=0\/SUCCESS)\r\n Main PID: 1480 (clamd)\r\n CGroup: \/system.slice\/clamd.service\r\n \u2514\u25001480 clamd\r\n\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: ELF support enabled.\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: Detection of broken executables enabled.\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: Mail files support enabled.\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: OLE2 support enabled.\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: PDF support enabled.\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: SWF support enabled.\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: HTML support enabled.\r\n 1\u6708 02 16:24:10 server1.yokensaka.com clamd[1480]: Self checking every 600 seconds.\r\n 1\u6708 02 16:24:11 server1.yokensaka.com clamd[1005]: Starting Clam AntiVirus Daemon: [ OK ]\r\n 1\u6708 02 16:24:11 server1.yokensaka.com systemd[1]: Started SYSV: Clam AntiVirus Daemon is a TC.....\r\nHint: Some lines were ellipsized, use -l to show in full.<\/pre>\n
\nClam AntiVirus\u306fRepoforge\u30ea\u30dd\u30b8\u30c8\u30ea\u306e\u3082\u306e\u3092\u4f7f\u3063\u3066\u3044\u308b\u304c\u3001Repoforge\u30ea\u30dd\u30b8\u30c8\u30ea\u3068epel\u30ea\u30dd\u30b8\u30c8\u30ea\u306e\u4e21\u65b9\u3092\u6709\u52b9\u306b\u3057\u3066\u3044\u308b\u3068\u3001Clam AntiVirus\u306eyum update\u3067\u30a8\u30e9\u30fc\u306b\u306a\u308a\u3001\u5168\u3066\u306eupdate\u304c\u51fa\u6765\u306a\u304f\u306a\u308b\u306e\u3067\u3001epel.repo\u3067clam\u3092\u9664\u5916\u3057\u3066\u304a\u304f\u3002<\/p>\n[root@server1 ~]# vi \/etc\/yum.repos.d\/epel.repo\r\n[epel]\r\nname=Extra Packages for Enterprise Linux 7 - $basearch\r\n#baseurl=http:\/\/download.fedoraproject.org\/pub\/epel\/7\/$basearch\r\nmirrorlist=https:\/\/mirrors.fedoraproject.org\/metalink?repo=epel-7&arch=$basearch\r\nfailovermethod=priority\r\nenabled=1\u3000\u2190\u30001 \u306b\u8a2d\u5b9a\r\ngpgcheck=0\r\ngpgkey=file:\/\/\/etc\/pki\/rpm-gpg\/RPM-GPG-KEY-EPEL-7\r\nexclude=clam*\u3000\u2190\u3000clam\u306fRepoforge\u306e\u3082\u306e\u3092\u4f7f\u3046\u306e\u3067epel\u306eclam\u306f\u9664\u5916<\/pre>\n","protected":false},"excerpt":{"rendered":"