I hate to ask these questions on the FreeBSD forums, but I can't find any answers on the clamav webpages. I've searched their wiki's and their FAQ's, and both gloss over the details of clamav and are written with the assumption that you already know about the details of how to setup and configure clamav. I digress however.
Here's my problem:
I have a FreeBSD 9.0 file server. It is really simple - samba shares for internal file storage, sshd for remote access and external filesharing. No other network services (and I would like to keep it that way). The machines connected to the server are almost exclusively Windows. What I want is to have this fileserver periodically scan the user directories for files containing viruses. Not only would it put the extra CPU cycles to good use, but it would also provide an additional layer of defense to the network against accidentally introduced infections.
Here's my question(s):
I installed clamav and have clamd and freshclam running in the background. Now what? Some of the basic questions I have, which I cannot find answers to on clamav's website, are:
Thoughts? Help?
Thanks in advance.
Here's my problem:
I have a FreeBSD 9.0 file server. It is really simple - samba shares for internal file storage, sshd for remote access and external filesharing. No other network services (and I would like to keep it that way). The machines connected to the server are almost exclusively Windows. What I want is to have this fileserver periodically scan the user directories for files containing viruses. Not only would it put the extra CPU cycles to good use, but it would also provide an additional layer of defense to the network against accidentally introduced infections.
Here's my question(s):
I installed clamav and have clamd and freshclam running in the background. Now what? Some of the basic questions I have, which I cannot find answers to on clamav's website, are:
- What is the difference between clamd and clamscan? The best answer I can find is that clamd runs in the background and clamscan is for onetime scans. But I need a little more than that (e.g. what does clamd do when it runs in the background).
- When clamd runs, is it continuously scanning files on the machine in the background?
- If clamd is not continuously scanning files on the machine, what do I need to do to have it do so?
- If clamd is incapable of continuously scanning files on the machine in the background, what is the purpose of running it?
- My "backup solution" is to schedule a cronjob that kicks off a clamscan process each night. To me, this is the least elegant solution because it seems like something a daemon should be doing. If I have to, I will do this though.
Thoughts? Help?
Thanks in advance.