什麼是 Linux Malware Detect (LMD)?
Linux Malware Detect (LMD) 是一個用於Unix/Linux操作系統上的開源病毒檢測軟件,以GNU GPLv2的方式發布軟件版本,一般用於虛擬主機環境的病毒檢測和查殺,更多詳情請點擊 .
如何安裝?
# cd /tmp
# wget
# tar xfz maldetect-current.tar.gz
# cd maldetect-*
# ./install.sh
如何配置?
1 vim /usr/local/maldetect/conf.maldet
基本配置樣例如下:
# [ EMAIL ALERTS ]
##
# The default email alert toggle
# [0 = disabled, 1 = enabled]
email_alert=1
# The subject line for email alerts
email_subj=”maldet alert from $(hostname)”
# The destination addresses for email alerts
# [ values are comma (,) spaced ]
email_addr=”tecmint.com@gmail.com”
# Ignore e-mail alerts for reports in which all hits have been cleaned.
# This is ideal on very busy servers where cleaned hits can drown out
# other more actionable reports.
email_ignore_clean=0
##
# [ QUARANTINE OPTIONS ]
##
# The default quarantine action for malware hits
# [0 = alert only, 1 = move to quarantine & alert]
quar_hits=1
# Try to clean string based malware injections
# [NOTE: quar_hits=1 required]
# [0 = disabled, 1 = clean]
quar_clean=1
# The default suspend action for users wih hits
# Cpanel suspend or set shell /bin/false on non-Cpanel
# [NOTE: quar_hits=1 required]
# [0 = disabled, 1 = suspend account]
quar_susp=0
# minimum userid that can be suspended
quar_susp_minuid=500
掃描病毒:
1 maldet –scan-all /home
獲得報告:
1 maldet –report 032813-1606.27752
清除病毒
1 maldet -q 032813-1606.27752
修改計劃任務配置:
1 vim /etc/cron.daily/maldet
參考網站:
以下文章點擊率最高
Loading…