【注記】
玄箱にアンチウィルスソフトの導入は、性能的に荷が重過ぎると思います。
導入に問題は無いようですが、お勧めしません。
アンチウィルスソフトを入れる事にします。
Fedora で自宅サーバー構築さんのやり方を参考にしましたので、このサイトで確認してください。
[root@meckk ~]# yum -y install clamav
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for clamav to pack into transaction set.
clamav-0.88.7-2.fc6.ppc.r 100% |=========================| 20 kB 00:00
---> Package clamav.ppc 0:0.88.7-2.fc6 set to be updated
--> Running transaction check
--> Processing Dependency: libclamav.so.1 for package: clamav
--> Processing Dependency: data(clamav) for package: clamav
--> Processing Dependency: libgmp.so.3 for package: clamav
--> Processing Dependency: clamav-lib = 0.88.7-2.fc6 for package: clamav
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Package gmp.ppc 0:4.1.4-9.fc6 set to be updated
---> Downloading header for clamav-lib to pack into transaction set.
clamav-lib-0.88.7-2.fc6.p 100% |=========================| 18 kB 00:00
---> Package clamav-lib.ppc 0:0.88.7-2.fc6 set to be updated
---> Downloading header for clamav-data to pack into transaction set.
clamav-data-0.88.7-2.fc6. 100% |=========================| 18 kB 00:00
---> Package clamav-data.ppc 0:0.88.7-2.fc6 set to be updated
--> Running transaction check
--> Processing Dependency: fedora-usermgmt for package: clamav-data
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for fedora-usermgmt to pack into transaction set.
fedora-usermgmt-0.9-1.fc6 100% |=========================| 5.3 kB 00:00
---> Package fedora-usermgmt.noarch 0:0.9-1.fc6 set to be updated
--> Running transaction check
--> Processing Dependency: instance(fedora-usermgmt) for package: fedora-usermgmt
--> Processing Dependency: setup(fedora-usermgmt) for package: fedora-usermgmt
--> Processing Dependency: fedora-usermgmt-core = 0.9-1.fc6 for package: fedora-usermgmt
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for fedora-usermgmt-default-fedora-setup to pack into transaction set.
fedora-usermgmt-default-f 100% |=========================| 6.2 kB 00:00
---> Package fedora-usermgmt-default-fedora-setup.noarch 0:0.9-1.fc6 set to be updated
---> Downloading header for fedora-usermgmt-shadow-utils to pack into transaction set.
fedora-usermgmt-shadow-ut 100% |=========================| 6.8 kB 00:00
---> Package fedora-usermgmt-shadow-utils.noarch 0:0.9-1.fc6 set to be updated
---> Downloading header for fedora-usermgmt-core to pack into transaction set.
fedora-usermgmt-core-0.9- 100% |=========================| 6.0 kB 00:00
---> Package fedora-usermgmt-core.noarch 0:0.9-1.fc6 set to be updated
--> Running transaction check
Dependencies Resolved
=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
clamav ppc 0.88.7-2.fc6 extras 614 k
Installing for dependencies:
clamav-data ppc 0.88.7-2.fc6 extras 7.4 M
clamav-lib ppc 0.88.7-2.fc6 extras 178 k
fedora-usermgmt noarch 0.9-1.fc6 extras 6.8 k
fedora-usermgmt-core noarch 0.9-1.fc6 extras 7.8 k
fedora-usermgmt-default-fedora-setup noarch 0.9-1.fc6 extras 6.7 k
fedora-usermgmt-shadow-utils noarch 0.9-1.fc6 extras 7.5 k
gmp ppc 4.1.4-9.fc6 updates 209 k
Transaction Summary
=============================================================================
Install 8 Package(s)
Update 0 Package(s)
Remove 0 Package(s)
Total download size: 8.4 M
Downloading Packages:
(1/7): fedora-usermgmt-de 100% |=========================| 6.7 kB 00:00
(2/7): fedora-usermgmt-0. 100% |=========================| 6.8 kB 00:00
(3/7): clamav-data-0.88.7 100% |=========================| 7.4 MB 01:38
(4/7): fedora-usermgmt-sh 100% |=========================| 7.5 kB 00:00
(5/7): fedora-usermgmt-co 100% |=========================| 7.8 kB 00:00
(6/7): clamav-0.88.7-2.fc 100% |=========================| 614 kB 00:04
(7/7): clamav-lib-0.88.7- 100% |=========================| 178 kB 00:01
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: gmp ######################### [1/8]
Installing: fedora-usermgmt-default-fedo ######################### [2/8]
Installing: fedora-usermgmt-core ######################### [3/8]
Installing: fedora-usermgmt-shadow-utils ######################### [4/8]
Installing: fedora-usermgmt ######################### [5/8]
Installing: clamav-data ######################### [6/8]
Installing: clamav-lib ######################### [7/8]
Installing: clamav ######################### [8/8]
Installed: clamav.ppc 0:0.88.7-2.fc6
Dependency Installed: clamav-data.ppc 0:0.88.7-2.fc6 clamav-lib.ppc 0:0.88.7-2.fc6 fedora-usermgmt.noarch 0:0.9-1.fc6 fedora-usermgmt-core.noarch 0:0.9-1.fc6 fedora-usermgmt-default-fedora-setup.noarch 0:0.9-1.fc6 fedora-usermgmt-shadow-utils.noarch 0:0.9-1.fc6 gmp.ppc 0:4.1.4-9.fc6
Complete!
[root@meckk ~]#
次もインストールします。
[root@meckk ~]# yum -y install clamav-update
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for clamav-update to pack into transaction set.
clamav-update-0.88.7-2.fc 100% |=========================| 19 kB 00:00
---> Package clamav-update.ppc 0:0.88.7-2.fc6 set to be updated
--> Running transaction check
--> Processing Dependency: /etc/cron.d for package: clamav-update
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for vixie-cron to pack into transaction set.
vixie-cron-4.1-68.fc6.ppc 100% |=========================| 21 kB 00:02
---> Package vixie-cron.ppc 4:4.1-68.fc6 set to be updated
--> Running transaction check
Dependencies Resolved
=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
clamav-update ppc 0.88.7-2.fc6 extras 51 k
Installing for dependencies:
vixie-cron ppc 4:4.1-68.fc6 updates 98 k
Transaction Summary
=============================================================================
Install 2 Package(s)
Update 0 Package(s)
Remove 0 Package(s)
Total download size: 150 k
Downloading Packages:
(1/2): clamav-update-0.88 100% |=========================| 51 kB 00:00
(2/2): vixie-cron-4.1-68. 100% |=========================| 98 kB 00:08
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: vixie-cron ######################### [1/2]
Installing: clamav-update ######################### [2/2]
Installed: clamav-update.ppc 0:0.88.7-2.fc6
Dependency Installed: vixie-cron.ppc 4:4.1-68.fc6
Complete!
[root@meckk ~]#
ウィルス定義ファイル最新化の有効化を行います。
[root@meckk ~]# sed -i 's/^Example/#Example/g' /etc/freshclam.conf
ウィルス定義ファイル更新設定ファイルを編集します。
[root@meckk ~]# vi /etc/sysconfig/freshclam
## When changing the periodicity of freshclam runs in the crontab,
## this value must be adjusted also. Its value is the timespan between
## two subsequent freshclam runs in minutes. E.g. for the default
##
## | 0 */3 * * * ...
##
## crontab line, the value is 180 (minutes).
# FRESHCLAM_MOD=
## A predefined value for the delay in seconds. By default, the value is
## calculated by the 'hostid' program. This predefined value guarantees
## constant timespans of 3 hours between two subsequent freshclam runs.
##
## This option accepts two special values:
## 'disabled-warn' ... disables the automatic freshclam update and
## gives out a warning
## 'disabled' ... disables the automatic freshclam silently
# FRESHCLAM_DELAY=
### !!!!! REMOVE ME !!!!!!
### REMOVE ME: By default, the freshclam update is disabled to avoid
### REMOVE ME: network access without prior activation
#FRESHCLAM_DELAY=disabled-warn # REMOVE ME
ウィルス定義ファイルを更新します。
[root@meckk ~]# freshclam
ClamAV update process started at Wed Mar 14 09:43:25 2007
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.88.7 Recommended version: 0.90.1
DON'T PANIC! Read http://www.clamav.net/faq.html
Downloading main.cvd [*]
main.cvd updated (version: 42, sigs: 83951, f-level: 10, builder: tkojm)
Downloading daily.cvd [*]
daily.cvd updated (version: 2833, sigs: 15188, f-level: 14, builder: ccordes)
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Current functionality level = 10, recommended = 14
DON'T PANIC! Read http://www.clamav.net/faq.html
Database updated (99139 signatures) from database.clamav.net (IP: 211.10.155.48)
ウィルススキャンを行います。(ウィルスが存在しない場合)
[root@meckk ~]# clamscan --infected --remove --recursive /etc/passwd
LibClamAV Warning: ********************************************************
LibClamAV Warning: *** This version of the ClamAV engine is outdated. ***
LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/faq.html ***
LibClamAV Warning: ********************************************************
----------- SCAN SUMMARY -----------
Known viruses: 90903
Engine version: 0.88.7
Scanned directories: 0
Scanned files: 1
Infected files: 0
Data scanned: 0.00 MB
Time: 28.326 sec (0 m 28 s)
ウィルスは検出されませんでした。(このバージョンは古いと警告が出ていますが、そのままにしています。)
擬似ウィルス(無害のウィルス)で確認してみます。
[root@meckk ~]# wget http://www.eicar.org/download/eicar.com
--09:56:35-- http://www.eicar.org/download/eicar.com
www.eicar.org をDNSに問いあわせています... 88.198.38.136
www.eicar.org|88.198.38.136|:80 に接続しています... 接続しました。
HTTP による接続要求を送信しました、応答を待っています... 200 OK
長さ: 68 [application/x-msdos-program]
Saving to: `eicar.com'
100%[==========================================================>] 68 --.-K/s in 0s
09:56:39 (746 KB/s) - `eicar.com' を保存しました [68/68]
[root@meckk ~]# wget http://www.eicar.org/download/eicar.com.txt
--09:56:55-- http://www.eicar.org/download/eicar.com.txt
www.eicar.org をDNSに問いあわせています... 88.198.38.136
www.eicar.org|88.198.38.136|:80 に接続しています... 接続しました。
HTTP による接続要求を送信しました、応答を待っています... 200 OK
長さ: 68 [text/plain]
Saving to: `eicar.com.txt'
100%[==========================================================>] 68 --.-K/s in 0s
09:56:55 (755 KB/s) - `eicar.com.txt' を保存しました [68/68]
[root@meckk ~]# wget http://www.eicar.org/download/eicar_com.zip
--09:57:10-- http://www.eicar.org/download/eicar_com.zip
www.eicar.org をDNSに問いあわせています... 88.198.38.136
www.eicar.org|88.198.38.136|:80 に接続しています... 接続しました。
HTTP による接続要求を送信しました、応答を待っています... 200 OK
長さ: 184 [application/zip]
Saving to: `eicar_com.zip'
100%[==========================================================>] 184 --.-K/s in 0s
09:57:11 (1.99 MB/s) - `eicar_com.zip' を保存しました [184/184]
[root@meckk ~]# wget http://www.eicar.org/download/eicarcom2.zip
--09:57:26-- http://www.eicar.org/download/eicarcom2.zip
www.eicar.org をDNSに問いあわせています... 88.198.38.136
www.eicar.org|88.198.38.136|:80 に接続しています... 接続しました。
HTTP による接続要求を送信しました、応答を待っています... 200 OK
長さ: 308 [application/zip]
Saving to: `eicarcom2.zip'
100%[==========================================================>] 308 --.-K/s in 0s
09:57:27 (2.29 MB/s) - `eicarcom2.zip' を保存しました [308/308]
[root@meckk ~]# clamscan --infected --remove --recursive .
LibClamAV Warning: ********************************************************
LibClamAV Warning: *** This version of the ClamAV engine is outdated. ***
LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/faq.html ***
LibClamAV Warning: ********************************************************
./eicar.com: Eicar-Test-Signature FOUND
./eicar.com: Removed
./eicar.com.txt: Eicar-Test-Signature FOUND
./eicar.com.txt: Removed
./eicar_com.zip: Eicar-Test-Signature FOUND
./eicar_com.zip: Removed
./eicarcom2.zip: Eicar-Test-Signature FOUND
./eicarcom2.zip: Removed
----------- SCAN SUMMARY -----------
Known viruses: 90903
Engine version: 0.88.7
Scanned directories: 1
Scanned files: 8
Infected files: 4
Data scanned: 0.00 MB
Time: 28.088 sec (0 m 28 s)
[root@meckk ~]#
ウィルスが発見され、削除されました。
Fedora で自宅サーバー構築さんのサイトを参考にして、定期的に自動実行するように設定してください。