[prev in list] [next in list] [prev in thread] [next in thread] 

List:       clamav-users
Subject:    Re: [clamav-users] Syslog clamscan results
From:       Matus UHLAR - fantomas <uhlar () fantomas ! sk>
Date:       2014-08-06 6:07:57
Message-ID: 20140806060757.GA21018 () fantomas ! sk
[Download RAW message or body]

On 06.08.14 02:29, Daniel Friske wrote:
> I've been asked to have install clamav on all of our linux boxes and have
> their scan results syslogged to a central server.  We already have a
> syslog server set up for our network devices, I'm just having trouble
> getting this to work on the linux boxes.
> I'm on a centos box that has rsyslogd already on it but can't for the life
> of me figure out how to get it to work.
> 
> I added the following line in the rsyslog.conf file and I started to get logs from \
>                 cron jobs among other things but none from clamav
> *.* @server:514
> 
> I ran a clam scan to test
> clamscan /tmp --log=/var/log/clamav/clamscan.log
> Still nothing coming up on the syslog server

clamscan does not use syslog. It's an interactive program that sends output
to the log file or the stdout.
Clamscan also loads the virus library on each start, which consumet much
time.

You apparently want to use clamdscan (note the 'd' in the middle) which asks
the clamav daemon to do the scanning. Clamav daemon does use syslog, if you
configure it to.

-- 
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I wonder how much deeper the ocean would be without sponges. 
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/support/ml


[prev in list] [next in list] [prev in thread] [next in thread]