Use ClamAV and Linux Malware Detection (LMD) Protect your servers

This article originated inR0uter's Blog,ClickView original

 

Normal,Speaking of viruses, Trojans,People will probably think of Windows,In fact, as long as the operating system,There will be loopholes,So long as the operating system was used,Then some people will take advantage of this loophole to develop malware (such as viruses, Trojans)。In short,Since the Windows operating system users is far greater than macOS and various Unix-like,So many people think the latter even immune to the virus。

Not really,Although Linux has a comprehensive rights management,But specific malware is still possible invasion - especially the server。

Before I wroteAfter purchasing a VPS you should spare security measures,This time we take a look at how to scan for viruses or Trojan on the server。

CalmAV

CalmAV It is an open source virus scanning engine,It has daily updates of virus signatures,And can be installed directly from the source Ubuntu:

When the installation has been built with the latest virus signatures,However, there is a tool called ClamAV freshcalm,It is used to update the virus signature database,But usually you do not need to manually execute it,By default it has been launched in the form of system services,So you do not need to be concerned about virus database updates,It is fully automated incremental update。

In short,After installed can use the command clamscan -r --bell -i /home To perform the scan,Scanning path can be arbitrarily set,You can also set the root directory / in order to achieve a comprehensive scan。among them–bell -i indicate they are suspicious file alerts and displays the file path。

Use CalmAV scan / home

Use CalmAV scan / home

Linux Malware Detection (LMD)

As the name suggests,It is specialized in the Linux environmentDetect malicious software open source tools,Especially those PHP backdoor class of malicious software,It can be detected,Other,If you follow the above install ClamAV,So LMD can directly call the ClamAV scanning engine fast。

LMD but did not provide source Ubuntu installation options,We need to install himself from the official download the installation package:

Note the highlighted lines,Here the version number and you want to download the actual version number of the corresponding,Otherwise, the directory can not find unzip。

After installation,You can be performed h a The directory path can be scanned with the command post,If not,It defaults to / home,Scan results similar to the following:

Scan using LMD / home

Scan using LMD / home

 

Original article written by Gerber drop-off:R0uter's Blog » Use ClamAV and Linux Malware Detection (LMD) Protect your servers

Reproduced Please keep the source and description link:https://www.logcg.com/archives/3268.html

About the Author

R0uter

The non-declaration,I have written articles are original,Reproduced, please indicate the link on this page and my name。

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *