LogFile /var/log/clamav/clamd.log LogFileUnlock no LogFileMaxSize 2M LogTime yes LogClean no LogSyslog no LogFacility LOG_LOCAL6 LogVerbose no LogRotate no PreludeEnable no PreludeAnalyzerName ClamAV ExtendedDetectionInfo yes TemporaryDirectory /tmp DatabaseDirectory /var/lib/clamav OfficialDatabaseOnly no #FailIfCvdOlderThan 7 User clamav # Default: disabled (must be specified by a user) LocalSocket /var/run/clamav/clamd.sock #LocalSocket /tmp/clamd.sock # Default: disabled (the primary group of the user running clamd) LocalSocketGroup clamav # Default: disabled (socket is world accessible) #LocalSocketMode 660 #FixStaleSocket yes # Default: no #TCPSocket 3310 # Default: no #TCPAddr localhost # Default: 200 #MaxConnectionQueueLength 30 # Default: 100M #StreamMaxLength 25M # Default: 1024 #StreamMinPort 30000 # Default: 2048 #StreamMaxPort 32000 # Default: 10 #MaxThreads 20 # Default: 120 #ReadTimeout 300 CommandReadTimeout 30 # Default: 500 #SendBufTimeout 200 # Maximum number of queued items (including those being processed by # MaxThreads threads). # It is recommended to have this value at least twice MaxThreads if possible. # WARNING: you shouldn't increase this too much to avoid running out of file # descriptors, the following condition should hold: # MaxThreads*MaxRecursion + (MaxQueue - MaxThreads) + 6< RLIMIT_NOFILE (usual # max is 1024). # # Default: 100 #MaxQueue 200 # Default: 30 #IdleTimeout 60 # Default: scan all ExcludePath ^/proc/ ExcludePath ^/sys/ MaxDirectoryRecursion 20 # Default: no #FollowDirectorySymlinks yes # Default: no #FollowFileSymlinks yes CrossFilesystems yes SelfCheck 600 # Default: yes #ConcurrentDatabaseReload no # Default: no #VirusEvent /usr/local/bin/send_sms 123456789 "VIRUS ALERT: %v in %f" #ExitOnOOM yes # Default: no #Foreground yes # Default: no #Debug yes # Default: no #LeaveTemporaryFiles yes # Default: no #GenerateMetadataJson yes # Default: yes #AllowAllMatchScan no DetectPUA yes # Default: Load all categories (if DetectPUA is activated) ExcludePUA Tool ForceToDisk no # Default: no #DisableCache yes #CacheSize 65536 HeuristicAlerts yes # Default: no #HeuristicScanPrecedence yes ## ## Heuristic Alerts ## # Default: no #AlertBrokenExecutables yes # Default: no #AlertBrokenMedia yes # Default: no #AlertEncrypted yes # Default: no #AlertEncryptedArchive yes # Default: no #AlertEncryptedDoc yes # Default: no AlertOLE2Macros yes # Default: no #AlertPhishingSSLMismatch yes # Default: no #AlertPhishingCloak yes # Default: no #AlertPartitionIntersection yes ## ## Executable files ## # Default: yes ScanPE yes # Default: no #DisableCertCheck yes # Default: yes ScanELF yes ## ## Documents ## ScanOLE2 yes ScanPDF yes ScanSWF yes ScanXMLDOCS yes ScanHWP3 yes ## ## Mail files ## ScanMail yes # Default: no #ScanPartialMessages yes PhishingSignatures yes PhishingScanURLs yes ## ## Data Loss Prevention (DLP) ## # Default: No #StructuredDataDetection yes # Default: 3 StructuredMinCreditCardCount 5 # Default: no #StructuredCCOnly yes # Default: 3 StructuredMinSSNCount 5 StructuredSSNFormatNormal yes StructuredSSNFormatStripped yes ## ## HTML ## ScanHTML yes ## ## Archives ## ScanArchive yes ## ## Limits ## # Default: 120000 #MaxScanTime 300000 # Default: 400M MaxScanSize 500M # Default: 100M MaxFileSize 400M # Default: 17 #MaxRecursion 10 # Default: 10000 #MaxFiles 15000 # Default: 40M MaxEmbeddedPE 80M # Default: 40M #MaxHTMLNormalize 100M # Default: 8M #MaxHTMLNoTags 16M # Default: 20M #MaxScriptNormalize 50M # Default: 1M #MaxZipTypeRcg 1M # Default: 50 #MaxPartitions 128 # Default: 100 #MaxIconsPE 200 # Default: 16 #MaxRecHWP3 16 # Default: 100000 #PCREMatchLimit 20000 # Default: 2000 #PCRERecMatchLimit 10000 # Default: 100M #PCREMaxFileSize 400M # Default: no AlertExceedsMax yes ## ## On-access Scan Settings ## # Default: 5M #OnAccessMaxFileSize 10M # Default: 5 #OnAccessMaxThreads 10 # Default: 5000 (5 seconds) # OnAccessCurlTimeout 10000 # Default: no #OnAccessDisableDDD yes # Default: disabled #OnAccessIncludePath /home #OnAccessIncludePath /students # Default: disabled #OnAccessExcludePath /home/user # Default: no OnAccessPrevention yes # Default: no #OnAccessDenyOnError yes # Default: no #OnAccessExtraScanning yes # Default: disabled #OnAccessMountPath / #OnAccessMountPath /home/user # Default: no #OnAccessExcludeRootUID no # Default: disabled #OnAccessExcludeUID -1 # Default: disabled OnAccessExcludeUname clamav # Default: 0 #OnAccessRetryAttempts 3 ## ## Bytecode ## Bytecode yes BytecodeSecurity TrustSigned BytecodeUnsigned no # Default: 10000 # BytecodeTimeout 1000