Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The eicar file is removed, but it does not show in quarantine or in nok directories #4

Open
paulovitorbal opened this issue Jul 21, 2020 · 0 comments
Open

The eicar file is removed, but it does not show in quarantine or in nok directories #4

paulovitorbal opened this issue Jul 21, 2020 · 0 comments

Comments

@paulovitorbal
Copy link

Describe the bug
The eicar file is removed, but it does not show in quarantine or in nok directories;

To Reproduce
I am using it with docker-compose as follows:

  docker-av:
    image: rordi/docker-antivirus
    container_name: docker-av
    volumes:
      - ./upload/queue:/data/av/queue
      - ./upload/ok:/data/av/ok
      - ./upload/nok:/data/av/nok

I am moving files to my local ./upload/queue. If the file is clean, it shows up on ok, if the file is bad it does not show in nok nor in quarantine (when I check inside the container).

Expected behavior
The file is moved either to quarentine or nok

Screenshots

root@ab95d6831cb6:/usr/local/bin# ls -R /data/
/data/:
av

/data/av:
nok  ok  quarantine  queue  scan

/data/av/nok:

/data/av/ok:
182be0c5cdcd5072bb1864cdee4d3d6e.png  a5bfc9e07964f8dddeb95fc584cd965d.png  teste.txt
6364d3f0f495b6ab9dcf8d3b5c6e0b01.png  faacbcd5bf1d018912c116bf2783e9a1.png  teste2

/data/av/quarantine:

/data/av/queue:

/data/av/scan:
info
root@ab95d6831cb6:/usr/local/bin# cat /data/av/scan/info 
[2020-07-21 17:33:35]
WARNING: Ignoring deprecated option --enable-stats

----------- SCAN SUMMARY -----------
Known viruses: 8117786
Engine version: 0.100.2
Scanned directories: 1
Scanned files: 2
Infected files: 0
Data scanned: 0.03 MB
Data read: 0.03 MB (ratio 1.00:1)
Time: 60.735 sec (1 m 0 s)
Linux Malware Detect v1.6.4
            (C) 2002-2019, R-fx Networks <proj@rfxn.com>
            (C) 2019, Ryan MacDonald <ryan@rfxn.com>
This program may be freely redistributed under the terms of the GNU GPL v2

maldet(79937): {scan} signatures loaded: 17045 (14225 MD5 | 2035 HEX | 785 YARA | 0 USER)
maldet(79937): {scan} building file list for /data/av/scan/, this might take awhile...
maldet(79937): {scan} setting nice scheduler priorities for all operations: cpunice -17 , ionice 0
maldet(79937): {scan} scan returned empty file list; check that path exists and contains files in scope of configuration.
root@ab95d6831cb6:/usr/local/bin#
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@paulovitorbal