ClamAV's On-Access scanning can detect the known malwares/virus in real time. Any Ubuntu Linux system can install this script when FANOTIFY is configured in your Linux kernel.
According to the developers that ClamAV is mainly designed for files upload, files downloads and file transfers.
cat /boot/config-$(uname -r) | grep FANOTIFY
The suitable display is :
CONFIG_FANOTIFY=y
CONFIG_FANOTIFY_ACCESS_PERMISSIONS=y
When you see the following message, your Linux system is not suitable for this script.
CONFIG_FANOTIFY_ACCESS_PERMISSIONS is not set
- ClamAV 1.3.1
- Ubuntu 22.04.4 LTS
Remarks : ClamAV uses about 3GB RAM.
- Updated to ClamAV 1.3.1
- Updated to ClamAV 1.3.0
- Updated to ClamAV 1.2.1
- Updated to ClamAV 1.2.0
- Minor modified
- Updated to ClamAV 1.1.1
- Updated to ClamAV 1.1.0
- Updated to ClamAV 1.0.1
- Minor modified
- Add configure file
- Add uninstallers
- First release for ClamAV 1.0.0
Remarks : This script is developed by Samiux and it is released under GPLv3. It is an Open Source Project.
Download the script.
git clone https://github.com/samiux/lychee
Edit the related parts at the top parts of the script.
cd lychee
nano lychee.conf
Then run the script to install ClamAV On-Access scanning.
sudo chmod +x clamav-installer
sudo ./clamav-installer
Please allow about 1 to 2 minutes for ClamAV to load the signatures.
You can run this script at any time on the same Linux system box without any harm.
When only update or just simply download the latest ClamAV debian package from ClamAV Releases and install the package by issuing the following command, for example.
sudo dpkg -i clamav-1.3.1.linux.x86_64.deb
If you require to make change to the clamd.conf (for example, include or exclude some directories), you can edit it.
sudo nano /usr/local/etc/clamd.conf
After the edit, you should restart the ClamAV On-Access function.
sudo systemctl restart clamav-clamonacc.service
To verify the startup.
sudo cat /var/log/clamav/clamonacc.log
sudo chmod +x deb-clamav-uninstaller
sudo ./deb-clamav-uninstaller
sudo rm -R lychee
BUG : /home and it's sub-directories cannot be used in OnAccessIncludePath- ClamAV uses at least 3GB RAM.
Non-existent directory will cause high CPU usage.- Cannot detect virus on Pen Drive (i.e. external mounted directories).