This article originated inR0uter's Blog,ClickView original。
Normal,Speaking of viruses, Trojans,People will probably think of Windows,In fact, as long as the operating system,There will be loopholes,So long as the operating system was used,Then some people will take advantage of this loophole to develop malware (such as viruses, Trojans)。In short,Since the Windows operating system users is far greater than macOS and various Unix-like,So many people think the latter even immune to the virus。
Not really,Although Linux has a comprehensive rights management,But specific malware is still possible invasion - especially the server。
Before I wroteAfter purchasing a VPS you should spare security measures,This time we take a look at how to scan for viruses or Trojan on the server。
CalmAV
CalmAV It is an open source virus scanning engine,It has daily updates of virus signatures,And can be installed directly from the source Ubuntu:
|
1 |
apt install clamav |
When the installation has been built with the latest virus signatures,However, there is a tool called ClamAV freshcalm,It is used to update the virus signature database,But usually you do not need to manually execute it,By default it has been launched in the form of system services,So you do not need to be concerned about virus database updates,It is fully automated incremental update。
In short,After installed can use the command clamscan -r --bell -i /home To perform the scan,Scanning path can be arbitrarily set,You can also set the root directory / in order to achieve a comprehensive scan。among them–bell -i indicate they are suspicious file alerts and displays the file path。
Use CalmAV scan / home
Linux Malware Detection (LMD)
As the name suggests,It is specialized in the Linux environmentDetect malicious software open source tools,Especially those PHP backdoor class of malicious software,It can be detected,Other,If you follow the above install ClamAV,So LMD can directly call the ClamAV scanning engine fast。
LMD but did not provide source Ubuntu installation options,We need to install himself from the official download the installation package:
|
1 2 3 4 |
wget http://www.rfxn.com/downloads/maldetect-current.tar.gz tar -xvf maldetect-current.tar.gz cd maldetect-1.6.4 ./install sh |
Note the highlighted lines,Here the version number and you want to download the actual version number of the corresponding,Otherwise, the directory can not find unzip。
After installation,You can be performed h –a The directory path can be scanned with the command post,If not,It defaults to / home,Scan results similar to the following:
Scan using LMD / home
Original article written by LogStudio:R0uter's Blog » Use ClamAV and Linux Malware Detection (LMD) Protect your servers
Reproduced Please keep the source and description link:https://www.logcg.com/archives/3268.html
😊 So the question is,Despise source in the too old,what can we do about it
Lane is the latest source of ah,After downloading freshcalm will automatically update the contents of the increment。
😂 I mean, make a wave ah
Big brother to kneel。