Hi,
die Integration von Clamav in Samba via VFS-Objekt funktioniert nur, wenn samba mit VFS Support compiliert wurde.
Ob Samba mit VFS fuer clamav erstellt wurde kann man mit
/usr/local/samba/sbin/smbd -b | grep clam
herausfinden.
In der von QNAP eingesetzten Version 3.2.24 fehlt die Unterstützung. In der der von Terz beschriebenen Version 3.2.15-1 müsste man mal nachsehen.
Falls Samba 3.2.15-1 die Unterstuetzung fuer Clamav beinhalte, dann kann man das ontime scanning wie folgt konfigurieren:
In der smb.conf
[share]vfs objects = vscan-clamavvscan-clamav: config-file = /etc/samba/vscan-clamav.conf
Die Datei vscan-clamav.conf mit folgendem Inhalt anlegen.
<title>VFS: Vscan ClamAV Control File</title>## /etc/samba/vscan-clamav.conf#[samba-vscan]; run-time configuration for vscan-samba using; clamd; all options are set to default values; do not scan files larger than X bytes. If set to 0 (default),; this feature is disable (i.e. all files are scanned)max file size = 10485760; log all file access (yes/no). If set to yes, every access will; be logged. If set to no (default), only access to infected files; will be loggedverbose file logging = no; if set to yes (default), a file will be scanned while openingscan on open = yes; if set to yes, a file will be scanned while closing (default is yes)scan on close = yes; if communication to clamd fails, should access to file denied?; (default: yes)deny access on error = no; if daemon failes with a minor error (corruption, etc.),; should access to file denied?; (default: yes)deny access on minor error = no; send a warning message via Windows Messenger service; when virus is found?; (default: yes)send warning message = yes; what to do with an infected file; quarantine: try to move to quantine directory; delete: delete infected file; nothing: do nothing (default)infected file action = quarantine; where to put infected files - you really want to change this!quarantine directory = /opt/clamav/quarantine; prefix for files in quarantinequarantine prefix = vir-; as Windows tries to open a file multiple time in a (very) short time; of period, samba-vscan use a last recently used file mechanism to avoid; multiple scans of a file. This setting specified the maximum number of; elements of the last recently used file list. (default: 100)max lru files entries = 100; an entry is invalidad after lru file entry lifetime (in seconds).; (Default: 5)lru file entry lifetime = 5; exclude files from being scanned based on the MIME-type! Semi-colon; seperated list (default: empty list). Use this with care!exclude file types =; socket name of clamd (default: /var/run/clamd). Setting will be ignored if; libclamav is usedclamd socket name = /tmp/clamd; limits, if vscan-clamav was build for using the clamav library (libclamav); instead of clamd; maximum number of files in archive (default: 1000)libclamav max files in archive = 1000; maximum archived file size, in bytes (default: 10 MB)libclamav max archived file size = 5242880; maximum recursion level (default: 5)libclamav max recursion level = 5
Jetzt noch mit
die Syntax prüfen. Samba durchstarten und schauen ob alles funktioniert.
Hab aber wenig Hoffnung, dass das klappt.
Gruss
Uli