--- clamav-0.94.2/etc/clamd.conf.orig 2008-11-22 00:24:47 +0200 +++ clamav-0.94.2/etc/clamd.conf 2008-11-26 17:28:21 +0200 @@ -1,17 +1,13 @@ ## -## Example config file for the Clam AV daemon +## Config file for the Clam AV daemon ## Please read the clamd.conf(5) manual before editing this file. ## - -# Comment or remove the line below. -Example - # Uncomment this option to enable logging. # LogFile must be writable for the user running daemon. # A full path is required. # Default: disabled -#LogFile /tmp/clamd.log +LogFile /var/log/clamav/clamd.log # By default the log file is locked for writing - the lock protects against # running clamd multiple times (if want to run another clamd, please @@ -27,11 +23,11 @@ # and 'K' or 'k' for kilobytes (1K = 1k = 1024 bytes). To specify the size # in bytes just don't use modifiers. # Default: 1M -#LogFileMaxSize 2M +LogFileMaxSize 0 # Log time with each message. # Default: no -#LogTime yes +LogTime yes # Also log clean files. Useful in debugging but drastically increases the # log size. @@ -40,21 +36,21 @@ # Use system logger (can work together with LogFile). # Default: no -#LogSyslog yes +LogSyslog yes # Specify the type of syslog messages - please refer to 'man syslog' # for facility names. # Default: LOG_LOCAL6 -#LogFacility LOG_MAIL +LogFacility LOG_MAIL # Enable verbose logging. # Default: no -#LogVerbose yes +LogVerbose yes # This option allows you to save a process identifier of the listening # daemon (main thread). # Default: disabled -#PidFile /var/run/clamd.pid +PidFile /var/run/clamav/clamd.pid # Optional path to the global temporary directory. # Default: system specific (usually /tmp or /var/tmp). @@ -62,18 +58,18 @@ # Path to the database directory. # Default: hardcoded (depends on installation options) -#DatabaseDirectory /var/lib/clamav +DatabaseDirectory /var/lib/clamav # The daemon can work in local mode, network mode or both. # Due to security reasons we recommend the local mode. # Path to a local socket file the daemon will listen on. # Default: disabled (must be specified by a user) -LocalSocket /tmp/clamd.socket +LocalSocket /var/lib/clamav/clamd.socket # Remove stale socket after unclean shutdown. # Default: yes -#FixStaleSocket yes +FixStaleSocket yes # TCP port address. # Default: no @@ -107,7 +103,7 @@ # Maximum number of threads running at the same time. # Default: 10 -#MaxThreads 20 +MaxThreads 50 # Waiting for data from a client socket will timeout after this time (seconds). # Value of 0 disables the timeout. @@ -147,11 +143,11 @@ # Run as another user (clamd must be started by root for this option to work) # Default: don't drop privileges -#User clamav +User mail # Initialize supplementary group access (clamd must be started by root). # Default: no -#AllowSupplementaryGroups no +AllowSupplementaryGroups yes # Stop daemon when libclamav reports out of memory condition. #ExitOnOOM yes @@ -190,7 +186,7 @@ # ClamAV uses special algorithms to provide accurate detection. This option # controls the algorithmic detection. # Default: yes -#AlgorithmicDetection yes +AlgorithmicDetection yes ## @@ -203,12 +199,12 @@ # required for decompression of popular executable packers such as UPX, FSG, # and Petite. # Default: yes -#ScanPE yes +ScanPE yes # Executable and Linking Format is a standard format for UN*X executables. # This option allows you to control the scanning of ELF files. # Default: yes -#ScanELF yes +ScanELF yes # With this option clamav will try to detect broken executables (both PE and # ELF) and mark them as Broken.Executable. @@ -223,7 +219,7 @@ # This option enables scanning of OLE2 files, such as Microsoft Office # documents and .msi files. # Default: yes -#ScanOLE2 yes +ScanOLE2 yes # This option enables scanning within PDF files. # Default: yes @@ -236,7 +232,7 @@ # Enable internal e-mail scanner. # Default: yes -#ScanMail yes +ScanMail yes # If an email contains URLs ClamAV can download and scan them. # WARNING: This option may open your system to a DoS attack. @@ -324,7 +320,7 @@ # Perform HTML normalisation and decryption of MS Script Encoder code. # Default: yes -#ScanHTML yes +ScanHTML yes ## @@ -333,7 +329,7 @@ # ClamAV can scan within archives and compressed files. # Default: yes -#ScanArchive yes +ScanArchive yes # Use slower but memory efficient decompression algorithm. # only affects the bzip2 decompressor.