194 lines
6.7 KiB
Django/Jinja
194 lines
6.7 KiB
Django/Jinja
# Path to the database directory.
|
|
# WARNING: It must match clamd.conf's directive!
|
|
# Default: hardcoded (depends on installation options)
|
|
DatabaseDirectory /var/lib/clamav
|
|
|
|
# Path to the log file (make sure it has proper permissions)
|
|
# Default: disabled
|
|
#UpdateLogFile /var/log/freshclam.log
|
|
|
|
# Maximum size of the log file.
|
|
# Value of 0 disables the limit.
|
|
# You may use 'M' or 'm' for megabytes (1M = 1m = 1048576 bytes)
|
|
# and 'K' or 'k' for kilobytes (1K = 1k = 1024 bytes).
|
|
# in bytes just don't use modifiers. If LogFileMaxSize is enabled,
|
|
# log rotation (the LogRotate option) will always be enabled.
|
|
# Default: 1M
|
|
#LogFileMaxSize 2M
|
|
|
|
# Log time with each message.
|
|
# Default: no
|
|
#LogTime yes
|
|
|
|
# Enable verbose logging.
|
|
# Default: no
|
|
#LogVerbose yes
|
|
|
|
# Use system logger (can work together with UpdateLogFile).
|
|
# Default: no
|
|
LogSyslog yes
|
|
|
|
# Specify the type of syslog messages - please refer to 'man syslog'
|
|
# for facility names.
|
|
# Default: LOG_LOCAL6
|
|
#LogFacility LOG_MAIL
|
|
|
|
# Enable log rotation. Always enabled when LogFileMaxSize is enabled.
|
|
# Default: no
|
|
#LogRotate yes
|
|
|
|
# This option allows you to save the process identifier of the daemon
|
|
# Default: disabled
|
|
#PidFile /var/run/freshclam.pid
|
|
|
|
# By default when started freshclam drops privileges and switches to the
|
|
# "clamav" user. This directive allows you to change the database owner.
|
|
# Default: clamav (may depend on installation options)
|
|
#DatabaseOwner clamupdate
|
|
|
|
# Use DNS to verify virus database version. Freshclam uses DNS TXT records
|
|
# to verify database and software versions. With this directive you can change
|
|
# the database verification domain.
|
|
# WARNING: Do not touch it unless you're configuring freshclam to use your
|
|
# own database verification domain.
|
|
# Default: current.cvd.clamav.net
|
|
#DNSDatabaseInfo current.cvd.clamav.net
|
|
|
|
# database.clamav.net is now the primary domain name to be used world-wide.
|
|
# Now that CloudFlare is being used as our Content Delivery Network (CDN),
|
|
# this one domain name works world-wide to direct freshclam to the closest
|
|
# geographic endpoint.
|
|
DatabaseMirror database.clamav.net
|
|
|
|
# How many attempts to make before giving up.
|
|
# Default: 3 (per mirror)
|
|
#MaxAttempts 5
|
|
|
|
# With this option you can control scripted updates. It's highly recommended
|
|
# to keep it enabled.
|
|
# Default: yes
|
|
ScriptedUpdates yes
|
|
|
|
# By default freshclam will keep the local databases (.cld) uncompressed to
|
|
# make their handling faster. With this option you can enable the compression;
|
|
# the change will take effect with the next database update.
|
|
# Default: no
|
|
#CompressLocalDatabase no
|
|
|
|
# With this option you can provide custom sources (http:// or file://) for
|
|
# database files. This option can be used multiple times.
|
|
# Default: no custom URLs
|
|
#DatabaseCustomURL http://myserver.com/mysigs.ndb
|
|
#DatabaseCustomURL file:///mnt/nfs/local.hdb
|
|
|
|
# This option allows you to easily point freshclam to private mirrors.
|
|
# If PrivateMirror is set, freshclam does not attempt to use DNS
|
|
# to determine whether its databases are out-of-date, instead it will
|
|
# use the If-Modified-Since request or directly check the headers of the
|
|
# remote database files. For each database, freshclam first attempts
|
|
# to download the CLD file. If that fails, it tries to download the
|
|
# CVD file. This option overrides DatabaseMirror, DNSDatabaseInfo
|
|
# and ScriptedUpdates. It can be used multiple times to provide
|
|
# fall-back mirrors.
|
|
# Default: disabled
|
|
#PrivateMirror mirror1.mynetwork.com
|
|
#PrivateMirror mirror2.mynetwork.com
|
|
|
|
# Number of database checks per day.
|
|
# Default: 12 (every two hours)
|
|
Checks {{ clamav_freshclam_check_frequency }}
|
|
|
|
{% if clamav_freshclam_use_proxy %}
|
|
# Proxy settings
|
|
# Default: disabled
|
|
HTTPProxyServer {{ clamav_freshclam_proxy_host }}
|
|
HTTPProxyPort {{ clamav_freshclam_proxy_port }}
|
|
{% if clamav_freshclam_use_proxy_auth %}
|
|
HTTPProxyUsername {{ clamav_freshclam_proxy_user }}
|
|
HTTPProxyPassword {{ clamav_freshclam_proxy_pwd }}
|
|
{% endif %}
|
|
{% endif %}
|
|
|
|
# If your servers are behind a firewall/proxy which applies User-Agent
|
|
# filtering you can use this option to force the use of a different
|
|
# User-Agent header.
|
|
# Default: clamav/version_number
|
|
#HTTPUserAgent SomeUserAgentIdString
|
|
|
|
# Use aaa.bbb.ccc.ddd as client address for downloading databases. Useful for
|
|
# multi-homed systems.
|
|
# Default: Use OS'es default outgoing IP address.
|
|
#LocalIPAddress aaa.bbb.ccc.ddd
|
|
|
|
{% if clamav_freshclam_reload_clamd %}
|
|
# Send the RELOAD command to clamd.
|
|
# Default: no
|
|
NotifyClamd {{ clamav_clamd_conf_file }}
|
|
{% endif %}
|
|
|
|
# Run command after successful database update.
|
|
# Default: disabled
|
|
#OnUpdateExecute command
|
|
|
|
# Run command when database update process fails.
|
|
# Default: disabled
|
|
#OnErrorExecute command
|
|
|
|
# Run command when freshclam reports outdated version.
|
|
# In the command string %v will be replaced by the new version number.
|
|
# Default: disabled
|
|
#OnOutdatedExecute command
|
|
|
|
# Don't fork into background.
|
|
# Default: no
|
|
#Foreground yes
|
|
|
|
# Enable debug messages in libclamav.
|
|
# Default: no
|
|
#Debug yes
|
|
|
|
# Timeout in seconds when connecting to database server.
|
|
# Default: 30
|
|
#ConnectTimeout 60
|
|
|
|
# Timeout in seconds when reading from database server.
|
|
# Default: 30
|
|
#ReceiveTimeout 60
|
|
|
|
# With this option enabled, freshclam will attempt to load new
|
|
# databases into memory to make sure they are properly handled
|
|
# by libclamav before replacing the old ones.
|
|
# Default: yes
|
|
#TestDatabases yes
|
|
|
|
# This option enables support for Google Safe Browsing. When activated for
|
|
# the first time, freshclam will download a new database file
|
|
# (safebrowsing.cvd) which will be automatically loaded by clamd and
|
|
# clamscan during the next reload, provided that the heuristic phishing
|
|
# detection is turned on. This database includes information about websites
|
|
# that may be phishing sites or possible sources of malware. When using this
|
|
# option, it's mandatory to run freshclam at least every 30 minutes.
|
|
# Freshclam uses the ClamAV's mirror infrastructure to distribute the
|
|
# database and its updates but all the contents are provided under Google's
|
|
# terms of use. See https://www.google.com/transparencyreport/safebrowsing
|
|
# and https://www.clamav.net/documents/safebrowsing
|
|
# for more information.
|
|
# Default: disabled
|
|
SafeBrowsing {{ clamav_freshclam_enable_safebrowsing }}
|
|
|
|
# This option enables downloading of bytecode.cvd, which includes additional
|
|
# detection mechanisms and improvements to the ClamAV engine.
|
|
# Default: enabled
|
|
Bytecode {{ clamav_freshclam_enable_bytecode }}
|
|
|
|
{% if clamav_freshclam_additional_databases is defined %}
|
|
# Download an additional 3rd party signature database distributed through
|
|
# the ClamAV mirrors.
|
|
# This option can be used multiple times.
|
|
#ExtraDatabase dbname1
|
|
#ExtraDatabase dbname2
|
|
{% for clamdb in clamav_freshclam_additional_databases %}
|
|
ExtraDatabase {{ clamdb }}
|
|
{% endfor %}
|
|
{% endif %}
|