* New upstream version (closes: #497662, #497773) - lots of new options for clamd.conf - fixes CVEs CVE-2008-3912, CVE-2008-3913, CVE-2008-3914, and CVE-2008-1389 * No longer supports --unzip option, so typo is gone (closes: #496276) * Translations: - sv (thanks Martin Bagge <brother@bsnet.se>) (closes: #491760)
Exclude a specific PUA category. This option can be used multiple times. See http://www.clamav.net/support/pua for the complete list of PUA
77
.TP
78
\fB\-\-include\-pua=CATEGORY\fR
79
Only include a specific PUA category. This option can be used multiple times. See http://www.clamav.net/support/pua for the complete list of PUA
80
.TP
81
\fB\-\-detect\-structured\fR
82
Enable the DLP (Data Loss Prevention) module which provides detection of SSN and Credit Card numbers.
83
.TP
84
\fB\-\-structured\-ssn\-format=X\fR
85
X=0: search for valid SSNs formatted as xxx-yy-zzzz (normal); X=1: search for valid SSNs formatted as xxxyyzzzz (stripped); X=2: search for both formats. Default is 0.
86
.TP
87
\fB\-\-structured\-ssn\-count=#n\fR
88
This option sets the lowest number of Social Security Numbers found in a file to generate a detect (default: 3).
89
.TP
90
\fB\-\-structured\-cc\-count=#n\fR
91
This option sets the lowest number of Credit Card numbers found in a file to generate a detect (default: 3).
92
.TP
75
93
\fB\-\-no\-mail\fR
76
94
Disable scanning of mail files.
77
95
.TP
81
99
\fB\-\-no\-phishing\-scan\-urls\fR
82
100
Disable url-based heuristic phishing detection. This disables Phishing.Heuristics.Email.*
83
101
.TP
84
\fB\-\-no\-phishing\-restrictedscan\fR
85
Enable url-based heuristic phishing detection for all domains (might lead to false positives!).
102
\fB\-\-heuristic\-scan\-precedence\fR
103
Allow heuristic match to take precedence. When enabled, if a heuristic scan (such as phishingScan) detects a possible virus/phish it will stop scan immediately. Recommended, saves CPU scan-time. When disabled, virus/phish detected by heuristic scans will be reported only at the end of a scan. If an archive contains both a heuristically detected virus/phish, and a real malware, the real malware will be reported Keep this disabled if you intend to handle "*.Heuristics.*" viruses differently from "real" malware. If a non-heuristically-detected virus (signature-based) is found first, the scan is interrupted immediately, regardless of this config option.
86
104
.TP
87
105
\fB\-\-phishing\-ssl\fR
88
106
Always block SSL mismatches in URLs (might lead to false positives!).
134
152
.TP
135
153
\fB\-\-max\-dir\-recursion=#n\fR
136
154
Maximum depth directories are scanned at (default: 15).
137
.TP
138
\fB\-\-unzip[=FULLPATH]\fR
139
In most cases you don't need this option \- the built\-in unarchiver will extract Zip archives. Howvere, this option may be used as a backup for internal unpacker \- see the full documentation for more information. When enabled without an argument, unzip program will be searched in $PATH. If unzip cannot be found in $PATH, you must force it with =pathname. Remember about '=' between the option and the argument.
140
.TP
141
\fB\-\-unrar[=FULLPATH]\fR
142
Scan .rar files. In most cases the unpacker built into libclamav is enough.
143
.TP
144
\fB\-\-arj[=FULLPATH]\fR
145
Scan .arj files.
146
.TP
147
\fB\-\-unzoo[=FULLPATH]\fR
148
Scan .zoo files.
149
.TP
150
\fB\-\-lha[=FULLPATH]\fR
151
Scan .lzh files.
152
.TP
153
\fB\-\-jar[=FULLPATH]\fR
154
clamscan uses unzip for .jar files, so in some cases you may need to pass a full path to unzip. In most cases the unpacker built into libclamav is enough.
155
.TP
156
\fB\-\-deb[=FULLPATH]\fR
157
This option supports debian binary packages. Implies \-\-tgz, but doesn't conflict with \-\-tgz=FULLPATH. It requires ar utility.
158
.TP
159
\fB\-\-tar[=FULLPATH]\fR
160
This option supports non\-compressed tar archives. In most cases the unpacker built into libclamav is enough.
161
.TP
162
\fB\-\-tgz[=FULLPATH]\fR
163
This option supports tar.gz and .tgz files. You need GNU tar, on non\-Linux system you probably have it installed as gtar. If it's in $PATH, please use \-\-tgz=gtar in other case please pass a full path. In most cases the unpacker built into libclamav is enough.
164
155
.SH "EXAMPLES"
165
156
.LP
166
157
.TP
213
204
.TP
214
205
58: I/O error, please check your file system.
215
206
.TP
216
59: Can't get information about current user from /etc/passwd.
217
.TP
218
60: Can't get information about user '@CLAMAVUSER@' from /etc/passwd.