7
7
# Even minor modifications require translation updates and such
8
8
# changes should be coordinated with translators and reviewers.
10
Template: clamav-base/debconf
13
_Description: Handle the configuration file automatically?
14
Some options must be configured for clamav-base.
16
The ClamAV suite won't work if it isn't configured. If you do not
17
configure it automatically, you'll have to configure
18
/etc/clamav/clamd.conf manually or run 'dpkg-reconfigure clamav-base'
19
later. In any case, manual changes in /etc/clamav/clamd.conf will
22
Template: clamav-base/TcpOrLocal
26
_Description: Socket type:
27
Please choose the type of socket clamd will be listening on.
29
If you choose TCP, clamd can be accessed remotely. If you choose local
30
UNIX sockets, clamd can be accessed through a file. Local UNIX sockets
31
are recommended for security reasons.
33
Template: clamav-base/LocalSocket
35
Default: /var/run/clamav/clamd.ctl
36
_Description: Local (UNIX) socket clamd will listen on:
38
Template: clamav-base/FixStaleSocket
41
_Description: Gracefully handle left-over UNIX socket files?
43
Template: clamav-base/LocalSocketGroup
46
_Description: Group owner of clamd local (UNIX) socket:
48
Template: clamav-base/LocalSocketMode
51
_Description: Creation mode for clamd local (UNIX) socket:
53
Template: clamav-base/TCPSocket
56
_Description: TCP port clamd will listen on:
58
Template: clamav-base/TCPAddr
61
_Description: IP address clamd will listen on:
62
Enter "any" to listen on every IP address configured. If you want
63
to listen on a single address or host name, enter it here.
10
# This template is needed in common_function, so it has to be part of clamav-base.
65
11
Template: clamav-base/numinfo
67
13
_Description: Mandatory numeric value
68
14
This question requires a numeric answer.
70
Template: clamav-base/ScanMail
73
_Description: Do you want to enable mail scanning?
74
This option enables scanning mail contents for viruses.
75
You need this option enabled if you want to use clamav-milter, or if
76
you want to enable phishing checks.
78
Template: clamav-base/ScanArchive
81
_Description: Do you want to enable archive scanning?
82
If archive scanning is enabled, the daemon will extract archives such as
83
bz2, tar.gz, deb and many more, to check their contents for viruses.
85
For more information about what archives are supported, see
86
/usr/share/doc/clamav-docs/clamdoc.pdf or the manpage clamscan(5).
88
Template: clamav-base/StreamMaxLength
91
_Description: Maximum stream length (unit Mb) allowed:
92
You can set a limit on the stream length that can be scanned.
94
Template: clamav-base/MaxDirectoryRecursion
97
_Description: Maximum directory depth that will be allowed:
98
This value must be set if you want to allow the daemon to follow
101
Entering '0' will disable this limit.
103
Template: clamav-base/FollowDirectorySymlinks
106
_Description: Do you want the daemon to follow directory symlinks?
108
Template: clamav-base/FollowFileSymlinks
111
_Description: Do you want the daemon to follow regular file symlinks?
113
Template: clamav-base/ReadTimeout
116
_Description: Timeout for stopping the thread-scanner (seconds):
117
Entering '0' will disable the timeout.
119
Template: clamav-base/MaxThreads
122
_Description: Number of threads for the daemon:
124
Template: clamav-base/MaxConnectionQueueLength
127
_Description: Number of pending connections allowed:
129
Template: clamav-base/LogSyslog
132
_Description: Do you want to use the system logger?
133
It is possible to log the daemon activity to the system logger. This can be
134
done independently of whether you want to log activity to a special file.
136
Template: clamav-base/LogFile
138
Default: /var/log/clamav/clamav.log
139
_Description: Log file for clamav-daemon (enter none to disable):
141
Template: clamav-base/LogTime
144
_Description: Do you want to log time information with each message?
146
Template: clamav-base/LogRotate
149
_Description: Do you want to enable log rotation?
151
Template: clamav-base/ScanOnAccess
154
_Description: Do you want to enable on-access scanning?
156
Template: clamav-base/OnAccessMaxFileSize
159
_Description: Maximum file size to scan:
160
A value of 0 disables the limit.
162
Template: clamav-base/AllowAllMatchScan
165
_Description: Do you want to permit the use of the ALLMATCHSCAN command?
166
If set to no, clamd will reject any ALLMATCHSCAN command as invalid.
168
Template: clamav-base/ForceToDisk
171
_Description: Do you want memory or nested map scans to dump the content to disk?
172
If you turn on this option, more data is written to disk and is available
173
when the LeaveTemporaryFiles option is enabled.
175
Template: clamav-base/DisableCertCheck
178
_Description: Do you want to completely turn off authenticode verification?
179
Certain PE files contain an authenticode signature. By default, we check
180
the signature chain in the PE file against a database of trusted and
181
revoked certificates if the file being scanned is marked as a virus.
182
If any certificate in the chain validates against any trusted root, but
183
does not match any revoked certificate, the file is marked as whitelisted.
184
If the file does match a revoked certificate, the file is marked as virus.
186
Template: clamav-base/ScanSWF
189
_Description: Do you want to enable scanning within SWF files?
190
If you turn off this option, the original files will still be scanned, but
191
without decoding and additional processing.
193
Template: clamav-base/MaxEmbeddedPE
196
_Description: Maximum size of a file to check for embedded PE:
197
Files larger than this value will skip the additional analysis step.
198
Note: disabling this limit or setting it too high may result in severe damage
201
Template: clamav-base/MaxHTMLNormalize
204
_Description: Maximum size of a HTML file to normalize:
205
HTML files larger than this value will not be normalized or scanned.
206
Note: disabling this limit or setting it too high may result in severe damage
209
Template: clamav-base/MaxHTMLNoTags
212
_Description: Maximum size of a normalized HTML file to scan:
213
HTML files larger than this value after normalization will not be scanned.
214
Note: disabling this limit or setting it too high may result in severe damage
217
Template: clamav-base/MaxScriptNormalize
220
_Description: Maximum size of a script file to normalize:
221
Script content larger than this value will not be normalized or scanned.
222
Note: disabling this limit or setting it too high may result in severe damage
225
Template: clamav-base/MaxZipTypeRcg
228
_Description: Maximum size of a ZIP file to reanalyze type recognition:
229
ZIP files larger than this value will skip the step to potentially reanalyze as PE.
230
Note: disabling this limit or setting it too high may result in severe damage
233
Template: clamav-base/SelfCheck
236
_Description: Delay in seconds between daemon self checks:
237
During the SelfCheck the daemon checks if it needs to reload the virus
238
database. It also tries to repair problems caused by bugs in the daemon,
239
(that is, in some cases it's able to repair broken data structures).
241
Template: clamav-base/User
244
_Description: User to run clamav-daemon as:
245
It is recommended to run the ClamAV programs as a non-privileged user.
246
This will work with most MTAs with a little tweaking, but if you want to
247
use clamd for filesystem scans, running as root is probably unavoidable.
248
Please see README.Debian in the clamav-base package for details.
250
Template: clamav-base/AddGroups
252
_Description: Groups for clamav-daemon (space-separated):
253
Please enter any extra groups for clamd.
255
By default, clamd runs as a non-privileged user. If you need clamd to
256
be able to access files owned by another user (e.g., in combination with
257
an MTA), then you will need to add clamd to the group for that piece of
258
software. Please see README.Debian in the clamav-base package for details.
260
Template: clamav-base/Bytecode
263
_Description: Do you want to load bytecode from the database?
265
Template: clamav-base/BytecodeSecurity
267
__Choices: TrustSigned, Paranoid
269
_Description: Security level to apply to the bytecode:
271
- TrustSigned : trust bytecode loaded from signed virus database files,
272
but insert runtime safety checks for bytecode loaded
273
from unsigned sources
274
- Paranoid : always insert runtime checks
276
Template: clamav-base/BytecodeTimeout
279
_Description: Bytecode execution timeout in milliseconds: