[clamav-users] Antivirus Un-Killable or Password Protect

G.W. Haywood clamav at jubileegroup.co.uk
Wed Jan 13 13:11:15 EST 2016


Hi there,

On Wed, 13 Jan 2016, vinod boppanawrote:

> I had installed ClamAV on few Linux Machines. Is it possible to set
> the configuration in such a way that a normal user of the machine
> cannot kill the AntiVirus process (or even a password protect)?

The normal procedure would be to create a special user to start the
ClamAV process, for example user 'clamav'.  In this case only users
with permissions to kill that process would be able to do so.  It's up
to you how you set your other users' permissions, but by default you
would not normally give unprivileged users the right to kill processes
owned by other users.

The clamav process does, however need to be able to do its job.  Many
people run ClamAV as root, and your ordinary users would not then be
able to kill the process, but I would recommend against that in most
situations.  It might be necessary for example if only root could read
the data which ClamAV needs to read to perform its function.  You have
not said how you are using ClamAV so I can't make any recommendations.

Why have you installed ClamAV on your Linux machines?

-- 

73,
Ged.



More information about the clamav-users mailing list