How to install maldet in linux server !

Maldet also known as Linux Malware Detect virus scanner for Linux.

Go to the below path:

    cd /usr/local/src/

Download the tar file using the below link:

    wget http://www.rfxn.com/downloads/maldetect-current.tar.gz

Extract the file using the below command:

    tar -xzf maldetect-current.tar.gz

go to the maldet folder:

    cd maldetect-*

Now, run the below command to install maldet:

    sh ./install.sh or sudo sh ./install.sh

It will give below output:

    Linux Malware Detect v1.3.4
    (C) 1999-2010, R-fx Networks
    (C) 2010, Ryan MacDonald
    inotifywait (C) 2007, Rohan McGovern
    This program may be freely redistributed under the terms of the GNU GPL

    installation completed to /usr/local/maldetect
    config file: /usr/local/maldetect/conf.maldet
    exec file: /usr/local/maldetect/maldet
    exec link: /usr/local/sbin/maldet
    cron.daily: /etc/cron.daily/maldet

    maldet(32517): {sigup} performing signature update check…
    maldet(32517): {sigup} local signature set is version 2010051510029
    maldet(32517): {sigup} latest signature set already installed

    

To update the maldet use the below commands:

    maldet –update-ver

    maldet –update[/i]

To scan the files:

    maldet -a /home/username/

It will scan all the files and provide you the output:



To scan all user uder public_html paths under /home*/ this can be done with:

    root@server[~]# maldet –scan-all /home?/?/public_html

To scan the same path but the content that has been created/modified in the last 5 days:

    root@server[~]# maldet –scan-recent /home?/?/public_html 5

To scan but forget to turn on the quarantine option, you could quarantine all malware results from a previous scan with:

    root@server[~]# maldet –quarantine SCANID

If you wanted to attempt a clean on all malware results from a previous scan that did not have the feature enabled, you would do with:

    root@server[~]# maldet –clean SCANID

If you had a file that was quarantined from a false positive or that you simply want to restore (i.e: you manually cleaned it), you can use the following:

    root@server[~]# maldet –restore config.php.2384
    root@server[~]# maldet –restore /usr/local/maldetect/quarantine/config.php.2384

 

Commentaires

Enregistrer un commentaire

Posts les plus consultés de ce blog

Hacking Into The Indian Education System Reveals Score Tampering

Image
Debarghya Das has a fascinating story on how he managed to bypass a silly web security layer to get access to the results of 150,000 ISCE (10th grade) and 65,000 ISC (12th grade) students in India. While lack of security and total ignorance to safeguard sensitive information is an interesting topic what is more fascinating about this episode is the analysis of the results that unearthed score tampering. The school boards changed the scores of the students to give them "grace" points to bump them up to the passing level. The boards also seem to have tampered some other scores but the motive for that tampering remains unclear (at least to me). I would encourage you to read the entire analysis and the comments , but a tl;dr version is: 32, 33 and 34 were visibly absent. This chain of 3 consecutive numbers is the longest chain of absent numbers. Coincidentally, 35 happens to be the pass mark. Here's a complete list of unattained marks - 36, 37, 39, 41, 43, 45, 47, 49, 51, 53,...
Lire la suite

Information Service and Cloud Dedicated Hosting

Image
Dedicated hosting service, dedicated server, or managed hosting service is a type of internet hosting the client leases an entire server not shared with anyone. It is more flexible than shared hosting, and organizations have full control over the server (s), including choice of operating system, hardware, etc. There is also another level of dedicated or managed hosting managed hosting is called complex. Apply complex managed hosting on physical servers, hybrid server and virtual servers with many companies choose hybrid (a combination of physical and virtual) hosting solution. There are many similarities between the standard and complex managed hosting, but the main difference is the level of administrative support and engineering the customer pays for all because of the growing size and complexity of infrastructure deployment . Steps presented to support most of the administration, including security, memory, storage, and support of information technology. Proactive ser...
Lire la suite

IBM's Blue Cloud Meets Juniper To Alleviate Cloud Computing Adoption Fears

Security and lack of an acceptable SLA are customers' top adoption fears to move to cloud computing . IBM's recent announcements to further advance their cloud computing initiative known as Blue Cloud should help alleviate these fears to some extent. IBM announced their partnership with Juniper for their hybrid cloud initiative to provide secured private cloud with better SLA. IBM also announced new offerings for the cloud - Tivoli storage as service and a new set of cloud management tools to align with what a typical CIO would look for when migrating to the cloud. In addition IBM is pushing some of their existing offerings on the cloud that customers can now use off Amazon's EC2 on pay-as-you-go subscription model . IBM has been experimenting with the concept of a private cloud for a while. One of such experiments included creating a private virtual cloud inside the firewall to deploy some of the regions of SecondLife with seamless navigation in and out of the firewall....
Lire la suite