LinuxQuestions.org - Malware Detect questions, please answer.

- Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)

- - Malware Detect questions, please answer. (https://www.linuxquestions.org/questions/linux-newbie-8/malware-detect-questions-please-answer-881166/)

TheOnlyQ

05-17-2011 05:54 AM

Malware Detect questions, please answer.

So, I have some questions about malware detect.

1. When I do turn on live scan, where can I see things that it flags up??

2. When live scan is on, and I specify /home/ - does it do every single folder and file in /home/ or just the files in /home/ ?

3. Does Qauruntining files delete them or move them?

Please answer them :)

These are questions I failed to find answers to in the read me, I appreciate anyone willing to help out, thanks!

reed9

05-17-2011 07:13 AM

I haven't used this tool before, but looking at their website and this site I found as well, the answers appear to be as follows:

1. The default log location should be /usr/local/maldetect/inotify/inotify_log.

2. You need to pass the -a flag to scan recursively.

Code:

maldet -a /home

3. It moves them and strips all permissions from them. Looks like moved files are in /usr/local/maldetect/quarantine

All times are GMT -5. The time now is 11:03 PM.