Skip to content

cabinetoffice/fb-av

 
 

Repository files navigation

CircleCI

ClamAV

ClamAV daemon, using the official docker image. It builds a release preloaded with signature databases and runs freshclam periodically in the background, updating the virus signatures. clamd itself is listening on exposed port 3310.

On your main container, you still need to install clamav-daemon :

apt-get install clamav-daemon -y

Then you can scan a file with: clamdscan -c clamd.container.conf --stream file

clamd.container.conf being:

TCPSocket 3310
TCPAddr localhost # or wherever you setup this container

ClamAV have databases that can be downloaded manually, these can be found here:

The ClamAV moderators limited the ability to download these files via ways such as wget and curl due the enormous number of daily downloads, more details here.

Run Locally

docker run -p 3310:3310 [image reference] or docker-compose up

From inside root of fb-user-filestore:

Test a file - okay

clamdscan -c config/clamd/development.conf --stream --no-summary README.md

Test downloaded (file downloaded from eicar.org) - virus found

clamdscan -c config/clamd/development.conf --stream --no-summary ~/Downloads/eicar.com.txt

Deployment

Continuous Integration (CI) is enabled on this project via CircleCI.

On merge to main, tests are executed and if green deployed to the test environment. This build can then be promoted to production.

Monitoring

Container logs are shipped to Kibana like every other app, however there is no alerting facility there.

Releases

No releases published

Packages

No packages published

Languages

  • Dockerfile 55.8%
  • Makefile 44.2%