Updating clam av
The scanner searches your server for malicious programs.If the scanner identifies a potential security threat, it flags the file to allow you to take the appropriate action.
When Security Analytics (SA) is configured via the GUI to use a web proxy, the Clam AV definition update service 'freshclam' will not use the proxy and cannot reach the Internet.Clam AV update process started at Sun Dec 21 2014WARNING: Your Clam AV installation is OUTDATED!Warning There are some techniques to avoid detection and scanning using AV software and not every malware is known by AV products.Signature based AV software can decrease the risk of getting hit by a known malware but it does never guarantee that your computers don’t get infected.It is important to teach the users how to handle files from the internet and untrusted devices safely.Also plan a regular Backup of important files, make sure, that ACLs are used correctly and apply patches asap to keep the attack surface and damage as small as possible.
First of all, you have to install the Clam AV plugin (os-clamav) from the plugins view.
If this is checked, OLE2 files (for example Microsoft Office files) will be analyzed.
Such files should be analyzed as they may contain macros which have been used to download and install malware (usually ransomware).
If you select this option, the sections of emails will be read and therefore it will be possible to scan email attachments.
Mail attachments are important to scan as an attached file may contain malware.
Some malware authors used encrypted archives to avoid scanning and told the victim in the email text how to unpack it.