This guide will lead you to set up ClamAV for "Scan On Access" instead of "Scan On Demand". It is also target to Desktop usage only.
The current version at this writing is ClamAV 0.98.7+dfsg.
Step 1 :
sudo apt-get install clamav clamav-freshclam clamav-daemon libclamunrar6Step 2 :
sudo nano /etc/clamav/clamd.confTo make the entries looking like the following. Make sure to replace "samiux" with your username.
cd ~
mkdir quarantineStep 3 :
sudo nano /etc/clamav/freshclam.confTo make the entries looking like the following.
sudo freshclamStep 4 :
sudo nano /etc/apparmor.d/usr.sbin.clamdTo make the entries looking like the following.
After that, execute the following command to reload the apparmor rules.
sudo apparmor_parser -r /etc/apparmor.d/usr.sbin.clamdRemark :
Download or copy will not trigger the ClamAV scan but browsing or executing (or etc) will. If any malware or virus (no matter it is for Windows, Linux or Mac OSX) is detected, it will be moved to "quarantine" directory. You can also check the log at "/var/log/clamav/clamav.log".
Testing :
You can install NO harm virus testing files for testing.
sudo apt-get install clamav-testfilesThe NO harm virus testing files are located at "/usr/share/clamav-testfiles".
Reference
AppArmor Wiki
See also : Fireclam Firefox Add-ons
That's all! See you.
