open-dsi
/
clamav
mirror of https://github.com/Cisco-Talos/clamav
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
ClamAV is an open source (GPLv2) anti-virus toolkit.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6308 Commits
40 Branches
228 Tags
220 MiB
 
 
 
 
 
 
Tag: Branch: Tree: bd4de608f5
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'bd4de608f5'
${ noResults }
clamav/win32/clamav-for-windows/sigui/SigUI/doc/overview.tex

46 lines
2.6 KiB
Raw Blame History

% !TeX root = sigui-manual.tex
\chapter{Overview}
\ClamAV allows users to deploy and use their own (or third party) virus signatures in
addition to the official virus signatures.
The virus signature database updater (\gls{freshclam}) can also be adapted to the
user's environment.
This is usually done by editing the configuration file \gls{freshclam.conf}, and copying the custom signatures to the database
directory.
However \CW protects the database directory against changes, even if those changes are attempted by a user with \emph{Administrator} privileges.
A new tool is needed to make these changes: \textbf{Signature configuration UI} (SigUI).
\section{Features}
Using \emph{SigUI} an \emph{Administrator} can:
\begin{itemize}
\item Configure \gls{freshclam} to use a proxy
\item Configure which mirror \gls{freshclam} should use
\item Configure updates of custom signatures by \gls{freshclam}
\item Manually copy virus signature databases to \ClamAV's database directory
\item Deploy an existing \gls{freshclam.conf} \footnote{created using SigUI} to multiple machines
\end{itemize}
\section{Using SigUI}
\subsection{Launching the application}
The application can be launched from the \emph{Start Menu}:
Start $\to$ All Programs $\to$ ClamAV for Windows $\to$ SigUI \includegraphics{sigui_menu.jpg}
Or you can navigate to the installation directory of \CW
\footnote{\texttt{C:\textbackslash Program Files\textbackslash ClamAV for Windows} by default},
and from the \texttt{clamav} subfolder launch \texttt{sigui.exe}:\\
\includegraphics{sigui_icon.jpg}
In either case you must run this program with administrative privileges.
On \emph{Windows Vista} and later you will get the UAC popup to grant Administrator privileges to the application \footnote{If you are running as a user that has Administrator privileges, this is a simple "I Allow/Continue" style popup, otherwise it asks you for a login and password of a user with Administrator privileges}. On earlier versions you will need to login as \verb+Administrator+.
\subsection{How it works}
When changing \gls{freshclam} settings via the UI, it first verifies that the
settings are syntactically correct, and saves them in \gls{freshclam.conf}.
When installing custom signatures, \verb+SigUI+ verifies that \ClamAV can successfully load the databases, and install only those that are successfully loaded.
Any changes you make will not take effect immediately, but only the next time the databases are reloaded. This usually happens each hour. You can reload the databases immediately by opening the \CW user interface \footnote{from the tray, or the desktop}, and clicking on \textbf{Update Now}.