Comments (8)
Seems to works well finally. Any option to send email of delete notification when occuring ?
from linux-malware-detect.
@jcarnus there is usually a delay for inotify to startup before files start being tracked, this may have been the issue you experienced.
The inotify monitor mode sends alerts daily, if your email address is configured in /usr/local/maldetect/conf.maldet and email_alerts=1. You can also check for quarantine events in /usr/local/maldetect/logs/event_log.
from linux-malware-detect.
I try with an EICAR file, file get delete in almost realtime, but I didn"t received any email to inform me. I received email alert running a -r
from linux-malware-detect.
After upgrading to version 1.5 the monitor does not work anymore
maldet --monitor users
Linux Malware Detect v1.5
(C) 2002-2015, R-fx Networks [email protected]
(C) 2015, Ryan MacDonald [email protected]
This program may be freely redistributed under the terms of the GNU GPL v2
maldet(742228): {mon} set inotify max_user_watches to 19709952
maldet(742228): {mon} added /home/abc/public_html to inotify monitoring array
maldet(742228): {mon} added /tmp to inotify monitoring array
maldet(742228): {mon} starting inotify process on 1191 paths, this might take awhile...
maldet(742228): {mon} no inotify process found, check /usr/local/maldetect/logs/inotify_log for errors.
I tried reinstalling the glibc package but not resolved.
from linux-malware-detect.
Hi,
Just found this conversation and have the same issue with the installation.
Same error: {mon} no inotify process found, check /usr/local/maldetect/logs/inotify_log for errors.
Is there someone who has solved this issue already?
from linux-malware-detect.
same issue here, running Debian Jessie in case it helps
from linux-malware-detect.
Same issue here, 14.04 LTS
maldet(30639): {mon} no inotify process found, check /usr/local/maldetect/logs/inotify_log for errors.
But the log is always empty.
inotify-tools was installed and reinstalled.
from linux-malware-detect.
Same issue here
When previously working
Jan 05 20:59:02 aws maldet(24075): {mon} added /tmp to inotify monitoring array Jan 05 20:59:02 aws maldet(24075): {mon} starting inotify process on 448 paths, this might take awhile... Jan 05 20:59:04 aws maldet(24075): {mon} inotify startup successful (pid: 31116) Jan 05 20:59:04 aws maldet(24075): {mon} inotify monitoring log: /usr/local/maldetect/logs/inotify_log Jan 05 20:59:35 aws maldet(24075): {mon} warning clamd service not running; force-set monitor mode file scanning to every 120s Jan 05 20:59:35 aws maldet(24075): {mon} scanned 0 new/changed files with native engine
During current failure
Feb 08 18:54:18 aws maldet(15376): {mon} added /tmp to inotify monitoring array Feb 08 18:54:18 aws maldet(15376): {mon} starting inotify process on 456 paths, this might take awhile... Feb 08 18:54:20 aws maldet(15376): {mon} inotify startup successful (pid: 22373) Feb 08 18:54:20 aws maldet(15376): {mon} inotify monitoring log: /usr/local/maldetect/logs/inotify_log Feb 08 18:54:50 aws maldet(15376): {mon} warning clamd service not running; force-set monitor mode file scanning to every 120s Feb 08 18:54:50 aws maldet(15376): {mon} scanned 0 new/changed files with native engine Feb 08 18:56:50 aws maldet(15376): {mon} scanned 0 new/changed files with native engine
CPanel System running CentOS 6, and latest inotify via yum
# rpm -qa | grep inotify inotify-tools-devel-3.14-1.el6.x86_64 inotify-tools-3.14-1.el6.x86_64
maldet 1.5, manually tested inotify. I know the issue seems to be with inotify though looking to see if anyone found a solution here.
Seems a solution was found here for an issue involving 32 bit and Ubuntu though. #88
from linux-malware-detect.
Related Issues (20)
- cron.daily not sourcing custom configuration files
- Add default case for WordOps installation HOT 1
- Logrotate failed Maldetect (Ubuntu v20.04) HOT 1
- Maldet signatures only update twice a week. HOT 1
- Missing path in output messages HOT 1
- Proxy/cache maldet.sigs.ver and other artefacts HOT 2
- c99.php is not detected. Signatures out of date? HOT 2
- LMD + ClavAV | /etc/passwd - issue HOT 2
- pre1-1.6.5 Failed to enable unit: Unit file maldet.service does not exist. HOT 2
- maldet upgrade kills maldet monitoring
- Regression with 1.6.5 sending emails to [email protected]? HOT 6
- Can you create a dockerfile
- [Help]Cannot start maldet HOT 1
- scan returned empty file list; check that the path exists and contains files in scope of configuration HOT 1
- Debian monitor mode not working HOT 1
- False Positive in magento-coding-standard
- maldet on Debian 12 not running as non-root user
- how come the main website www.rfxn.com/projects/linux-malware-detect/ is not behind a https
- Not getting email alerts in monitor mode HOT 1
- Detecting wrong thing i guss
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from linux-malware-detect.