We have a Linux VM running Xubuntu with ClamAV installed.
We would like to scan files larger than 4Gigs, using the clamscan command preferably. I can use the --max-filesize=x
and --max-scansize=x
options perfectly. Looking on the clamscan man page, Clam only lets you set these parameters to less than 4Gig file sizes.
I can also set these to 'unlimited' by using 0, but if the file is larger than 4Gigs it will still have no data scanned.
Example:
----------- SCAN SUMMARY -----------
Known viruses: 4297615
Engine version: 0.98.7
Scanned directories: 0
Scanned files: 1
Infected files: 0
Data scanned: 0.00 MB
Data read: 58082.25 MB (ratio 0.00:1)
Time: 12.325 sec (0 m 12 s)
As you can see we are trying to scan some pretty large files ±75Gigs.
Is there a way to use clamscan to virus scan files larger than 4Gigs? Or is there another command line tool to achieve what I am after.
clamscan
is also 64-bit withfile $(which clamscan)
; if not, then I don't know of any way to open files over 4GB with 32-bit software./tmp
resides or of virtual memory), and one very good basic reason: do you really believe that multi-GB-sized files are a good vehicle of infection?clamscan - <FilePath
it took 90 times longer, with high resource use. In both cases it reported zero data scanned, but the first call said 13GB read, while the second said 144MB. I didn't set any parameters besides the file name or-
. Make what you will of these results.