Linux Malware Detect Question

xort

• February 20, 2015 05:48

hi, i had an issue a few days ago where df -i gave me 100% usage, caused from the existence of too many /usr/local/maldetect.bkxxxx directories. i had to delete the dirs manually in order to solve the problem. is there any way to automatically delete those files? should i use a cron job for that or maldetect has its own mechanism for deleting old dirs? thanks!

• 

  cPanelMichael

  • February 23, 2015 12:37

  Hello :) Please keep in mind that it's a third-party application, so you may want to consult with it's documentation to see if it's possible to modify it's retention configuration. Otherwise, yes, you should create a cron job that removes those directories if you determine they are not required. Thank you.

  0
• 

  xort

  • February 24, 2015 08:46

  hey Mike, i sure did that but i haven't found a solution so i thought to ask here and see how other cpanel users deal with it. it is obvious that a lot of people are using maldetect on cpanel servers and i really need to know how they deal with /usr/local/maldetect.bkxxxx directories. thanks a lot!

  0
• 

  xort

  • March 19, 2015 09:34

  FYI, maltetect uses tmpwatch in order to remove quarantine/session/tmp data every 14 days. well in our system tmpwatch was not installed... :-/

  0
• 

  MilesWeb

  • March 20, 2015 10:08

  You can use the -p, --purge option which clears logs, quarantines queue, session and temporary data.

  0

Please sign in to leave a comment.