How can I enable third party anti-virus signatures within Sentinel to improve the ClamAV detection rate?

Sentinel supports enabling third party anti-virus signatures to improve the detection rate. Full documentation can be found below:

  1. Navigate to Sentinel Anti-malware -> Settings -> Anti-virus Settings -> Signature Providers
  2. Enable the Interserver signature provider.
  3. Press the update button on the page then the restart button to restart the Anti-virus signature service. You can view the signature download logs under Sentinel Anti-malware -> Logs -> Signature log.
  4. Once the new signatures have been downloaded to the /var/lib/clamav/ directory they will be loaded into ClamAV within the hour. You can press the Signature reload button on the dashboard or issue the command clamdscan --reload if you want to load them earlier.
  5. Important: Remember to disable automatic quarantine under Quarantine Settings -> Quarantine hits when first enabling any third party signatures so that you can work out any false positives.

Signature Providers

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

How can I fix the daily cron error: /etc/cron.daily/maldet: line 69: [: ==: unary operator expected?

There is a bug in the Linux Malware Detect v1.6.4 daily cron script. You can fix the error by...

How hard is it to uninstall if I do not require Sentinel Anti-malware any more?

Uninstalling Sentinel Anti-malware is as easy as going to Extensions -> My Extensions ->...

How can I view the contents of a file in the quarantine?

To View the File Contents Navigate to Sentinel Anti-malware -> Quarantine Click on a File...

How can I test that the Anti-malware detection is working?

Testing Sentinel Anti-malware Detection Download the eicar test malware into the httpdocs...

How can I enable automatic quarantine using Sentinal Anti-malware?

Sentinel Anti-malware can automatically quarantine viruses and malware the moment they are...