{"id":9829,"date":"2016-03-31T18:12:54","date_gmt":"2016-03-31T15:12:54","guid":{"rendered":"http:\/\/blog.natro.com\/?p=9829"},"modified":"2023-02-23T13:51:44","modified_gmt":"2023-02-23T10:51:44","slug":"centos-malware-virus-guvenlik-onlemleri","status":"publish","type":"post","link":"https:\/\/www.natro.com\/blog\/centos-malware-virus-guvenlik-onlemleri\/","title":{"rendered":"Centos Malware – Vir\u00fcs G\u00fcvenlik \u00d6nlemleri"},"content":{"rendered":"

G\u00fcn\u00fcm\u00fcz\u00fcn en b\u00fcy\u00fck problemlerinden biri trojen<\/strong> ve malware<\/strong> sald\u0131r\u0131lar\u0131d\u0131r. Bu yaz\u0131m\u0131zda CentOS<\/strong> \u00fczerinde ClamAV kurulumu<\/strong> ger\u00e7ekle\u015ftirerek nas\u0131l g\u00fcvenlik\u00a0\u00f6nlemleri alabilece\u011fimizi ve nas\u0131l vir\u00fcs taramas\u0131nda bulunabilece\u011fimizi anlataca\u011f\u0131z. Ayr\u0131ca makale sonunda g\u00fcnl\u00fck tarama i\u015flemini nas\u0131l\u00a0\u015fekillendirebilece\u011fimize dahil detaylar payla\u015faca\u011f\u0131z.<\/span><\/p>\n

<\/p>\n

Yaz\u0131m\u0131za ba\u015flamadan \u00f6nce ClamAV hakk\u0131nda detay payla\u015fmam\u0131z olduk\u00e7a faydal\u0131 olacak.<\/span><\/p>\n

ClamAV Nedir?<\/span><\/strong><\/h2>\n

ClamAV truva atlar\u0131, vir\u00fcsler, malware ve linux \u00fczerinde olu\u015fabilecek di\u011fer zararl\u0131 tehtitlerin saptanmas\u0131 i\u00e7in tasarlanm\u0131\u015f bir a\u00e7\u0131k kaynak kodlu antivir\u00fcs\u00a0motorudur. Ve deneyimlerim neticesinde tan\u0131mda bahsetmi\u015f oldu\u011fumuz durumlara y\u00fcksek \u00f6l\u00e7eklerde \u00e7\u00f6z\u00fcm olu\u015fturabildi\u011fine \u015fahit oldum.<\/span><\/p>\n

Art\u0131k kurulum ad\u0131mlar\u0131na ba\u015flayabiliriz.<\/span><\/p>\n

\n

Not:<\/strong> ClamAV vir\u00fcs motorunun \u00e7al\u0131\u015fabilmesi i\u00e7in Centos yap\u0131s\u0131nda EPEL depolama moturunun aktif olmas\u0131 gerekmektedir. Bu depolama motorunu aktif edebilmek\u00a0i\u00e7in SSH aray\u00fcz\u00fcn\u00fczde \u201d yum install epel-release -y \u201d komutunu \u00e7al\u0131\u015ft\u0131rmak yeterli olacakt\u0131r.<\/span><\/p>\n<\/blockquote>\n

1 \u2013 \u00d6ncelikle ClamAV paketlerini sunucumuza kuruyoruz.<\/span><\/p>\n

Komut : \u201c\u201d yum install clamav clamd<\/strong> \u201c\u201d<\/span><\/p>\n

Install process ba\u015flat\u0131ld\u0131\u011f\u0131nda 2 farkl\u0131 paketin kurulup kurulmayaca\u011f\u0131 konusunda ssh ekran\u0131nda mesaj belirecek. Belirtilen i\u015flem ad\u0131mlar\u0131n\u0131 Y komutunu\u00a0girerek ge\u00e7iyoruz ve ek paketlerinde kurulumunu ger\u00e7ekle\u015ftiriyoruz. Kurulum sonras\u0131 ekran \u00e7\u0131kt\u0131s\u0131 a\u015fa\u011f\u0131daki gibi olmal\u0131.<\/span><\/p>\n

\"1\"<\/a><\/span><\/p>\n

2 \u2013 ClamAV vir\u00fcs moturunun kurulumunu tamamlad\u0131k. \u0130kinci i\u015flem ad\u0131m\u0131 olarak ClamAV<\/strong> yap\u0131s\u0131na ait servisleri aya\u011fa kald\u0131rmam\u0131z ve otomatik ba\u015flamas\u0131 i\u00e7in\u00a0yap\u0131land\u0131rmam\u0131z gerekiyor.<\/span><\/p>\n

Komutlar a\u015fa\u011f\u0131daki gibidir.<\/span><\/p>\n

\u00a0\u00a0 \u00a0-1- \/etc\/init.d\/clamd on<\/strong>
-2- chkfonfig clamd on<\/strong>
-3- \/etc\/init.d\/clamd start<\/strong><\/span><\/p>\n

3 \u2013 ClamAV vir\u00fcs motoru imzalar\u0131n\u0131 g\u00fcncellememiz gerekiyor. G\u00fcncelleme i\u015flemi i\u00e7in a\u015fa\u011f\u0131da payla\u015fm\u0131\u015f oldu\u011fum komutu kullanmam\u0131z yeterli olacak.<\/span><\/p>\n

Komut : \u201d \/usr\/bin\/freshclam<\/strong> \u201c
Kurulum ve g\u00fcncelleme ad\u0131mlar\u0131n\u0131 tamamlad\u0131k. Art\u0131k son i\u015flem ad\u0131m\u0131m\u0131z olan g\u00fcnl\u00fck tarama yap\u0131s\u0131n\u0131 olu\u015fturmaya geldik.<\/span><\/p>\n

\n

Not:<\/strong> \u00d6rnek zamanlanm\u0131\u015f g\u00f6revimizde web server yap\u0131s\u0131 d\u00fc\u015f\u00fcn\u00fclerek \/home\/ dizini hedef al\u0131nm\u0131\u015ft\u0131r. E\u011fer sunucu yap\u0131s\u0131nda web dosyalar\u0131n\u0131 bar\u0131nd\u0131rm\u0131\u015f\u00a0oldu\u011funuz path yollar\u0131 de\u011fi\u015fkenlik g\u00f6steriyorsa, sunucunuzda konumland\u0131rm\u0131\u015f oldu\u011funuz web dosya yoluna g\u00f6re hedef path yolunu de\u011fi\u015ftirmeniz gerekmektedir.<\/span><\/p>\n<\/blockquote>\n

4 \u2013 \u00d6ncelikle Cron<\/strong> dosyam\u0131z\u0131 olu\u015fturmam\u0131z gerekmektedir. Nano edit\u00f6r\u00fcn\u00fc kullanarak dosyam\u0131z\u0131 olu\u015fturabilir ve editleyebiliriz.<\/span><\/p>\n

Komut : \u201d nano \/etc\/cron.daily\/manual_clamscan<\/strong> \u201c<\/span><\/p>\n

Cron dosyam\u0131za girilmesi gereken de\u011ferler\u00a0<\/span><\/p>\n

#!\/bin\/bash
SCAN_DIR=\u201d\/home\u201d
LOG_FILE=\u201d\/var\/log\/clamav\/manual_clamscan.log\u201d
\/usr\/bin\/clamscan -i -r $SCAN_DIR >> $LOG_FILE<\/span><\/strong><\/p>\n

Cron tan\u0131m\u0131m\u0131z\u0131da ger\u00e7ekle\u015ftirdik fakat \u00e7al\u0131\u015fabilmesi i\u00e7in yazma izinlerini d\u00fczenlememiz gerekiyor. \u201d chmod +x \/etc\/cron.daily\/manual_clamscan<\/strong> \u201d komutunu\u00a0kullanarak tan\u0131m\u0131m\u0131z\u0131 \u00e7al\u0131\u015f\u0131r hale getirebilir ve testiniz sa\u011flayabiliriz.<\/span><\/p>\n

Faydal\u0131 olmas\u0131 dile\u011fiyle.<\/span><\/p>\n\n\n

Web sitenizin ve verilerinizin g\u00fcvenli\u011fini nas\u0131l sa\u011fl\u0131yorsunuz? Verilerinizi riske atmamak \u0130statistiklere g\u00f6re; crack yaz\u0131l\u0131m, ters proxy, lisanss\u0131z yaz\u0131l\u0131m <\/strong>kullanan web siteleri, di\u011fer web sitelerine k\u0131yasla daha fazla risk alt\u0131ndad\u0131r. Ayr\u0131ca lisanss\u0131z panel <\/strong>kullan\u0131m\u0131 hukuki sonu\u00e7lar do\u011furur. Verilerinizi g\u00fcvenle korumak i\u00e7in orijinal lisansl\u0131 yaz\u0131l\u0131m<\/strong> kullan\u0131n ve hizmet ald\u0131\u011f\u0131n\u0131z firmadan orijinal lisans kulland\u0131klar\u0131na dair mutlaka kan\u0131tlar isteyin.<\/p>\n\n\n\n

\"\"<\/a><\/figure>\n","protected":false},"excerpt":{"rendered":"G\u00fcn\u00fcm\u00fcz\u00fcn en b\u00fcy\u00fck problemlerinden biri trojen ve malware sald\u0131r\u0131lar\u0131d\u0131r. Bu yaz\u0131m\u0131zda CentOS \u00fczerinde ClamAV kurulumu ger\u00e7ekle\u015ftirerek nas\u0131l g\u00fcvenlik\u00a0\u00f6nlemleri…\n","protected":false},"author":7,"featured_media":13230,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[53,36],"tags":[],"class_list":{"0":"post-9829","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-guvenlik","8":"category-sunucu"},"_links":{"self":[{"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/posts\/9829","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/comments?post=9829"}],"version-history":[{"count":3,"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/posts\/9829\/revisions"}],"predecessor-version":[{"id":34495,"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/posts\/9829\/revisions\/34495"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/media\/13230"}],"wp:attachment":[{"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/media?parent=9829"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/categories?post=9829"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.natro.com\/blog\/wp-json\/wp\/v2\/tags?post=9829"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}