1- Download Install LMD
# cd /opt
# wget http://www.rfxn.com/downloads/maldetect-current.tar.gz
2- # tar xfz maldetect-current.tar.gz
3-# cd maldetect-1.4.2
4- # sh install.sh
5- configure LMD
6-# vim /usr/local/maldetect/conf.maldet
[ EMAIL ALERTS ]
##
# The default email alert toggle
# [0 = disabled, 1 = enabled]
email_alert=1
# The subject line for email alerts
email_subj="MLD Scan Report from $(hostname)"
# The destination addresses for email alerts
# [ values are comma (,) spaced ]
email_addr="webmaster@mydomain.com"
# Ignore e-mail alerts for reports in which all hits have been cleaned.
# This is ideal on very busy servers where cleaned hits can drown out
# other more actionable reports.
email_ignore_clean=0
##
# [ QUARANTINE OPTIONS ]
##
# The default quarantine action for malware hits
# [0 = alert only, 1 = move to quarantine & alert]
quar_hits=1
# Try to clean string based malware injections
# [NOTE: quar_hits=1 required]
# [0 = disabled, 1 = clean]
quar_clean=1
# The default suspend action for users wih hits
# Cpanel suspend or set shell /bin/false on non-Cpanel
# [NOTE: quar_hits=1 required]
# [0 = disabled, 1 = suspend account]
quar_susp=0
# minimum userid that can be suspended
quar_susp_minuid=500
7-Scanning Manually
maldet --scan-all /var/www/html
8-Setup Regular Scanning
vi /etc/cron.daily/maldet
But if your system has large number of files and directories change scanning to weekly basis rather than daily.
webanchor.net
Support Departmnet
