I suggest you ...

Add ClamAV as module in Plesk to protect better the server. Thank you Parallels Team.

Is easy to use.

676 votes
Sign in
(thinking…)
Password icon
Signed in as (Sign out)

We’ll send you updates on this idea

German shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

Plesk currently offers two high-quality anti-viruses and other related services like WAF. Integrating another anti-virus solution is an expensive undertaking, so we’d like you to let us know which ClamAV features are missing in anti-viruses and services already available in Plesk. This will help us properly evaluate and prioritize this request.

—AK

130 comments

Sign in
(thinking…)
Password icon
Signed in as (Sign out)
Submitting...
  • Jake commented  ·   ·  Flag as inappropriate

    Even though ClamAV is free it still requires time and effort for the Plesk team to incorporate it into their panel. The argument that it's free so add it could be applied to about 1000 different things. If you want them to add it then you need to add constructive comments to the post.

  • Jake commented  ·   ·  Flag as inappropriate

    FTP users are human and fallible even if they can be 100% trusted not to upload malicious content on purpose it can happen by mistake. Also we allow file transfers through our Teamspeak 3 server and I don't think mod_security would scan those files. We don't want to be known for redistributing comprised content.
    I've personally never had any load issues with ClamAV but have reached out to a couple others I work with to ask about their experiences. ClamAV supports live scanning of mail, and ftp traffic (via mod_clamav which can be configured to listen on multiple sockets or ports) which would create no noticeable load on most systems HTTP uploads are also supported. Of course full system scans should be run regularly but can be configured to be run in small batches on specific directories one after another rather than the whole system at once.

    Lloyd Day commented · May 03, 2015 12:04
    Just make sure to configure freshclam to run with cron rather than daemon as that's the real resource hog.
    Running freshclam via cron every hour uses next to none from what I have seen on my servers.

  • AdminSergey L (Director of Program Management, Plesk International GmbH) commented  ·   ·  Flag as inappropriate

    @Jake,

    Well, your FTP users indeed can upload trojans or malicious code embedded in PDF files and images. But it cannot harm your server security, it will harm their site visitors, who will download those files. So I wonder how is your server impacted with these uploads?

    From server security standpoint, server admin shall probably be much more concerned for malicious HTTP uploads (not FTP), which are performed normally via a vulnerability in a hosted site and potentially can take over that site in a hidden manner or can take over a server (only in a combination with some other vulnerability, of course). mod_security shall be good solution against that, when accompanied by quality ruleset (such as the one from AtomicCorp). I don't fully understand how ClamAV is efficient here, given that it is very far from 100% efficiency and regular complete scans would likely cause huge load on a server.

    We observed a number of complains on high load from antiviruses scanning servers, but we have no positive data on their efficience. What is your experience about ClamAV file scan?

  • Jake commented  ·   ·  Flag as inappropriate

    @Sergey L

    Uplaods may contain any number of threats from viruses and trojans to malicious code embedded in images or PDFs. That the ability to scan for these threats is currently missing from plesk has us considering a move back to cPanel.

  • Jake commented  ·   ·  Flag as inappropriate

    Not only is clamAV free but it has the ability to scan ftp uploads as well, not just emails. This is a huge oversight in plesk server security. Especially with the statement "Plesk is the most effective, flexible and secure web control panel for professional hosting providers and webmasters..." On your homepage.

  • Anonymous commented  ·   ·  Flag as inappropriate

    ClamAV is a free anti-virus solution that has never let me down when it comes to viruses, malware and other threats. I use a script to use clamscan on the server as you do not want us to use a free virus scanner. You always keep pushing us to keep paying more and more ...

  • Detlef Bracker commented  ·   ·  Flag as inappropriate

    The products plesk offers, dont scans the webspaces or the server! We prefare on our business machines kaspersky internet-security, but in a webserver the costs to expansive and they scan only the mail accounts and not the complete webspace or server! ClamAV brings many features for scan the whole webserver and we have found many times malware with them in client webspaces and this is a gratis software!

  • Sven L. commented  ·   ·  Flag as inappropriate

    what ip00 said. clamav = free . kaspersky and dr.web are too expensive for small business

  • ip00 commented  ·   ·  Flag as inappropriate

    It gets expensive paying for multiple Dr.Web or Kaspersky license for small business that have a few small VPS's. ClamAV is proven open source solution that works and not paying for something like that makes us more competitive price wise. Especially when setting up and selling small VPS (2GB RAM) for one client/website use.
    Your licensing terms are becoming more and more restrictive. Last thing that was cut is number of domains (Web Pro - 30 domains, was 100 before for same price) so we figured it is better for us to get more VPSs with Web Pro than upgrade to Web Host.

  • VHosting Solution commented  ·   ·  Flag as inappropriate

    Hello, clamAV can be used for example for scan the website, other control panel (cpanel), permit to customer to do an fully clamav AV scan of website.

    Can be an better plugin for plesk. In other if you add clamav+maldet was be an great security feature for plesk and for the end user.

  • David Garcia commented  ·   ·  Flag as inappropriate

    ClamAV is a Free antivirus, provided by the package manager of many Linux OS, and can be compiled using the sources that we can download. This is a good solution and doesn't need much resources.

  • Anonymous commented  ·   ·  Flag as inappropriate

    ClamAv in conjunction with maldec https://www.rfxn.com/projects/linux-malware-detect/ help to identify compromised site files. It will be great having this integrated with Plesk.

    Description
    Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and generates signatures for detection. In addition, threat data is also derived from user submissions with the LMD checkout feature and from malware community resources. The signatures that LMD uses are MD5 file hashes and HEX pattern matches, they are also easily exported to any number of detection tools such as ClamAV.

  • Spurlos commented  ·   ·  Flag as inappropriate

    For the most Part,-it's free. The Solutions currently offered are too expensive and have Bad Licensing Models for Small Agencys. Also i feel it's a standard and a must have...

  • Lloyd Day commented  ·   ·  Flag as inappropriate

    Yeah +1 on this.

    Just make sure to configure freshclam to run with cron rather than daemon as that's the real resource hog.
    Running freshclam via cron every hour uses next to none from what I have seen on my servers.

Feedback and Knowledge Base