Drupal integration with the ClamAV virus scanner.
This module will verify that files uploaded to a site are not infected with a virus, and prevent infected files from being saved.
NB: The module integrates with ClamAV, it does not provide an anti-virus scanner engine.
Comprehensive documentation can be found on the Installing ClamAV page. In general, the Drupal module doesn't have any specific requirements for how ClamAV is installed.
- First install the clamscan program:
- Then enable and configure the ClamAV Drupal module
Once the ClamAV module is installed and configured, it's good practice to verify that it's detecting viruses properly. You can do this safely by trying to add content to your site, attaching the Eicar test virus to the content. The file upload should be blocked, and you should find a message recording this in the Watchdog logs.
The Drupal configuration page is at
"Daemon mode" is recommended. "Executable mode" is significantly slower, and in some configurations, the ClamAV service may need to run under the same group as the webserver process.
In performance-testing, the mean scan-time for each configuration was as follows:
- Executable: 10.3 seconds
- Daemon-mode (unix socket): 0.0009 seconds
- Daemon-mode (TCP/IP): 0.0010 seconds
Daemon-mode came out 10,000 times faster than executable mode.
The best resource is the ClamAV documentation.
For issues that are Drupal-specific or will affect most users of the Drupal ClamAV module, please raise and discuss them in the ClamAV module issue queue.
- Maintenance status: Actively maintained
- Development status: Under active development
- Module categories: Media, Security, Third-party Integration
- Reported installs: 1,436 sites currently report using this module. View usage statistics.
- Downloads: 19,006
- Last modified: March 26, 2017
- Stable releases for this project are covered by the security advisory policy.
Look for the shield icon below.