I am using Linux Malware Detect to scan and report on malware, but on a daily basis I receive alerts for malware in users emails (mainly spam folder). I do not want alerts for this, the spam folders are cleaned often, and the users may clean it also.
I tried adding wildcards into /usr/local/maldetect/ignore_paths as follows but they are not ignored:
/home/*/homes/*/Maildir
/home/?/homes/?/Maildir
Does anyone know how to exclude folders using wildcards, as it would not be practical to add the full path of every users mail directory.
Thanks
Best Answer
I have found only
http://www.rfxn.com/appdocs/README.maldetect
If you monitor files with inotify(flag -m) then it can help you.
Based on this code of maldet:
I can say that you can use same wildcards as you do usually in grep.
However i have tested it on my version of maldet and it works only if i specified it like this:
Try use dots in your path expressions.