ClamAV for Solaris

sunhux used Ask the Experts™

From above url, seems like we can't download ClamAV for
Solaris x86 directly : had to use the command:
  pkgadd -d
  /opt/csw/bin/pkgutil -U
  /opt/csw/bin/pkgutil -y -i clamav

I don't have a Solaris box that internet facing.

Anyone has the package?
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®


When I tried to email the maintainer of CSW site, I kept getting "captcha invalid" tho I'm not prompted to enter the captcha


Someone in the userlist suggest to build a virtualbox on laptop, install Solaris
& pkgutil to download & then transfer the pkg out : quite a long way for me,
so I'd still prefer to have a ready-to-use compiled pkg
Exec Consultant
Distinguished Expert 2018
May consider to explore
> I have no servers that are ever allowed to access the internet.  Is there a way to download the pkg file not using pkgutil?

wget and many others will do it, the package file is just on a URL.

Start here:

Choose a file, eg:

Download to anywhere, eg, your home machine.

Transfer to your server by any means, eg, USB stick, CD, floppy, local network, etc.

You'll need its 10 dependencies too.

See also:
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!


Start here:  <== guess this is using browser, won't need an rsync tool on WIndows

Navigating the above to i386 (not using Sparc), found it for Solaris 10;  will i386 work for x64?  I'll still test it out:

The signature file is rather outdated;  is there a place that gives latest ClamAV's signature file?  Can other platforms
(eg: Linux) signature be used for Solaris x86 ?

Url below gives "Http 404 Not Found" :
btanExec Consultant
Distinguished Expert 2018
Better to test out though ARCH: i386, CPU: i386 as compared to ARCH: x86_64, CPU: x86_64

the download of signature pls see



For RHEL, i386 is a different architecture from x86_64.
Somehow, have not seen any x86_64 for ClamAV, only Sparc & i386  or have you seen one for x86_64?



Link above seems to share the method of getting signatures via FreshClam
btanExec Consultant
Distinguished Expert 2018

See this and mainly on Unix family including Arch Linux, Centos, Fedora


Got the signature databases (main, daily & bytecode.cvd) under "Virus Database" in above url.
Link above only gives 2 architecture options: i386 & Sparc
btanExec Consultant
Distinguished Expert 2018
Use fresh clam for signature

I’m running ClamAV on a lot of clients on my local network. Can I serve the cvd files from a local server so that each client doesn’t have to download them from your servers?
Sure, you can find more details on our Mirror page.

If you want to take advantage of incremental updates, install a proxy server and then configure your freshclam clients to use it (watch for the HTTPProxyServer parameter in man freshclam.conf).

The second possible solution is to:

Configure a local webserver on one of your machines (say machine1.mylan)

Let freshclam download the *.cvd files from to the webserver’s DocumentRoot.

Finally, change freshclam.conf on your clients so that it includes:

DatabaseMirror machine1.mylan

ScriptedUpdates off

First the database will be downloaded to the local webserver and then the other clients on the network will update their copy of the database from it.

Important: For this to work, you have to add ScriptedUpdates off on all of your machines!

I can’t wait for you to update the database! I need to use the new signature NOW!
No problem, save your own signatures in a text file with the appropriate extension. Put it in the same dir where the .cvd files are located. ClamAV will load it after the official .cvd files. You need not to sign the .db file .

Can I download the virusdb manually?
Yes, the virusdb can be downloaded from the Latest releases section on our home page.
btanExec Consultant
Distinguished Expert 2018

That is best that you can get in public store


Thanks very much.

>save your own signatures in a text file with the appropriate extension.
How does the above work?


For the dependent packages required as indicated by  ,

common : it can only locate the i386 package for SunOS 5.8 in url below but what's needed is for SunOS 5.10

Likewise for
libbz2_1_0 : can only locate for SunOS 5.9
btanExec Consultant
Distinguished Expert 2018
For signature
save your own signatures in a text file with the appropriate extension
see this for more detail
CVD (ClamAV Virus Database) is a digitally signed container that includes signature
databases in various text formats.

Hash-based signatures
The easiest way to create signatures for ClamAV is to use filehash checksums,
however this method can be only used against static malware.

MD5 hash-based signatures
To create a MD5 signature for test.exe use the --md5 option of sigtool:
zolw@localhost:/tmp/test$ sigtool --md5 test.exe > test.hdb
zolw@localhost:/tmp/test$ cat test.hdb

That’s it! The signature is ready for use:
zolw@localhost:/tmp/test$ clamscan -d test.hdb test.exe
test.exe: test.exe FOUND

You can change the name (by default sigtool uses the name of the file) and place
it inside a *.hdb file. A single database file can include any number of signatures.
To get them automatically loaded each time clamscan/clamd starts just copy the
database file(s) into the local virus database directory (eg. /usr/local/share/clamav).
btanExec Consultant
Distinguished Expert 2018

seems no latest package

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial