Config File Description

ImunifyAV(+) config file is available on the following location after installation:

/etc/sysconfig/imunify360/imunify360.config

In the config file it is possible to set up ImunifyAV(+) configuration. The following options are available:

MALWARE_SCANNING:
max_signature_size_to_scan: 1048576 # max file size to scan in the standard mode; value is set in bytes
max_cloudscan_size_to_scan: 10485760 # max file size to scan in the cloud-assisted (by hashes) mode; value is set in bytes
max_mrs_upload_file: 10485760 # max file size to upload to CloudLinux malware research service; value is set in bytes
detect_elf: False # enable (True) or disable (False) (default value) binary (ELF) malware detection
sends_file_for_analysis: True # send (True) (default value) or not (False) malicious and suspicious files to the Imunify team for analysis
cloud_assisted_scan: True # speed up scans by check file hashes using cloud database
rapid_scan: True # speeds up (True) (default value) ot not (False) repeated scans based on smart re-scan approach, local result caching and cloud-assisted scan.
ERROR_REPORTING:
enable: True # automatically report errors to the Imunify team
MALWARE_SCAN_INTENSITY:
cpu: 2 # intensity level for CPU consumption. Can be set from 1 to 7, default is 2
io: 2 # intensity level for file operations. Can be set from 1 to 7, default is 2
ram: 2048 # intensity level for RAM consumption. Minimum value is 1024, default is 2048
MALWARE_SCAN_SCHEDULE:
day_of_month: <next day after installation> # when the background scan shall start, day of the month. Can be from 1 to 31, the default value is the <next day after installation>.
day_of_week: 0 # when the background scan shall start, day of the week. Can be from 0 to 7 (0 for Sunday, 1 for Monday..., 7 for Sunday (again)), the default value is 0
hour: 3 # when the background scan shall start, hour. Can be from 0 to 23, the default value is 3
interval: MONTH # interval of scan. Supported values: strings `NONE` (no scan), `DAY`, `WEEK`, `MONTH`, the default value is `MONTH`
MALWARE_CLEANUP:
trim_file_instead_of_removal: True # do not remove infected file during cleanup but make the file zero-size (for malwares like web-shells) (True) (default value)
keep_original_files_days: 14 # the original infected file is available for restore within the defined period. The default is 14 days. The minimum value is one day.
ADMIN_CONTACTS:
emails: youremail@email.com # your email to receive reports about critical issues, security alerts or system misconfigurations detected on your servers.
PERMISSIONS:
support_form: True # show (True) (the default value) or hide (False) the Support icon in the ImunifyAV(+) UI.
user_ignore_list: True # show (True) (the default value) or hide (False) the Ignore List tab for end-users in the ImunifyAV(+) UI.
allow_malware_scan: False # enable (True) or disable (False) (the default value) “scan” action in the UI of the end-user.
upgrade_button: True# enable (True - the default value) or disable (False) the Imunify upgrade button.
RESOURCE_MANAGEMENT:
ram_limit: 500 # set RAM consumption limit for ImunifyAV(+) in MB
io_limit: 2 # set IO consumption limit for ImunifyAV(+) in MB
cpu_limit: 2 # set CPU consumption limit for ImunifyAV(+) in MB.

How to apply changes from CLI

In order to apply changes via command-line interface (CLI), you can use the following command:

imunify-antivirus config update '{"SECTION": {"parameter": value}}'

For example, if you want to set MALWARE_SCAN_INTENSITY.cpu = 5 from a command line, then you should execute the following command:

imunify-antivirus config update '{"MALWARE_SCAN_INTENSITY": {"cpu": 5}}'