Testing Sentinel Anti-malware Detection
- Download the eicar test malware into the httpdocs directory of one of your domains.
- Change the ownership from root:root to the owner of the domain. (By default Sentinel will ignore files owned by root).
- Run a scan on the domain with the sample malware. See: https://www.danami.com/clients/knowledgebase/168/How-do-I-run-a-malware-scan-using-Sentinel-Anti-malware.html
Testing Sentinel Anti-malware Automatic Quarantine
- Make sure that automatic quarantine is enabled. See: https://www.danami.com/clients/knowledgebase/165/How-can-I-enable-automatic-qurantine-using-Sentinal-Anti-malware.html
- Download the eicar test malware into the httpdocs directory of one of your domains.
- Change the ownership from root:root to the owner of the domain. (By default Sentinel will ignore files owned by root).
- If real-time monitoring is enabled then the file should be automatically moved to the quarantine area. If the real-time monitoring is disabled you can run manually run a scan on the domain with the sample malware. See: https://www.danami.com/clients/knowledgebase/168/How-do-I-run-a-malware-scan-using-Sentinel-Anti-malware.html
To Download the Eicar Test Malware Sample
// change to a domain hosted on your server
cd /var/www/vhosts/example.com/httpdocs/
// download the test malware
wget http://www.eicar.org/download/eicar.com.txt
// change the ownership to the domain owner user
chown example:psacln eicar.com.txt