I'm running RSA Authentication Manager 8.2 SP1 on some new Intel Appliances and enabled ClamAV scanning from the command line.
Has anyone out there managed to enable email (or any other automated method) notification that clamscan has run on an RSA Appliance and detected an infection?
I've configured 2 cron jobs, one for freshclam updates and the other for a daily clamscan.
I then tried to compile a script which would email me if an infection was found (SMTP is configured and working for report notification), however it appears I can't leverage the SMTP settings of the RSA application from the CLI. Sendmail/postx etc.aren't installed and I understand the implications of installing 3rd party software on a hardened security appliance.
I found 2 posts which don't fill me with hope:
Suggestions gratefully received, cheers