Quarantine hits -
The default quarantine action for malware hits.
Quarantine clean -
Try to clean string based malware injections. NOTE: quarantine action must be set to "move to quarantine and alert".
Suspend user -
The default suspend action for users wih hits. When enabled a users shell access will be disabled via the command: /usr/sbin/usermod -s /bin/false user
Suspend user min userid -
The minimum userid value that can be suspended.
Quarantine on error -
When using an external scan engine, such as ClamAV, should files be quarantined if an error from the scanner engine is received? This is defaulted to 1, always quarantine, as ClamAV generates an error exit code for trivial errors such as file not found. As such, a large percentage of scans will have ClamAV exiting with error code 2.