On-access scanning for OS X
---------------------------

The ClamAuth kernel extension enables ClamAV to provide on-access scanning
for Mac OS X 10.5 and later. The current version works in a passive mode
only - ClamAV will log the detection but won't block access to the infected
file. However, it's possible to perform special actions (eg. quarantine
files) with the VirusEvent directive of clamd.

Usage
-----

1. Run ClamAuth_load to load the kernel extension (you can edit the
script to change or add more paths that will be monitored).
2. Add "ClamAuth yes" to your clamd.conf
3. Start clamd with root privileges ('sudo /usr/local/sbin/clamd')

If clamd properly connects to the driver, you should see a line like this
in the log file:

ClamAuth: Driver version: 0.3, protocol version: 2

ClamAV is now monitoring the paths specified in ClamAuth_load.