From fc741d1dca075edbcecb36161d606b657d07f60c Mon Sep 17 00:00:00 2001
From: Jason Rothstein <fdragon@fdragon.org>
Date: Wed, 21 Jul 2021 01:40:00 +0000
Subject: [PATCH] Don't scan root activity

---
 templates/Fedora/34/etc/clamd.d/scan.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/templates/Fedora/34/etc/clamd.d/scan.conf b/templates/Fedora/34/etc/clamd.d/scan.conf
index 3dafd6a..869f6f2 100644
--- a/templates/Fedora/34/etc/clamd.d/scan.conf
+++ b/templates/Fedora/34/etc/clamd.d/scan.conf
@@ -734,6 +734,7 @@ OnAccessMountPath {{ item.mount }}
 # root user from triggering a scan (unless OnAccessPrevention is enabled).
 # Default: no
 #OnAccessExcludeRootUID no
+OnAccessExcludeRootUID yes
 
 # With this option you can whitelist specific UIDs. Processes with these UIDs
 # will be able to access all files without triggering scans or permission