server:
  host: "127.0.0.1"
  port: 8080

log:
  level: "info"
  # level: "debug"

audit:
  enabled: true
  server: "192.168.1.100"
  port: 9000
  buffer_size: 1000

scanner:
  hash:
    # algorithm: "sha256"
    # algorithm: "md5"
    algorithm: "xxhash64"
  file:
    include_paths:
      - /
    exclude_paths:
      # ========== 虚拟/临时文件系统==========
      - /proc
      - /sys
      - /dev
      - /tmp
      - /var/tmp
      - /run
      - /mnt
      - /media
      
      # ========== 系统高频写入目录==========
      - /var/log
      - /var/cache
      - /var/mail
      - /var/spool
      - /var/lib/docker
      - /var/lib/containerd
      - /var/lib/systemd
      
      # ========== 内核模块==========
      - /usr/lib/modules
      - /lib/modules
      - /usr/src
      
      # ========== 应用缓存和构建目录==========
      # 通用
      - "**/node_modules"
      - "**/.git"
      - "**/.cache"
      - "**/build"
      - "**/dist"
      - "**/unpackage"
      - "**/vendor"
      - "**/__pycache__"
      - "**/.idea"
      - "**/.vscode"
      
      # ========== Web 应用特定==========
      - "**/cache"
      - "**/logs"
      - "**/tmp"
      - "**/temp"
      - "**/uploads/tmp"
      
      # ========== 用户缓存目录 ==========
      - /root/.cache
      - /root/.npm
      - /root/.local
      - /home/*/.cache
      - /home/*/.npm
      - /home/*/.local
      - /home/*/.gradle
      - /home/*/.m2
      
      # ========== 其他高频变化目录 ==========
      - /var/run
      - /var/lock
      - /opt/*/cache
      - /opt/*/logs
    fast_hash: true
    fast_hash_size: 100MB
    fast_hash_chunk: 2MB
  process:
    interval: 300 # seconds

storage:
  data_dir: "/var/lib/sysmonitord"
  process_system_file: "process_system.data"
  file_system_file: "file_system.data"
  dubious_file_list_file: "dubious_files.data"
  dubious_process_list_file: "dubious_processes.data"

notification:
  interval: 5 # minutes
  email:
    enabled: true
    recipients:
      -
    smtp:
      server:
      port: 465
      username:
      password: