:: On Wed, 19 Oct 2016 09:14:44 +0200 :: <20161019091444.00005...@gmx.net> :: Grayhat <gray...@gmx.net> wrote:
> Ok for the sigs being up-to-date; but my point was about the "extra" > signatures offered by SaneSecurity, not the regular ones; I found that > the regular signatures are often "behind" while the ones offered by > SaneSecurity are faster to catch-up, so my suggestion was to add those > signatures to your ClamAV scanner to help improve its efficiency; I've > been using a number of signatures from SaneSecurity along with the > regular clamav signatures and I found them to be quite effective at > blocking "junk" (spam, malware and so on) that's why I'm suggesting to > give them a spin just in case, here's the list of additional signatures I'm using; notice that it's important to always include the first two since they allow to quickly fix false-positives issues (if any, by the way) and to improve the scanner performances rsync://rsync.sanesecurity.net/sanesecurity/sanesecurity.ftm rsync://rsync.sanesecurity.net/sanesecurity/sigwhitelist.ign2 rsync://rsync.sanesecurity.net/sanesecurity/junk.ndb rsync://rsync.sanesecurity.net/sanesecurity/jurlbla.ndb rsync://rsync.sanesecurity.net/sanesecurity/lott.ndb rsync://rsync.sanesecurity.net/sanesecurity/phish.ndb rsync://rsync.sanesecurity.net/sanesecurity/rogue.hdb rsync://rsync.sanesecurity.net/sanesecurity/scam.ndb rsync://rsync.sanesecurity.net/sanesecurity/spam.ldb rsync://rsync.sanesecurity.net/sanesecurity/spamimg.hdb rsync://rsync.sanesecurity.net/sanesecurity/spamattach.hdb rsync://rsync.sanesecurity.net/sanesecurity/blurl.ndb rsync://rsync.sanesecurity.net/sanesecurity/bofhland_cracked_URL.ndb rsync://rsync.sanesecurity.net/sanesecurity/bofhland_malware_URL.ndb rsync://rsync.sanesecurity.net/sanesecurity/bofhland_phishing_URL.ndb rsync://rsync.sanesecurity.net/sanesecurity/bofhland_malware_attach.hdb rsync://rsync.sanesecurity.net/sanesecurity/scamnailer.ndb rsync://rsync.sanesecurity.net/sanesecurity/crdfam.clamav.hdb rsync://rsync.sanesecurity.net/sanesecurity/porcupine.ndb rsync://rsync.sanesecurity.net/sanesecurity/phishtank.ndb rsync://rsync.sanesecurity.net/sanesecurity/winnow_malware.hdb rsync://rsync.sanesecurity.net/sanesecurity/winnow_malware_links.ndb rsync://rsync.sanesecurity.net/sanesecurity/winnow_phish_complete.ndb rsync://rsync.sanesecurity.net/sanesecurity/winnow.complex.patterns.ldb rsync://rsync.sanesecurity.net/sanesecurity/winnow_spam_complete.ndb rsync://rsync.sanesecurity.net/sanesecurity/winnow.attachments.hdb rsync://rsync.sanesecurity.net/sanesecurity/winnow_extended_malware.hdb rsync://rsync.sanesecurity.net/sanesecurity/winnow_bad_cw.hdb rsync://rsync.sanesecurity.net/sanesecurity/foxhole_generic.cdb rsync://rsync.sanesecurity.net/sanesecurity/foxhole_filename.cdb rsync://rsync.sanesecurity.net/sanesecurity/malwarehash.cdb HTH ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot _______________________________________________ Assp-test mailing list Assp-test@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-test
