On Wed, 9 Mar 2005, Jeremy Kitchen wrote:
Shouldn't be overly difficult to set an environment variable with the filename before calling the event program.
True. Now, what to call this variable? I was thinking CLAM_VIRUSEVENT_*. Where * is one of FILENAME, VIRUSNAME, etc...
How does that suit everyone?
Plus, most people are probably going to be sending an email with the script, so something like:
qmail-inject -f [EMAIL PROTECTED] [EMAIL PROTECTED] <<EOF From: Clamd Daemon <[EMAIL PROTECTED]> To: System Administrator <[EMAIL PROTECTED]>
The following file was found to be infected with a virus: $INFECTED_FILE
The virus that infected this file is: $VIRUS_INFECTION
Hope this is useful information!
EOF
Yeah, that shouldn't be a problem... unless the user evals the variable.
But then again that's just plain stupid to do anyway and s/he deserves to be "pwned". :P
_______________________________________________ http://lurker.clamav.net/list/clamav-devel.html