Mark Pizzolato - ClamAV-devel wrote: >> "Will refuse to load" means that daily.cvd will be considered a >> malformed database by ClamAV <= 0.94.2. > > That would be the case if it was actually downloaded. > Will the freshclam <= 0.94.2 actually download the updated signatures? > > I think it won't and it will just spit out the warning message about > Upgrading details. > > Then there really is no kill-switch, but signature updates simply > stop happening. This, along with the many other changes since 0.94.2 > will drastically reduce the effectiveness of ClamAV to detect current > threats. That is what you get when you don't update.
I would say that freshclam *should* refuse to download and "put in production" a database that, if put in production, would prevent clamav from working. This seems the Right Thing To Do even regardless of end-of-life problems. In fact, this can be easily achieved even if the old freshclam cannot prevent new "lethal" database from being downloaded: just change naming convention for the "new" database and publish "new" freshclam that is aware of the new naming. This way, old freshclam will not "see" the new database and thus the old installations will not be "killed". Just slowly "starved" of new signatures. That said, I mostly disagree with angry posters: I believe that antivirus software upgrades should be treated the same way as security patches - urgently. Delaying upgrade of antivurus software is as bad as delaying installation of a security patch to your system. In both cases you stay unprotected against freshly-emerged threats. Eugene
signature.asc
Description: OpenPGP digital signature
_______________________________________________ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net
