> We need a unique string, eg:
>
> can pickup your E-Card at the FriendGreetings.com by clicking on the link
>
> and now we need to generate a hex-string from the data:
>
> echo "can pickup your E-Card at the FriendGreetings.com by clicking on the link" |
> sigtool --hex-dump > my.db
>
> cp my.db /usr/local/share/clamav
>
> clamscan should be able to detect the virus, clamd needs RELOAD.
There is a mistake in the above description. Each signature must be in the
following format:
Virus name=HEXSTRING
So you need to edit generated my.db file and add the virus name, in other case
scanners will fail to load the database due to malformed signature.
Best regards,
Tomasz Kojm
--
oo ..... [EMAIL PROTECTED]
(\/)\......... http://www.konarski.edu.pl/~zolw
\..........._ I nie zapomnij kliknac w brzuszek...
//\ /\\ <- C. Amboinensis www.pajacyk.pl
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
