hi!Your clamav binary is too old. If you look at the ChangeLog (from a current source tarball, or sf.net ViewCVS, there were some serious fixes made in september.
live virus sample in: http://rana.dyndns.org/mbox.txt
i'm using clamscan version 20030829, and when i do 'clamscan --mbox' on the aforementioned, i get:
clamscan: message.c:739: decodeLine: Assertion `strlen(line) <= 76' failed. Aborted
it seems that the encoding has one corrupt line (one additional char at the end of one line). Nonetheless, Outlook Express happily delivers an infected executable. Once extracted, the executable is detected by clamscan as Worm.Gibe.F
According to Tomasz, there will be a new release in september.
Thomas
------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
