On Wed, 12 Nov 2003 21:22:29 +0100 Christoph Cordes <[EMAIL PROTECTED]> wrote:
> well. The basic idea is to divide the database into some smaller
> files. Like one for viruses, one for trojans, one for construction
> kits, one for exploits and one for other malware (like cracks, adware,
This is a good idea - the only problem is that more files mean more
problems with their synchronization. clamscan and clamd will verify and
load all databases from a database directory so eventually only
freshclam will require a (very) small change. But first we must test
database.clamav.net for some time yet.
> - smaller downloads, less traffic for the update server (at the moment
> the database is pretty small (as in filesize) but it will grow)
We only use daily.cvd/viruses.db for daily updates.
> by the recipient. And a construction kit isnīt a virus - even if it
> can build them - it wont directly harm the recipients system. On the
Well that depends on a virus definition. According to some definitions
even a C compiler may be considered as a virus !
> Q: Do you have any idea how much work it is to code this.
> A: No.
Only a few more lines in freshclam.
> Q: Cool, why donīt you code it?
> A: Cause C is first of all a vitamin to me an i only heard of people
> that do programmes with it. :-)
:)
[1] Fred Cohen, "Computer Viruses". Ph.D. thesis, University of Southern
California, 1985.
Best regards,
Tomasz Kojm
--
oo ..... [EMAIL PROTECTED] www.ClamAV.net
(\/)\......... http://www.clamav.net/gpg/tkojm.gpg
\..........._ 0DCA5A08407D5288279DB43454822DC8985A444B
//\ /\ Thu Nov 13 05:02:40 CET 2003
pgp00000.pgp
Description: PGP signature
