yes clamav does detect Bagle now, but when we first got hit with Bagle it was undetected for about 2 hours...
(i.e. clamav virus db was about 2 hours behind our first sighting of it). I was just wondering how to
add virus signatures to our own database immediately (the signatures.pdf file says you have to send it to
a SIGNING_SERVER?? - initially i wanted to just update our own signatures, before worrying about sending it
to the clamav servers)
cheers
jon
Darryl Luff wrote:
jonathan soong wrote:
i think you can also transform the CVD file into a human readable thing?I know that clamav detects Bagle, because we've had detections already (before the commercial tool we also use by the way). When I run the above command I get a viruses.db2 file which has text descriptions and includes the Bagle one.
i'm not sure, but if you do: sigtool --unpack-current daily.cvd
you get a human readable viruses.db, i'm not sure where this is actually generated from? (your system or the online database?)
does anyone know where?
What's the difference between --unpack and --unpack-current? They both seem to do the same thing and produce identical output?
Thanks.
------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
