On Mon, Mar 01, 2004 at 09:06:12PM +0100, Erik Corry wrote: | On Mon, Mar 01, 2004 at 05:31:35PM +0700, Fajar A. Nugraha wrote: | > Bill Taroli wrote:
| > However, judging from the fact that it IS spreading in my network now, | > some people tend to do exactly that. | | Kaspersky have added the text string to their signatures (the one | that tries to entice you into unpacking the zip file). That seems | to be all you can do right now. In the somewhat longer run perhaps | the engine needs to be able to get a list of possible passwords so it | can have a go at decrypting the zip file. Is the zip file really encrypted, or is the password just an "advisory" flag that an unzip tool is supposed to honor? If its the latter, then clamav could just ignore the password to unpack and scan the archive anyways. -D -- One OS to rule them all, one OS to find them, One OS to bring them all and in the darkness bind them, In the Land of Redmond, where the Shadows lie. www: http://dman13.dyndns.org/~dman/ jabber: [EMAIL PROTECTED]
signature.asc
Description: Digital signature
