René Bellora wrote:
John Hinton wrote:
Seems all other viruses are being handled by Clam on these machines.
do you have 'DetectBrokenExecutables' enabled in clamd.conf ?
regards, René
Rene,
You put me onto the right track. I guess I should admit to egg on my face, or perhaps call myself 'some.fool'.
I had a month or more ago switched to the Dag repository and did upgrades to my various Clam installs. The short of it, there were two config files on one of my servers, clamav.conf and clamd.conf. I thought I was running off of clamd.conf, but in fact I was still on the old conf file. Broken viruses were not enabled. I guess standardizing is a good practice, as long as one makes sure they get to the end of the standardizing?
Nortor was reporting Netsky.P, whereas Clam was reporting some.fool.P, but not sending those to /dev/null.
My apologies to the list for my waste of bandwidth/time. I hate it when I'm just a dumb user!!! :)
John Hinton
_______________________________________________ http://lurker.clamav.net/list/clamav-users.html
