Dennis Peterson wrote:
It's worth repeating the question I asked over a week ago - what
methodology is used in collecting these so that dupes are avoided?
Nobody answered, unfortunately, so now we see we have dupes.
Sorry for the delay... apart from being more than a little busy... I
must admit, I've spent more time adding to the signatures,
then doing the "boring" bit of documenting the methods of producing them.
Anyway, here's a very rushed, "first draft" version of how I put
together one signature:
http://sanesecurity.com/clamav/method.pdf
No doubt, it's got a lot of stuff missing and people will have much
better/quicker way of doing the same thing..... but,
I guess that's life! ;)
Cheers,
Steve
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
