-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Tomasz Kojm wrote: <--snip--> > This can be solved using file permissions as well, eg. by running > clamd with only read privileges to the database directory. > I was thinking about the possible VIRUS or TROJAN being able to gain root access by some other means on a Linux system. And by simple knowledge of the presence of ClamAV on the system; could render the virus scanning engine completely useless just by placing a simple blank file in the directory.
- -James -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGHrimkNLDmnu1kSkRAlmWAJ98PcIdTiKNKVs9zlEo3kEMpp3QjACfQip6 3aYZCpUv02uezfprvuQJ3V8= =rDsc -----END PGP SIGNATURE----- _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
