da...@davidwbrown.name schrieb: > Hello Nigel, first of all I want to say that I fully hope for the intended > success of the clamav/freshclam virus info acquisition project as described > in your clam-av.blogspot.com blot entry. This reply negates the reply I had > planned after attempting to be: the-first-to-comment on your blog entry at > clam-av.blogspot.com (as alluded to below). The attempt and failure to post a > comment about: clam-av.blogsopt.com and your blog entry about the new > freshclam driven virus data acquisition project is the crux of what I had > planned to say but now: not needed. In essence I had planned my comment as > follows: ...all the data and information acquisition in the world has no > value or meaning without some process that can: analyze, categorize, sort and > execution based on the target information. Case-in-point: my interest in > ClamAV. Reason for interest: I am myself a victim of browser hijacking and at > least one internet/email based identity theft. When I discovered that my PC > based Trend Mi > cro only works intermittently and allowed a very nasty browser hijacking > .dll to enter my Windows box system I set a target goal to: > do-whatever-it-takes to prevent any such future attacks. This is where I am > now with my quest: an attempt to post a comment at: clam-av.blogspot.com. > This attempt fails because of technological issues beyond the control or > beyond the capabilities of the user. The user in this case of course is > myself. To successfully post a blog at: clam-av.blogspot.com the user needs > an OPENID with an accepted url. The only OPENID url I have is: > http://technorati.com. According to the OPENID folks the technorati.com url > should be sufficient. The results returned from: clam-av.blogspot.com > indicate the technorati.com url as both unnecessary and insufficient for the > purposes of: OPENID. > > I apologize for the rant stated above but as usual rants are the result of > some human frustration that cannot be resolved with logic or some type of: > follow-the-instructions or even a good-ol' RTFM. The inability to do > something as simple as posting a comment on a blog admittedly must appear > trivial if not insignificant by most folks. Notwithstanding, I still feel > that even the small gotchas are as inhibiting and destructive as the much > larger and more significant hitches-in-the-git-a-long. > > For technologies to survive, develop and expand many people need to be > involved. A categorization of the type of folks needed for any given > technology: gurus, experts, capable users, users, > those-who-are-only-mildly-interested. > > I have nearly 20 years of networking and internet based computing experience > as a professional. Most, if not all of the experience described in the > previous sentence has been in a Unix or Linux based environment. Other types > of computing environments other than those just list have been used strictly > as client machines. None-the-less, I do not consider myself as any type of > expert on nearly 100% of all technologies that can be found on the internet > today. At best I might say that I am a capable user within the area of: > tcp/ip, networking, routing, fire-walling (netfilter), almost anything > written in ANSI C, dns (named), web servers (httpd), email (smtpd). Yet, > without help from bonafide experts in the previously mentioned technologies I > would be at a complete loss as to howto: configure, build and deploy most > technologies that are vital to the thin internet gateway I have built for > myself. I am on the verge of losing this gateway if I am not able to find a > sufficient and ne ce > ssary system of protections that are manageable by a sufficiently capable > user.
Hi David, > > It is my hope that ClamAV integrated with Squid-cache and ICAP that allready works, i have it up and running may help me attain the lofty goal of intrusion detection via: smtp, http, ftp and whatever other protocol that has been compromised for the purposes of evil. intrusion detection can done by snort smtp runs fine with clam allready in many applications ( clamav-milter ) ftp scanning can be done by frox http ( as i allready said with squid ) at last why use windows, and if ,why dont ask m$ for solution its expensive enough, should have that onboard *g? Regards > > Regards, David. > > > Nigel Horne wrote .. >> Folks, >> >> We've just added an entry to the blog at clam-av.blogspot.com which >> covers the new statistics system. >> >> The article gives some background information, what we've published to >> date and what we hope to do in the future. It also covers why you should >> consider submitting data and how to do so. >> >> All suggestions for future blog entries are welcome - please let me know >> any ideas you have. >> >> -Nigel >> >> -- >> Nigel Horne, nigel.ho...@sourcefire.com >> Director of Product Management (ClamAV), Sourcefire, >> http://www.sourcefire.com >> +1 301 518 7944 or +1 706 705 4022 FAX: +44 870 705 9334 ICQ: 20252325 >> >> ClamAV is a registered trademark of Sourcefire Inc. >> _______________________________________________ >> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net >> http://www.clamav.net/support/ml >> >> ------------------------------------------------------------------------ >> >> _______________________________________________ >> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net >> http://www.clamav.net/support/ml -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml