On 6/18/13 12:35 PM, Greg Folkert wrote:
On Tue, 2013-06-18 at 12:22 -0700, Dennis Peterson wrote:
On 6/18/13 8:08 AM, Alain Zidouemba wrote:
As Joel Esler mentioned before, there are signatures for UNIX malware in
the official ClamAV DB.
- Alain
You would think such a simple question would have a simple answer. UNIX is not
Solaris. Solaris is one of a few UNIX's around. Are the UNIX signatures for
Tru-64, HP-UX, BSD UNIX, SCO UNIX, AIX...? Doesn't matter if there are or not to
someone seeking Solaris 10 information, actually. Are there any for Solaris 10?
dp
How about you download the signatures, decompress them and quickly scan
them yourself? It seems as though this is a simple thing to do. Yes? I
mean you probably already have the files local in your installation...
why does someone else have to do something for you?
Why all the noise? I don't think Joel's answer was specific enough for
you... as Joel Esler responded earlier:
There are patterns for almost all operating systems in the
ClamAV db.
Why is it lately a lot of people (in many many disciplines) just want an
ANSWER and don't want to understand how to get the answer... themselves?
I'll be quiet now.
Does "almost all operating systems" include Solaris 10? I've done my homework
and know the answer, actually. Did that years ago. I think unless you know the
the signature name by policy specifically indicates an OS family and specific
version you can't assume anything about the names and where the signatures
apply. That's why Sourcefire is the best group to ask the question about Solaris
10, specifically. Why the noise? Nobody answered the question. Those answers
were noise. I don't have any particular interest in the answer but did want to
help get the OPs exact question answered. And maybe I'm just bored, too. With
retirement comes a lot of free time. Or maybe this exchange will help people be
better communicators. No guarantees.
The answer is no, but Sourcefire can validate that.
dp
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
