I am currently unaware of any third party assessments of the ClamAV code. Sent from my iPhone
> On Jul 24, 2019, at 19:36, David Cantrell <david.m.cantr...@gmail.com> wrote: > > Yes I'm aware of its open source status that's why I'm asking here. I'm > specifically asking if anyone is aware of any independent third party > assessments of it from a security vulnerability standpoint. My org is > considering it due to a very specific tech requirement but is concerned about > the residual risk of installing it. Due to a specific schedule and specific > tech issues it is the only real option we have available right now but we > don't have time to assess it ourselves at this time, hence my question asking > if there are any third party reports available to help us reduce our risk > concerns. That's all. Thanks. >> On Jul 24, 2019, 16:39 -0500, Joel Esler (jesler) <jes...@cisco.com>, wrote: >> ClamAV is an open source project. Anyone can examine the code at any time >> and many continually do. >> >> Do you mean in terms of security of the code base or in terms of efficacy. >> Either way, the answer is the same. >> >> Sent from my iPhone >> >>> On Jul 24, 2019, at 15:00, David Cantrell via clamav-users >>> <clamav-users@lists.clamav.net> wrote: >>> >>> Has ClamAV been independently assessed by a third party? >>> >>> _______________________________________________ >>> >>> clamav-users mailing list >>> clamav-users@lists.clamav.net >>> https://lists.clamav.net/mailman/listinfo/clamav-users >>> >>> >>> Help us build a comprehensive ClamAV guide: >>> https://github.com/vrtadmin/clamav-faq >>> >>> http://www.clamav.net/contact.html#ml
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ clamav-users mailing list clamav-users@lists.clamav.net https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
