[...] > > While I agree that packages ought not require internet access to be useful, I > think that the utility of clamav without updates of some kind is very limited > and so the presence of an initial set of signatures does not materially > affect > the utility of the package. > > I'd appreciate feedback on this. I don't think dropping the initial > signature > files hurts users in any material way and will help users with limited > bandwidth (the shipped cvd file quickly ages and will need a lot of updates, > so > it's almost like having to download it twice). >
One question seems crucial to me: If we don't ship signatures, would that keep clamd from starting? Now it might even be a good thing if clamd fails to start as a non-working clamd is easier to detect for a sysadmin than a semi-working one. On the other hand, we need a clear message for our users to tell them that it is somehow *ok* that clamd fails to start. Best, Michael
pgpyAZXKCRtlP.pgp
Description: PGP signature
_______________________________________________ Pkg-clamav-devel mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/pkg-clamav-devel
