> Are signatures for Belgian or Dutch bank-phishing mails (ING,
> BNP-Paribas-Fortis, Belfius, etc) included in these databases?
I've replied off-list
Cheers,
Steve
Sanesecurity
___
Help us build a comprehensive ClamAV guide: visit http://wiki.c
On 11/26/12 9:02 AM, "polloxx" wrote:
> Are signatures for Belgian or Dutch bank-phishing mails (ING,
> BNP-Paribas-Fortis, Belfius, etc) included in these databases?
>
Open the "daily" portion of your database with a text editor and in the
"daily.pdb" section you will find all the institutions
On Mon 26.Nov.12 08:29, Christoph wrote:
Am 24.11.2012 um 17:57 schrieb Dan McDaniel:
Here it is: 66dcf678d8ee29a91156f2baa95d531d vozacka.exe
This should be detected now (daily.cvd 15637). Sorry for the delay.
Thank you very much.
I didn't want to sound impatient, but was worried that
> Jari Fredriksson skrev den 25-11-2012 17:10:
>> These rules must have a common signature? Old downloads suddenly
>> trigger
>> positives.
>
> unofficial sigs, what should clamav team do about them ?
Well, I've tried to explain what to do with FP's like this...
http://sanesecurity.co.uk/fps.htm
Jari Fredriksson skrev den 25-11-2012 17:10:
These rules must have a common signature? Old downloads suddenly
trigger
positives.
unofficial sigs, what should clamav team do about them ?
only report fails on official sigs
___
Help us build a compr
>
> These rules must have a common signature? Old downloads suddenly trigger
> positives.
Hi Jari,
These sigs need to be reported as FP's to:
false_positive AT crdf.fr
In the mean time, I've whitelisted on the mirrors, until they can take a
look.
One thing to double check is to submit one of
