Re: [clamav-users] 98.4 under Ubuntu 14.04.LTS

2014-07-14 Thread Scott Kitterman
On Monday, July 14, 2014 23:36:51 Chris wrote: > On Tue, 2014-07-15 at 00:00 -0400, Scott Kitterman wrote: > > On Monday, July 14, 2014 22:44:01 Chris wrote: > > > I had to get a new box this weekend and since I was starting from > > > scratch decided to go with Ubuntu instead of the old Mandriva.

Re: [clamav-users] 98.4 under Ubuntu 14.04.LTS

2014-07-14 Thread Chris
On Tue, 2014-07-15 at 00:00 -0400, Scott Kitterman wrote: > On Monday, July 14, 2014 22:44:01 Chris wrote: > > I had to get a new box this weekend and since I was starting from > > scratch decided to go with Ubuntu instead of the old Mandriva. When > > installing from apt-get I find that it's an ol

Re: [clamav-users] 98.4 under Ubuntu 14.04.LTS

2014-07-14 Thread Scott Kitterman
On Monday, July 14, 2014 22:44:01 Chris wrote: > I had to get a new box this weekend and since I was starting from > scratch decided to go with Ubuntu instead of the old Mandriva. When > installing from apt-get I find that it's an older version so I decided > to go ahead and install from source sin

[clamav-users] 98.4 under Ubuntu 14.04.LTS

2014-07-14 Thread Chris
I had to get a new box this weekend and since I was starting from scratch decided to go with Ubuntu instead of the old Mandriva. When installing from apt-get I find that it's an older version so I decided to go ahead and install from source since I've done it that way before on Mandriva. The config

Re: [clamav-users] Heuristics.Phishing.Email.SpoofedDomain FP fixed upstream?

2014-07-14 Thread Al Varnell
OK, I guess that will work, but I don’t think it’s formatted exactly right and as I said before I think an “M:” whitelist record is more appropriate here. At any rate, I suggest you upload it to using the "Send a false positive report” form so that other users

Re: [clamav-users] Heuristics.Phishing.Email.SpoofedDomain FP fixed upstream?

2014-07-14 Thread Kris Deugau
Al Varnell wrote: > You have certainly found the correct pair as your message is still showing up > immediately as infected here. ... and here, too; I wondered why my message hadn't shown up in my clamav mail folder... > Heuristics detections are accomplished by the engine, not a specific > si

Re: [clamav-users] Heuristics.Phishing.Email.SpoofedDomain FP fixed upstream?

2014-07-14 Thread Al Varnell
You have certainly found the correct pair as your message is still showing up immediately as infected here. Heuristics detections are accomplished by the engine, not a specific signature. The line you found in daily.hdb identifies this as one of several hundred mostly financial institutions th

[clamav-users] Heuristics.Phishing.Email.SpoofedDomain FP fixed upstream?

2014-07-14 Thread Kris Deugau
I just came across a FP report for a hit from Heuristics.Phishing.Email.SpoofedDomain. On checking the message by hand, it no longer triggers this test, either on my desktop test/dev system running 0.98.4, or on the production servers running 0.97.6. Examining the message by hand, the best guess

Re: [clamav-users] ClamAV(R): Compiling OpenSSL For Windows

2014-07-14 Thread Shawn Webb
I haven't tried with LibreSSL. Their first (and second) official release was over the weekend. Your mileage may vary. On Sun, Jul 13, 2014 at 1:48 PM, Steve Basford < steveb_cla...@sanesecurity.com> wrote: > Just a thought.. Will ClamAV use LibreSSL too, as it's supposed to be drop > in > > On 9