On 03.10.17 16:40, Anssi Johansson wrote:
> if your virus scanner detected EICAR from my message, I dare to say
> that it is broken.
Check the headers in my message again, I was quoting a report generated
for one of Nymblewyke's messages, not for yours.
I know customer setups which will automati
A slight tangent, which I bring up since I have seen it discussed on
Twitter: Clam AV will erroneously trigger on some specific EICAR false
positives due to file normalization. The example that was being discussed
at that time was a whitespace prepended file. Since the EICAR string is all
printable
Ralph Seichter kirjoitti 3.10.2017 klo 17.33:
A virus was found: {HEX}EICAR.TEST.10.UNOFFICIAL
First upstream SMTP client IP address: [198.148.79.53]:24855 lists.clamav.net
Received from: 198.148.79.53 < 127.0.0.1 < 204.29.186.62 < 172.26.252.15 <
10.76.1.211 < 149.32.192.35
Return-Path:
Fr
> A virus was found: {HEX}EICAR.TEST.10.UNOFFICIAL
>
> First upstream SMTP client IP address: [198.148.79.53]:24855 lists.clamav.net
> Received from: 198.148.79.53 < 127.0.0.1 < 204.29.186.62 < 172.26.252.15 <
> 10.76.1.211 < 149.32.192.35
>
> Return-Path:
> From: Nymblewyke
> Sender: "clamav-u
Nymblewyke kirjoitti 3.10.2017 klo 17.13:
Here are some details. Seems like it should work, just trying to find the log
to see if there is an issue.
I tried what you tried:
[/]# echo 'X50!P%...' > eicar.text
This is wrong, it should be X5O (big O) and not X50 (zero). Cut and
paste is your
Nymblewyke kirjoitti 3.10.2017 klo 13.20:
Trying to trigger CLAMAV with an EICAR file for a test. The file reacts on a
windows machine, but on a redhat machine using clamav there is no trigger at
all. We are using the standard eicar text file. Any thoughts on where to look
for details on why i
On 10/03/2017 12:20 PM, Nymblewyke wrote:
Trying to trigger CLAMAV with an EICAR file for a test. The file reacts on a
windows machine, but on a redhat machine using clamav there is no trigger at
all. We are using the standard eicar text file. Any thoughts on where to look
for details on why i
Trying to trigger CLAMAV with an EICAR file for a test. The file reacts on a
windows machine, but on a redhat machine using clamav there is no trigger at
all. We are using the standard eicar text file. Any thoughts on where to look
for details on why it might not be triggering.
_
