You're not doing anything wrong.
ClamAV takes it's time to load 6533172 signatures.
On 2019-11-09 08:48, Klaus Tachtler via clamav-users wrote:
Hi,
I have a problem while starting clamav.
The start time is **2 Min. 34 sec.** and it seems that the time was
waste on or after the step
--> Bytec
try this:
in file clamd.service
to section:
[Service]
add
TimeoutSec=900
restart clamd service
h2h
On 7/24/19 1:49 PM, Reio Remma via clamav-users wrote:
Hello!
I rebooted my CentOS 7 mail server last night and all of a sudden clamd
is refusing to start - it burns CPU for a couple of minut
This problem sounds very familiar...though on Linux
Clamd can take VERY long to load it's signatures,
Try increasing your ServicesPipeTimeout to exagerated 600 sec to see if
it fully loads.
If that works you may want to lower values till you feel comfortable
with the length.
On 7/5/19 6:3
Thanks Google - many will follow.
https://gsuiteupdates.googleblog.com/2017/01/gmail-will-restrict-js-file-attachments.html
Axb
___
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Atm, the ClamAV is publishing around 300 sigs or more every 4 hours.
Why so many signatures only every four hours instead of frequently
releasing much smaller batches.
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/cla
6 07:29 PM, Axb wrote:
Found it!
https://www.bsk-consulting.de/2015/12/22/yara-rules-to-detect-uncommon-system-file-sizes/
see "rule Suspicious_Size_chrome_exe" and others...
Assumed it was a "legal" keyword.
On 08/11/2016 07:26 PM, Axb wrote:
I picked the filename conditi
Found it!
https://www.bsk-consulting.de/2015/12/22/yara-rules-to-detect-uncommon-system-file-sizes/
see "rule Suspicious_Size_chrome_exe" and others...
Assumed it was a "legal" keyword.
On 08/11/2016 07:26 PM, Axb wrote:
I picked the filename condition from a sample rul
atest/writingrules.html
Is it a new keyword not yet in a released version of yara? Did you mean
filesize?
On Thu, Aug 11, 2016 at 5:21 AM, Axb wrote:
Guys,
clamscan --database=test.yar blah.html
LibClamAV Error: yyerror(): test.yar line 6 undefined identifier
"filename"
LibClamAV Error: cli_load
strings:
$BLAH = "blah"
condition:
$BLAH and filename == "blah.html"
}
Am I missing something? or is filename unsupported by ClamAV's YARA engine?
Thanks!
Axb
___
Help us build a comprehensive ClamAV guide:
htt
On 08/10/2016 08:22 AM, ANANT S ATHAVALE wrote:
Hi,
Most of the mails are marked with Win.Exploit.CVE_2016_3316-1. Is this
a false positive?
seems so!
added Win.Exploit.CVE_2016_3316-1 to whitelist.ign2
___
Help us build a comprehensive ClamAV gu
l.
What else would "ExtraDatabase" be used for?
Axb
On 07/13/2016 09:52 PM, Joel Esler (jesler) wrote:
Nothing prevents anyone from using 3rd party sigs. We just want to
incorporate 3rd party sigs into the official repo, for more coverage,
for more users.
If ClamAV has, say, 10M u
My guess is that Benny doens't really mean "silly" but probably is his
"special" way of saying that it would be nice to be able to opt-in to
third party sigs.
On 07/13/2016 09:30 PM, Joel Esler (jesler) wrote:
Why would it be silly to make life easier for millions of users?
On Jul 13, 2016
it please be
added? Would help to "failsafe" rules
Thanks
Axb
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
no, could it be made switchable (via clamd.conf) and --switch for
clamscan.
Thanks
Axb
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
14 matches
Mail list logo
