Dears,
I can agree with what Ged said. Running qmail/simscan/vpopmail it's only
feasible if you have enough programming language and YOU will continue
discover and do your own patches for the problems that can appear. I did
it for several years but too much is too much.
What version of simsc
ng flowing trough emails now-days.
---
Best regards,
Iulian Stan
On 2020-10-19 20:01, G.W. Haywood via clamav-users wrote:
Hi there,
Just some thoughts, as you asked. Sorry is isn't more helpful.
On Mon, 19 Oct 2020, iulian stan via clamav-users wrote:
#cat bla.gdb
S1:F:dd014af5ed6b38
Hello,
I was trying to understand why there are no hits for google
safe-browsing. I was looking around the API, what is downloaded in the
mysql DB and to be honest i got stuck.
I have two issues which i cannot understand and i can split the
questions in two:
(1) is related how clamav is act
ve expected to
have more hits because now-days most of these URLs are used for phishing.Sent
from my Samsung Galaxy smartphone.
Original message From: "G.W. Haywood via clamav-users"
Date: 10/17/20 13:39 (GMT+02:00) To: Iulian
Stan via clamav-users Cc: "G.W. Ha
Hi all,The script for safe browsing is not downloading all the definitions all
the time since it will be time/resource-consuming. Definitions are stored in
mysql and only the delta is downloaded from google. After the download is
successfully and the mysql data is up-to-date you can generate th
rs"
Date: 10/4/20 12:27 (GMT+02:00) To: iulian
stan via clamav-users Cc: "G.W. Haywood"
Subject: Re: [clamav-users] possible rar issues
when files have special
characters Hi there,On Sun, 4 Oct 2020, iulian stan via clamav-users wrote:>
I know that relying on th
Dear Jeff,
I don't know what 'qmailctl cdb' is doing in your Linux(since qmail is
over-patched nowdays) but i believe is touching ONLY the qmail tcprules.
This means simscam cdbs and not generated/updated when is needed.
Basically for simscan you need to run:
/var/qmail/bin/simscanmk (path
nt just shy of sixty thousand signatures in the 'daily'
database which have a name containing 'Emotet'.
On Wed, 16 Sep 2020, iulian stan via clamav-users wrote:
If you are talking about compressed files you have multiple choice to
do
this as well: 1) use complicated MTA rules to unzi
Hi Cyril,
How did you transmitted the virus ? Via email? As attachments ? It was
compress or uncompressed ?
I know you might not agree with me but my suggestion is to block from
MTA sending executable file. (exe,bat,pif,scr,dll, etc). Most of the
MTAs are anyway directly rejecting when such a
reating
a local.gdb file, and adding a line S:W:."
But to be fair, who is actually using clamscan or clamdscan with --debug
activated on production ?
---
humbled and grateful for your great link,
Iulian
On 2020-08-31 12:35, G.W. Haywood via clamav-users wrote:
Hi there,
On Mon,
Hi everyone,
This is a good question. I was curious what kind of signatures has
safebrowsing.cvd.
I've also used something like "sigtool --unpack=safebrowsing.cvd -u
somefile"
Looking inside of "somefile" i see something like:
S2:F:0001a4b9be5221cffadca82be04f8909357495f2d7fa6e038e5443444d581
Dear Christian,
It's normal that scanning with clamdscan takes a shorter time than
clamscan because the virus databases is already loaded (since it's a
daemon) and ready for action. For testing purposes(debugging, etc) you
can use clamscan for all other purposes use clamdscan where you don't
nee
12 matches
Mail list logo
