* andre nz:
> The logo (in general ) and images on the current homepage are telling
> people clamav is malicious, clamav is the monster.
You keep trying to sell *your* opinion as facts, that's all it boils
down to, as far as I can tell. You try to hide *your* POV behind
nebulous "new users" and "
* andre nz:
> It's just that it literally looks like it is malware [...]
You may think that, and you are free to express that opinion. I don't
feel reminded of malware, however. Impasse. Out of curiosity, what does
"literally looks like malware" even mean? Your individual perception
certainly doe
* andre nz:
> Just in regards to the website and logo etc it comes across as quite
> odd. [...]
That may be your personal, non-representative opinion, to which you are
of course entitled. I don't personally find anything odd about the
website or logo, and the latter in particular does not affect
* Scott Kitterman via clamav-users:
> Debian 10 still has LTS security support, but that's it. I don't find
> it surprising that it's too old.
I am certainly not surprised, in case you were wondering. What does
surprise me is that some people hold on to old software stacks for a
long time, even t
* Damian via clamav-users:
>> requirements.txt:
>> requests >= 2.22.0
>> SQLAlchemy >= 1.4.0
>
> Are those requirements sharp? I wonder if Fangfrisch could run on
> older Debian systems with Debian-shipped python packages.
Fangfrisch is available as a Debian package [1], but that does not
change
Fangfrisch release 1.9.0 is now available via
https://pypi.org/project/fangfrisch/
Changes in this release:
- The logic for on_update* has been largely rewritten. As a
user-visible side effect, detailed debugging information about
on_update_* tasks is now available.
- For improved
* energynorman:
> is sqlite needed?
No, SQLite is simply the most convenient option for many users.
Fangfrisch stores only small amounts of data, and DB access is not
performance critical. You are however free to use any database dialect
supported by SQLAlchemy. According to [1], this includes Ma
Fangfrisch release 1.8.0 is now available via
https://pypi.org/project/fangfrisch/
Changes in this release:
- Sanesecurity (https://sanesecurity.com) provider default
configuration overhaul. Switch to a less congested mirror site,
add/remove several signature URLs.
- Modernise Pyt
Fangfrisch release 1.7.0 is now available via
https://pypi.org/project/fangfrisch/
Changes in this release:
1. Support user-defined connection timeouts.
2. Cover Python versions 3.7 to 3.12 during CI test phase.
-Ralph
___
Manage your clamav-users
Fangfrisch release 1.6.0 is now available via
https://pypi.org/project/fangfrisch/
Changes in this release:
1. Fix an issue where long-running operations, e.g. slow virus
definition file downloads, could exhaust SQLAlchemy's database
connection pool.
2. Cover Python versions 3.7 to 3.11 durin
* Jorge Bastos:
> It's just the link :P
That matters little. Some mailing list subscriber might give in to
temptation and download the virus file while not in a properly isolated
environment, and trigger the payload due to incompetence or bad luck.
> How would you be able to test then? ;)
As wa
* Jorge Bastos:
> I have a virus file that came on an email, and clamav doesn't detect
> [...]
> Here's the file.
Seriously? Do *NOT* send virus files to a public mailing list.
-Ralph
___
clamav-users mailing list
clamav-users@lists.clamav.net
https:
* Ralph Seichter via clamav-users:
> When running external commands, automx2 now catches all types of
> exceptions [...]
I of course mean Fangfrisch, not automx2. That's what I get for
releasing two of my applications in short succession.
Fangfrisch release 1.5.0 is now available via
https://pypi.org/project/fangfrisch/
Changes in this release:
1. CI tests now cover Python version 3.9 as well as 3.7 and 3.8.
2. When running external commands, automx2 now catches all types of
exceptions, not only those in the subprocess excepti
* Karthik Iyer via clamav-users:
> I plan to run clamav on docker instances in a kubernetes cluster.
>
> What would be the process of updating the pods in the cluster ?
Not meaning to sound hostile, but I think it needs to be said: You
appear to lack programming experience and use this mailing li
* Karthik Iyer via clamav-users:
> I keep getting this error when i try to use SendAndScanFileAsync
>
> "C:\KJ\Work\GEP Demos\CloudMersive Virus Scan
> Demo\CloudMersiveDemo\bin\Debug\netcoreapp3.1\CloudMersiveDemo.exe
> (process 22096) exited with code 0.
What error are you referring to? By conv
Fangfrisch release 1.4.0 is now available via
https://pypi.org/project/fangfrisch/
Changes in this release:
1. Allow the use of "url_xyz = disabled" in addition to empty values to
disable URLs.
2. Remove "url_doppelstern*" and "url_crdfam_clamav" from Sanesecurity's
provider section because t
Fangfrisch release 1.3.0 is now available via
https://pypi.org/project/fangfrisch/
Changes in this release:
1. The ScamNailer service (http://www.scamnailer.info) is no longer
maintained by its authors, and the related URL in the Sanesecurity
provider section is now disabled in the internal Fa
* Sudhir Kumar Maharjan:
> Mainly we want Centralised deployment of the software and policies
> with dashboards and real-time/historical reporting.
This is not really a ClamAV-specific issue. There are various tools for
infrastructure automation; see for example SaltStack, Ansible or Puppet.
-Ra
* David Beecher via clamav-users:
> I am trying to set up a filter for watching for a specific keyword in
> a subject line so I can tag it as spam and reject it.
Milter-regex would work nicely, but you need neither a milter not ClamAV
for this simple task. Sendmail can perform header checks[1], e
Release 1.2.0 is now available via
https://pypi.org/project/fangfrisch/
Previously, logging was limited to console output (stdout/stderr).
This release adds optional syslog support, which can be enabled in
the configuration file as follows:
log_method = syslog
log_target = /dev/log
Syslog
* Matus UHLAR:
> I disagree, setting up clamav-milter is much easier than settingup
> amavis.
Then we'll have to agree to disagree in this matter.
> I use clamav-milter and spamass-milter on my machine. So, I have both
> spam and virus scanning. Didn't have big need to replace them by
> amavis h
* Matus UHLAR:
> clamav-milter can plug clamav to sendmail or postfix and clamd can
> scan attachments directly, amavis is not really needed.
Setting up Amavis with an MTA is no more complicated that setting up
clamav-milter. However, as you know, Amavis allows adding additional
virus scanner or
* Bev Clues via clamav-users:
> Can you tell me if clamd / clamdscan will scan email attachments as
> well as the email file.
Clamdscan will scan whatever you pass as an argument. However, with
email it is common practice to have additional software like Amavis
(https://gitlab.com/amavis/amavis)
* Dieter Raith via clamav-users:
> I will migrade to a more powerfull Cloud server with 8 GB ram and also
> provide some cache. I sent a question to my provider (Hetzner), if the
> can do it easily.
Since you wrote you currently have 2 GB RAM, I am guessing that you are
using a Hetzner CX11 cloud
* vin:
> The wget option is definitely an interesting work around. Could build
> a script.
You could, but you don't need to. Allow me to mention "Fangfrisch" as a
possible solution. While written to handle unofficial signature files,
Fangfrisch is completely content-agnostic, meaning it will down
Release 1.1.0 is now available via
https://pypi.org/project/fangfrisch/
This is a feature relase, focused on cleaning up local files if the
configuration changes over time.
IMPORTANT: If you are upgrading from a previous release, you need to
either delete all existing database tables or create
It took a while for my submission to be processed, but the Gentoo Linux
installation package is finally available:
https://packages.gentoo.org/packages/app-antivirus/fangfrisch
-Ralph
___
clamav-users mailing list
clamav-users@lists.clamav.net
https:/
* Douglas Stinnette:
> I have been getting reports of ClamAV using high CPU during full scans.
High CPU and I/O load while to scanning full file system? You find that
surprising how, exactly, in a virus scanner? :-)
-Ralph
___
clamav-users mailing li
Release 1.0.1 is now available via
https://pypi.org/project/fangfrisch/
There are no functional changes, only the following config defaults were
modified:
- Add two disabled data sources which are only available with a paid
subscription to SecuriteInfo default configuration. Suggested by
* Amish via clamav-users:
> Did that already few hours back!
Great minds... ;-)
> I would suggest that your code detect the first run and automatically
> run initdb if db_url is sqlite database and file does not exist (but
> directory exist)
I had thought about this before, but decided against
* Amish via clamav-users:
> I wanted default config file such that package runs out of box.
I understand.
> That said, I have not disabled support for both, anyone can edit conf
> file as per their requirement.
You are right. Perhaps adding the two additional sections with explicit
enabled=fals
* Amish via clamav-users:
> Created AUR package for Arch Linux. (uses systemd timer instead of cron)
Nice, thank you. May I ask why you did not enable support for both
Malwarepatrol and SecuriteInfo in your packaged configuration?
I have opened a pull request for Gentoo Linux today, providing an
* Amish V.:
> Is it a drop-in replacement (more or less) for clamav-unofficial-sigs?
Indeed. I set out to write a replacement, one that is more secure and
convenient to configure than clamav-unofficial-sigs, and that is also
how I use Fangfrisch on production servers.
-Ralph
___
Hello list members,
since I first mentioned "Fangfrisch" here, I have added some quality-
of-life functionality and further enhanced the documentation [1]. No
issues were reported during testing, and I am happy to announce that
Fangfrisch release 1.0.0 is now available at PyPI [2] and ready for us
* Rxx Mxx via clamav-users:
> That is a perl library pcre isnt it?
I don't understand your question -- if it was actually intended for me,
that is.
-Ralph
___
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailma
* Reio Remma via clamav-users:
> That's the trouble with RHEL/CentOS - they stick with the major
> software versions they initially come with for the lifetime of
> their distribution version.
If there are no official Python 3.7 packages for these distributions,
maybe community packages are availa
I just remembered that I use a feature of the subprocess module that was
introduced with Python 3.7. So yes, version 3.7 is a hard requirement.
-Ralph
___
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo
* Reio Remma via clamav-users:
> RHEL/CentOS 8 are on version 3.6 of Python and they would be excluded
> from running the script.
I don't actually know if Python 3.6 would work, not having any machine
with this old version available.
Python version 3.7 was released in June 2018, and version 3.8
After the recent discussion of various security risks posed by the
clamav-unofficial-sigs script, I have written "Fangfrisch" as a secure
and convenient replacement. It was meant for personal use at first, but
it works so well for me that I have taken the time to write a full
documentation, in the
* James Brown via clamav-users:
> Have you put your concerns into the issue tracker on GitHub?
The script is provided for free, and I am torn between being grateful to
the author for that and telling him that his script is, in my personal
opinion, flawed and badly implemented.
I don't state this
* Michael Orlitzky via clamav-users:
> I've been dragging my feet on these updates because I don't know how
> to fix this. The least-bad idea I have so far is to just patch the
> script to die if it's run as EUID == 0.
I have run the steps the script would perform when run as root manually
becaus
* Grscripts via clamav-users:
> unluckly clamdscan does not honor --config-file=
Since clamdscan leaves scanning to the server (which is properly
configured), I have never tried to use "clamdscan --config-file=...",
but according to the man-page, the option should be supported.
-Ralph
_
* Rick Graham via clamav-users:
> Perhaps a useful feature would be an extra verbose option ("-vv") that
> would print more clamscan status, like loading signatures.
That would not save you from using 'clamscan' when you should be using
'clamdscan'. ;-)
-Ralph
__
* Micah Snyder via clamav-users:
> [ClamAV] would immediately begin listening on the unix/tcp socket for
> requests and fork into the background so as not to block the boot
> process.
To me, slowing down the boot process is just the (admittedly annoying)
symptom of an underlying ClamAV issue. Bas
* J. R. via clamav-users:
> You could add a simple bash sleep statement to the appropriate
> init.d/cron file.
On systems using dependency based init systems like "init" or "OpenRC",
services are usually started sequentially. I expect adding a sleep
statement would actually slow things down even
* Paul B. via clamav-users:
> I've been finding for some time now that I have a 10-15 second delay
> before my machine settles down after a boot.
Welcome to the club. Launching ClamAV has become so slow that I need to
take steps to ensure that more important services like sshd are started
before
* MOHAMED OMAR MAKRAM via clamav-users:
> I have a virus on my server and I have no idea where to begin to get
> rid of it. I have four sites, all are personal sites and all are
> drupal.
If you are really certain that there is a virus on your server, my
recommendation is to re-install that serve
> https://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users returns
> "403 Forbidden".
I should probably mention that the above URL is sent to subscribers in
the 'Welcome to the "clamav-users" mailing list' message. It does not
match the link in the ML footer.
-Ralph
___
https://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users returns
"403 Forbidden". Could somebody please investigate? Thanks.
-Ralph
___
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
50 matches
Mail list logo
