/manual/Signatures/AllowLists.html#signature-
> ignore-lists for details.
>
>
>
> Micah Snyder
> ClamAV Development
> Talos
> Cisco Systems, Inc.
> From: clamav-users on behalf
> of Tim McConnell via clamav-users
> Sent: Thursday, June 8, 2023 10:12 AM
> To: Joel Esl
; —
> Sent from my iPhone
>
> > On Jun 8, 2023, at 12:35, Tim McConnell via clamav-users
> > wrote:
> >
> >
> > Thanks for that AL, now how do I add to the DB? Two things I'm not
> > is a programmer or DBA :-(
> >
___
c/Standard/Module1.xba
>
> Then copy the results to an fp.local file. You will probably have to
> create such a file and add it to the ClamAV database.
>
> -Al-
>
> > On Jun 7, 2023, at 11:45 AM, Tim McConnell via clamav-users
> > wrote:
> >
> > Hi all,
&g
Hi all,
I get this in my report:
/home/tmick/.config/libreoffice/4/user/basic/Standard/Module1.xba:
PUA.Doc.Tool.LibreOfficeMacro-2 FOUND
How do I request the macro be added to the safe list?
Thanks!
--
Tim McConnell
___
Manage your clamav-users ma
Hi Marc,
Well I got it to work except the logging (or at least it runs with no
errors) I tried the asterisk "*" and no, it doesn't work but adding a
space and \ gets it to be accepted. I do have yes to both --recursive
and --detect-pua set to yes. I just need to figure out the logging
thing and I'
xclude are still scanned?
I'm using Debian Bookworm and the man pages (Debian README.zip also)
state there are changes from the "upstream version".
But the script does run.
Thanks for the advice given so far.
--
Tim McConnell
On Fri, 2023-03-24 at 07:38 +, Andrew C Aitc
Okay Marc,
I came up with this:
#/bin/bash
declare clammy.sh
PATH=/bin:/usr/bin:/sbin:/usr/sbin
/usr/bin/clamscan --exclude ="^/home/tmick/.clamtk/viruses/" \
--exclude="^/home/tmick/Documents/ACI_Learning/CEH/" \
--exclude="^/home/tmick/Nextcloud/Documents/ACI_Learning/" # Try to
exclude every
So Marc, you're saying do something like this:
#/bin/bash
declare clammy.sh
/usr/bin/clamscan --exclude ="^/home/tmick/.clamtk/viruses" --exclude
="^/home/tmick/Documents/ACI_Learning/CEH/" --exclude =
"^/home/tmick/Nextcloud/Documents/ACI_Learning/*" --exclude
="^/home/tmick/Nextcloud/*" --exc
On Wed, 2023-03-22 at 18:15 +, newcomer01 via clamav-users wrote:
> äähhmmm why you escape the slash? This is not needed.
I didn't set that it was done by ClamTK (the GUI Interface) not me. so
from the pointers you gave (Marc) ClamTK has bugs? and I should just
schedule the cronjob manually?
I
hboard looks like.
> It's pretty cool, but maybe a bit overwhelming.
>
> Regards,
> Micah
>
>
> Micah Snyder
> ClamAV Development
> Talos
> Cisco Systems, Inc.
>
> From: clamav-users on behalf
> of newcomer01 via clamav-users
> Sent: Sunday, Mar
Hi Marc,
So apparently it was a bug(?) in ClamTK. The errors have gone away (for
now). The big problem is I want Clam to do what Clamonacc does so
removing it shouldn't be an option? I want it to run at certain times
to check for malicious files, etc. I'll re-enable the schedule via Clam
TK and se
Hi List,
I keep seeing this in my log files:
"clamonacc[1200]: ERROR: Clamonacc: at least one of OnAccessExcludeUID,
OnAccessExcludeUname, or OnAccessExcludeRootUID must be specified ...
it is recommended you exclude the clamd instance UID or uname to
prevent infinite event scanning loops"
I used
Hi list,
So I read the documentation and maybe I missed something but I have to
use pkill -9 clamscan to end the scan that is scheduled (through
clamtk) for 22:59.
I'm running Debian Bookworm that is updated daily. The results from
clamconf -n
Checking configuration files in /etc/clamav
Config
13 matches
Mail list logo
