Hi,
Is it possible for 3 lines to be added to the libclamav.def file for the
Windows dll creation? The lines being:
EXPORTS cl_fmap_open_handle @72
EXPORTS cl_fmap_close @73
EXPORTS cl_scanmap_callback @74
It makes it so scans can be done on memory buffers.
Thanks
Brett
appreciated.
Brett
___
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http
, which does run, and then running the
milter without the max-children, and with --external, and still nothing happens.
I have reported it to [EMAIL PROTECTED] as directed in the log file.
Anyone out there have any idea as to what might be going on? If anyone needs
more infor
hat didn't work for us was
trying to use the C-wrapper rather than the suidperl functionality-
permissions on necessary directories for perlscanner were all screwed
up- use suidperl !!
(rpmfind.net)
Have fun,
Brett Kislin
On Thu, 12 May 2005 [EMAIL PROTECTED] wrote:
> I would be happ
I'm getting a permission denied message when trying to start clamav-milter
under version 0.85. I says "/dev/console: Permission denied"
Clamav 0.84 works fine on the same system.
Here's the debug output.
clamav-milter -fNnqD /var/spool/MIMEDefang/clmilter.sock
LibClamAV debug: Running as user d
7 15:45 mailserver.com_randomname
clamav runs as user qscand.
How can we fix this?
Thanks in advance,
Brett Kislin
___
http://lurker.clamav.net/list/clamav-users.html
,
Brett
clamstat.tar.gz
Description: application/tgz
___
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
.
http://www.hillsboroughcounty.org/images/clamstat.png
Thanks,
Brett
clamstat.tar.gz
Description: application/tgz
___
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
On Monday 07 February 2005 13:59, Jamie Wilch wrote:
> I just upgraded from .081b to .082. After the upgrade I started
> receiving the following in my logs:
>
> Feb 7 11:41:05 mail sendmail[22494]: j17Idpkg022494: Milter: data,
> reject=451 4.7.1 Please try again later
> Feb 7 11:41:05 mail send
On Tuesday 01 February 2005 12:40, Niek wrote:
>
> unfortunately, the --unrar parameter is for clamscan only.
The clamd.conf file says...
# Due to license issues libclamav does not support RAR 3.0 archives (only the
# old 2.0 format is supported).
If this is still an issue then maybe a clamav-mi
sion. I just resent the correct version.
Thanks,
Brett
___
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Made change to account for milter logging changes in ClamAV 0.81
Enjoy,
Brett
Options:
-h Help
-f Log file
-l Log type - valid types are: amavis and milter - Defaults to milter
-r Show recipients
-s Show senders - Milter only
-c Minimum virus count for unique hosts
-v Minimum virus type
Made change to account for milter logging changes in ClamAV 0.81
Enjoy,
Brett
Options:
-h Help
-f Log file
-l Log type - valid types are: amavis and milter - Defaults to milter
-r Show recipients
-s Show senders - Milter only
-c Minimum virus count for unique hosts
-v Minimum virus type
Added in MIME:Lite functionality so the email is properly formatted and can
have a real name. This helps them fly under the SpamAssassin Radar. However
you will need MIME:Lite, CGI, and a recent CPAN version of Net::SMTP.
Enjoy,
Brett
Options:
-h Help
-f Log file
-l Log type - valid types
erl
# Licensed under the GNU GPL
# Author - Brett L Simpson
# Features
# Count the number of times a virus was sent in descending order
# Count the number of times an IP address sent a virus in descending order
# Show each unique virus that was sent for each IP address.
# Populate a complex data
i8UCQBi3010908: stream:
HTML.Phishing.Bank-1 Intercepted virus from
<[EMAIL PROTECTED]> to
<[EMAIL PROTECTED]>
Brett
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use IT products in your business? Tell us w
I have the MailFollowURLS feature enabled on a low priority mail server and was
wondering if there is a way to log that a virus was found from a url.
So far it only logs the name of the virus.
Thanks,
Brett
---
This SF.Net email is sponsored
I have corrected a few bugs, added smtp support, and added a minimum virus count.
For smtp support you will need to define your smtp server and email address in perl
script.
You will also need "LogSyslog" enabled in your clamav.conf for Milter logging.
Options:
-h Help
-f Log file
-l Log type -
On Mon, 2004-08-30 at 18:33, Internet Helpdesk wrote:
> > For example:
> > ./source_virus_count.pl -l amavis -f amavis/amavis.log -r -c 10
> For this to work for milter, what logging to I need to have? Do I enable
> verbose logging in clamav.conf? Right now In my log I have:
>
> Mon Aug 2
AIL PROTECTED]>; Fri, 20 Aug 2004 08:02:17 -0400
Subject: Test url
From: Brett Simpson <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Content-Type: text/plain
Message-Id: <[EMAIL PROTECTED]>
Mime-Version: 1.0
Date: Fri, 20 Aug 2004 08:02:17 -0400
Content-Tran
t breakdown of which recipients were sent virus's along with
the count.
5: Per host breakdown of which senders were sent virus's along with the
count.
Brett
#!/usr/bin/perl -w
# Released under the GPL
# Populate a complex data structure with message id's, ip address's, and virus na
>>> [EMAIL PROTECTED] 8/10/2004 3:49:05 PM >>>
> It looks good. I might steal some of this to do reporting for some
> clients - do you mind?
Go right ahead and use it anyway you want.
---
SF.Net email is sponsored by Shop4tech.com-Lowest p
On Mon, 2004-08-09 at 22:21, Stephen Gran wrote:
> Don't loop - make a more complicated data structure, like a multi level
> hash (ugly pseudo-code to follow):
Ok.
> Just read the file once, fill in the bits as you go, and process the
> whole thing at the end.
I wrote this and it's much much fas
ething similar to this...(if possible)
Aug 9 16:03:14 ns2b clamav-milter[9851]: i79K3CfR009900: stream:
Trojan.JS.RunMeIntercepted virus from <[EMAIL PROTECTED]> at 4.4.103.77 to <[EMAIL
PROTECTED]>
Thanks,
Brett
---
SF.Net em
I'm seeing this too. I've updated ClamAV to the latest CVS version to see if that
helps.
>>> [EMAIL PROTECTED] 07/26/04 12:48PM >>>
- Original Message -
From: "Mike Brodbelt" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, July 26, 2004 11:28 AM
Subject: [Clamav-users] New vari
also http://software.othello.ch/mod_clamav/ how has
been your experience?
Were planning on adding this to our new Squid proxy server using
Dansguardian.
I'm going to setup up a web site with examples of our configs and
additional tweaks soon.
Brett
oo.exe to foo.txt will
> still be caught as a banned 'exe' file - blocking only based on the name
> would be way too primitive.
How did you impliment this? I like the idea of checking the file to see if the
extension matches what is returned by the file command.
Brett
xe' file - blocking only based on the name
would be way too primitive.
How did you impliment this? I like the idea of checking the file to see
if the extension matches what is returned by the file command.
Brett
extension has
a .zip.
I have also saved the attachment and ran clamscan --unzip Messages.txt and it picks up
the virus so I know it's not getting corrupted.
Is this a bug?
I'm using clamscan / ClamAV version devel-20040304.
Brett
--
I noticed it was added to the database on Aug 1st at 13:20 (see link below). I'm
running clamav-20030320 and it's filtering out that virus ok.
http://sourceforge.net/mailarchive/forum.php?thread_id=2886216&forum_id=34654
Brett
>>> [EMAIL PROTECTED] 08/04/03 10:24AM >
81 ms 167.046 ms
24 gw-dedicati.aruba.it (62.149.128.25) 165.593 ms 165.470 ms 164.789 ms
25 62.149.225.70 (62.149.225.70) 163.068 ms 161.568 ms 160.676 ms
Brett
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional com
31 matches
Mail list logo
