[clamav-users] ClamAV 1.4.2 and 1.0.8 security patch versions published

g this issue. * ClamOnAcc: Fixed an infinite loop when a watched directory does not exist. This is a backport of a fix from ClamAV 1.3.0. * GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/1426> Micah Snyder (they/them) ClamAV

[clamav-users] ClamAV 1.4 as Next Long-Term Stable (LTS)

oon be available for community review. This version will focus on resolving FIPS mode compatibility issues for newer distributions, such as Red Hat Enterprise Linux 9. Stay tuned for further updates. Thank you for your continued support. Micah Snyder (they/them) ClamAV Development Talos

Re: [clamav-users] ClamAV 1.4.1, 1.3.2, 1.0.7, and 0.103.12 security patch versions published

7;s huge, and it seems to have a new CVE like every 12 weeks. So, I do I get that. But in most cases, I don't believe that's worth the burden of tracking down bugs due to unreproducible C/C++ build system technology, and maintaining all those extra packages. Micah Snyder (they/t

Re: [clamav-users] ClamAV 1.4.1, 1.3.2, 1.0.7, and 0.103.12 security patch versions published

103? Just avoiding the build system changes from Autotools to CMake + Rust? Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Michael Orlitzky via clamav-users Sent: Thursday, September 5, 2024

[clamav-users] ClamAV 1.4.1, 1.3.2, 1.0.7, and 0.103.12 security patch versions published

tabases in preparation for future work. * Backport of GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/1233> * Fixed an unaligned pointer dereference issue on select architectures. Fix courtesy of Sebastian Andrzej Siewior. * Backport of GitHub pull reque

[clamav-users] ClamAV 1.4.0 and ClamAV Bytecode Compiler 1.4.0 published

e bytecode compiler currently uses (deprecated) non-opaque pointers. Updating to all opaque pointers will be required for the next release. See https://llvm.org/docs/OpaquePointers.html for more information. 🌌 New Requirements: * LLVM 16 * Clang 16 Micah Snyder (they/them) Cl

Re: [clamav-users] about scan file size changed of clamd.conf

languages like Golang that bundle in a very large runtime. Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of takahiro suzuki via clamav-users Sent: Monday, July 29, 2024 10:20 PM To: clamav

Re: [clamav-users] clamav preventing CLion from working properly

My advice is not to use the Prevention option because it slows everything down too much, and to make sure it is configured properly so that the on-access scanning service does not monitor the scanning process because that causes an infinite loop. Micah Snyder (they/them) ClamAV Development

Re: [clamav-users] clamav preventing CLion from working properly

; Now clamd process spikes to 100% of cpu (thing that makes me go crazy > since i don't understand why it does not use more than 1 cpu) every time > i open any program. I'm not sure about it not using more cores. ClamD's multi-threading capabilities need wor

Re: [clamav-users] Problems subscribing to lists

messenger chat service. You will have to install the Discord program on your computer or mobile device, or use the online app: https://discord.com/app Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: sarahayre Sent: Wedne

Re: [clamav-users] Issue getting private local mirror to work

ror served up a 429 or 403 error message, so it's possible you got that prior to switching over to your private mirror. To speed things up, try deleting the freshclam.dat file in your database directory, then try freshclam again. Regards, Micah Micah Snyder (they/them) ClamAV Development Talo

Re: [clamav-users] Question about future expected Main + Daily CVD size

m sorry I don't have a more concrete answer. Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Mikhail Soumar via clamav-users Sent: Tuesday, July 9, 2024 7:17 PM To: Mikhail Soumar

Re: [clamav-users] Problems subscribing to lists

hed for your username and found we have the ClamAV server as a mutual server. Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of sarahayre via clamav-users Sent: Monday, July 15, 2024 3:11 PM

Re: [clamav-users] Question about additional processing on Documents in Clamd Configuration File

ction. Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Paul via clamav-users Sent: Thursday, June 27, 2024 3:28 PM To: clamav-users@lists.clamav.net Cc: Paul Subject: [clamav-users] Question

Re: [clamav-users] Question on ClamAV memory usage with respect to the signature database

is very lightweight. I don't have any other ideas at this time. I've been pushing for quite a while now on an internal project to identify lower-value signatures so we can archive them to reduce the RAM requirements, improve load time, and improve scan time. That's been very slow

Re: [clamav-users] Suppress warning logs

e code and then building from source. Sorry. -Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Lorenzo Mirabella via clamav-users Sent: Wednesday, June 12, 2024 11:07 AM To: clamav-users@lists.clamav.n

[clamav-users] New Tool: ClamAV Large Archive Scanner

t for you and will only add overhead to your scanning process. Regards, Micah Snyder Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. ___ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.n

Re: [clamav-users] reject/flag files based on extension

I don't think there is any mechanism in clamav-milter or clamd to alert/convinct/block attachments scans based on file extension. Perhaps there is an option in Sendmail? ​ Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-

[clamav-users] ClamAV 1.4.0 release candidate now available!

y compiled library in the build path. * GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/1258> Acknowledgments Special thanks to the following people for code contributions and bug reports: * RainRat Posted by Micah Snyder <https://www.blogger.com/profile/077989

Re: [clamav-users] Are the Clam AV community signature sets still being actively maintained by Cisco?

features or administrative dashboard. It suffered from lack of support for users. And without the dashboard it was not a good showcase for Secure Endpoint. It was for the best to discontinue Immunet. Secure Endpoint is still an active Cisco product and it's really good. Cheers, Micah Micah S

[clamav-users] ClamAV 1.3.1, 1.2.3, 1.0.6 patch versions published

future work. * GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/1240> * Silenced a warning "Unexpected early end-of-file" that occured when scanning some PNG files. * GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/1216> Mi

Re: [clamav-users] Unable to download daily.cvd after upgrade to RHEL 8

re: https://docs.clamav.net/faq/faq-freshclam.html#http-error-codes Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of John Paul Guay via clamav-users Sent: Thursday, March 7, 2024 3:38 PM To: Cl

Re: [clamav-users] Unable to download daily.cvd after upgrade to RHEL 8

system to RHEL 8, however. John, if you can get the HTTP "cf-ray" header value from the HTTP 403 response to the proxy, our Cloudflare admin can look for the firewall event logs in Cloudflare to confirm the reason for the 403 response. Regards, Micah Micah Snyder (they/them) Clam

Re: [clamav-users] Software version from DNS: 0.103.11, but version is 1.3.0?

release. Or if your release is no longer supported, I'd like to have it present you with a list of supported versions and recommend an upgrade. Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behal

Re: [clamav-users] Slow PDF Scanning pt 3.

third-party PDF parser in the future in order to improve detection and performance. It is possible that we will replace our own PDF parser partially or entirely depending on the results of this investigation. I mention this so that you do not spend a tremendous effort on this issue. Regards

Re: [clamav-users] Bytecode run timed out in interpreter after 5000 opcodes

affected by the vulnerabilities. I am curious though - what are your MaxFileSize / MaxScanSize settings? I wonder if you're seeing timeouts with the default settings or if you increased them. Regards, Micah Micah Snyder (they/them) ClamAV Development Talos Cisco Systems, Inc. _

Re: [clamav-users] Save a copy of the mail (quarantine=quarantined by clamav-milter)

he quarantine queue can be examined via mailq -qQ # For Postfix this causes the message to be placed on hold Cheers, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Postmaster via clamav-users Sent: Friday, Febru

Re: [clamav-users] ClamAV 1.3.0 feature release and 1.2.2, 1.0.5 security patch release!

Correct. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Arjen de Korte via clamav-users Sent: Wednesday, February 7, 2024 12:12 PM To: ClamAV users ML Cc: Arjen de Korte Subject: Re: [clamav-users] ClamAV 1.3.0

[clamav-users] ClamAV 1.3.0 feature release and 1.2.2, 1.0.5 security patch release!

t;VirusEvent" command. Thank you to Amit Schendel for identifying this issue. Affected versions: * 0.104 (all patch versions) * 0.105 (all patch versions) * 1.0.0 through 1.0.4 (LTS) * 1.1 (all patch versions) * 1.2.0 and 1.2.1 Posted by Micah Snyder <

Re: [clamav-users] Installation and Use

that ClamAV is a command-line (terminal) application. Double-clicking the EXE's will not do anything useful. You can find installation instructions here: https://docs.clamav.net/manual/Installing.html#windows After installing, continue along to the Usage section. -Micah Micah Snyder C

Re: [clamav-users] ClamAV 1.3.0 second release candidate published!

Thanks Andreas, I'm glad to hear it. Cheers, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of A. Schulze via clamav-users Sent: Monday, January 29, 2024 2:59 PM To: clamav-users@lists.clamav.net Cc: A. Sc

Re: [clamav-users] [ext] ClamAV 1.3.0 second release candidate published!

ething Ralf so I could fix it. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Ralf Hildebrandt via clamav-users Sent: Thursday, January 25, 2024 3:55 AM To: clamav-users@lists.clamav.net ; ClamAV Ann

[clamav-users] ClamAV 1.3.0 second release candidate published!

ttps://github.com/Cisco-Talos/clamav/pull/1144> You can find the full list of changes and improvements in the blog post for the first release candidate<https://blog.clamav.net/2023/12/clamav-130-release-candidate-now.html>. Posted by Micah Snyder <https://draft.blogger.com/profile/0779

[clamav-users] ClamAV Debian multi-Arch Docker images now available!

tags>. Posted by Micah Snyder <https://www.blogger.com/profile/07798916006145826441> at <https://blog.clamav.net/2024/01/clamav-debian-multi-arch-docker-images.html> 1:01  PM<https://blog.clamav.net/2024/01/clamav-debian-multi-arch-docker-images.html> Micah Snyder ClamAV D

Re: [clamav-users] ClamAV 1.3.0 release candidate published

Thanks for the kind words, Steve. I'm glad to hear we're making a difference. Happy holidays! -Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Steve Basford via clamav-users Sent: Friday, December 15,

Re: [clamav-users] ClamAV 1.3.0 release candidate published

Thanks Andreas and Arjen. I will investigate asap. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of A. Schulze via clamav-users Sent: Monday, December 18, 2023 9:57 AM To: clamav-users@lists.clamav.net

[clamav-users] ClamAV 1.3.0 release candidate published

sy of Albert Chin-A-Young. * GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/526> Acknowledgments Special thanks to the following people for code contributions and bug reports: * Albert Chin-A-Young * Andrew Kiggins * driverxdw * Luca D'Amico *

Re: [clamav-users] How to respond to request?

of clamav, and you're scanning your whole system and don't have specific file to pinpoint as the cause of the issue - don't worry about it. Cheers, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behal

Re: [clamav-users] Question About MaxFileSize / news of upcoming Large Archive Scanner tool

file formats. Respectfully, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Paul Kosinski via clamav-users Sent: Monday, November 13, 2023 7:28 PM To: Micah Snyder (micasnyd) via clamav-users Cc: Paul Kosinski Su

Re: [clamav-users] Question About MaxFileSize / news of upcoming Large Archive Scanner tool

e it directly with ClamAV. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Vu, Hong-Duc V. via clamav-users Sent: Tuesday, November 14, 2023 10:49 AM Cc: Vu, Hong-Duc V. ; ClamAV users ML Subject: Re

Re: [clamav-users] Question About MaxFileSize / news of upcoming Large Archive Scanner tool

#x27;t have a specific release date in mind. It likely won't be until early next year. While we've started code review and testing, the developer that has built the tool for us is now working on adding the allmatch-mode feature support. Best regards, Micah Micah Snyder Cla

[clamav-users] ClamAV 1.2.1, 1.1.3, 1.0.4, 0.103.11 patch versions published

libclamunrar) to version 6.2.12. * GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/1053>. * Windows: libjson-c 0.17 compatibility fix with ssize_t type definition. * GitHub pull request<https://github.com/Cisco-Talos/clamav/pull/1065>. * Windows: Up

Re: [clamav-users] first questioon????

Hi Rahim, Sorry, this is not possible. -Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Rahim Fakir via clamav-users Sent: Sunday, October 22, 2023 5:18 PM To: clamav-users@lists.clamav.net Cc: Rahim Fakir

Re: [clamav-users] [ext] Compressing log files with clamav

is feature, you're welcome to. My team is unfortunately down a developer, and already behind on other work. It is unlikely that we'll pick it up ourselves. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on

Re: [clamav-users] Error installing from source

of UnRAR is now using some C++ 11 features that do not work with the default settings for older versions of GCC. Regards, Micah Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Andrew C Aitchison via cla

Re: [clamav-users] Freshclam version 1.0.2 warnings

Sorry for the confusion, everyone. The warning message was accidentally introduced when adding it for debugging purposes. We fixed it in 1.1 but missed backporting the fix to 1.0. I will make priority to fix it in the next 1.0 patch version. Regards, Micah Micah Snyder ClamAV Development

[clamav-users] ClamAV 1.2.0 feature version and 1.1.1, 1.0.2, 0.103.9 patch versions published

Talos/clamav/pull/1010 0.103.10 ClamAV 0.103.10 is a critical patch release with the following fixes: * Upgrade the bundled UnRAR library (libclamunrar) to version 6.2.10. * GitHub pull request: https://github.com/Cisco-Talos/clamav/pull/1009 Posted by Micah Snyder <https://www.blogger.

Re: [clamav-users] QNAP NAS virus definition updates.

Unless QNAP is customizing things or hosting their own mirror, chances are it's reaching out to https://database.clamav.net over port 443. Disclaimer: I don't have any experience with QNAP devices. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. ___

[clamav-users] ClamAV 1.2.0 release candidate now available

* Craig Andrews * jedrzej * matthias-fratz-bsz * Nils Werner * Răzvan Cojocaru Posted by Micah Snyder <https://www.blogger.com/profile/07798916006145826441> at 12:52  PM<https://blog.clamav.net/2023/08/clamav-120-release-candidate-now.html> [https://img1.blogblog.com/i

Re: [clamav-users] Scanning blocked during database reload

re it is the same as what "clamconf" is using? Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Michał Smyczyński via clamav-users Sent: Thursday, July 13, 2023 8:04 AM To: ClamAV users ML

Re: [clamav-users] ClamAV on RHEL9 with FIPS enabled

Apologies for the delayed response. We are only just starting to discuss a possibility of a new CVD (signed signature database archive) format internally. Sorry I cannot promise anything in terms of timeline. -Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc

Re: [clamav-users] Needed to whitelist Email.Phishing.RPMSG_Downloader-10004958-0

You can submit FP reports through https://www.clamav.net/reports/fp Our threat research team has automation in place behind this submission portal to investigate and resolve FP's. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc.

[clamav-users] Shutting down old ClamAV Bugzilla

/share-post.g?blogID=2366689974368239573&postID=5279146531599910816&target=pinterest> Micah Snyder ClamAV Development Talos Cisco Systems, Inc. ___ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mai

Re: [clamav-users] Question About MaxFileSize

temp files as we go without extracting all of it to disk before starting to scan. However, it would be far easier to make a shell script or a python script that wraps clamscan/clamdscan and uses native tools like "tar", "unzip", etc. Regards, Micah Micah Snyder ClamAV Dev

Re: [clamav-users] How do I get something added to the ignore list

If you wish to ignore the PUA.Doc.Tool.LibreOfficeMacro-2 signature, you can create a .ign2 signature file in your clamav database directory. See https://docs.clamav.net/manual/Signatures/AllowLists.html#signature-ignore-lists for details. Micah Snyder ClamAV Development Talos Cisco Systems

Re: [clamav-users] Unix.Malware.Kaiji-10003916-0

, so it was simply thrown out. -Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Maarten Broekman via clamav-users Sent: Thursday, June 8, 2023 4:20 AM To: ClamAV users ML Cc: Maarten Broekman Subject: Re: [clamav

Re: [clamav-users] LibClamAV Error: cli_html_normalise: style chunk size underflow

message to occur within a normal file. If you're doing a scan of the directory with clamscan, the filepath of the file that causes it should appear immediately after the error message. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc.

Re: [clamav-users] [ext] Segfaults with database version 26908

Hi Mario, all, Thank you for the extra info and the offer for help. Last night I also received a backtrace and a sample that will reproduce the crash. We should be able to figure out a fix for the bug from here. Thanks again! Regards, Micah Micah Snyder ClamAV Development Talos Cisco

Re: [clamav-users] [ext] Segfaults with database version 26908

elief. But we of course still want to find and fix the bug. If anyone has any additional leads or a backtrace / call stack from GDB that would be very helpful. Thanks all, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-user

Re: [clamav-users] End of life (EOL) policy change, 0.103 one year extension, 0.105 past end of life

Hi Paul, Unlike Java or C#, Rust does not have any additional runtime library requirement. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Paul Kosinski via clamav-users Sent: Monday, May 8, 2023 5:01

Re: [clamav-users] LibClamAV Warning: Don't know how to create filter for: Win.Downloader.LNKAgent-10001628-0

It appears that this warning was added by accident while fixing a bug shortly before release and no one noticed in review. We'll remove the warning in 1.1.1 and 1.2.0. Sorry for the confusion! Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems

Re: [clamav-users] [ext] Segfaults with database version 26908

igure out what may cause a crash. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Matthias Rieber Sent: Tuesday, May 16, 2023 5:50 AM To: Ralf Hildebrandt via clamav-users Subject: Re: [clamav-users]

[clamav-users] End of life (EOL) policy change, 0.103 one year extension, 0.105 past end of life

itional four months after the 1.1 release, which was on May 1, 2023. This means that we may block 0.105 from further updates after Sept. 1, 2023. Posted by Micah Snyder <https://www.blogger.com/profile/07798916006145826441> at 1:24  PM<https://blog.clamav.net/2023/05/end-of-life-e

Re: [clamav-users] ClamAV 1.1.0 released

Hey Andreas, Yes, we did update the Talos PGP Public Key shortly before the previous one expired. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of A. Schulze via clamav-users Sent: Tuesday, May 2, 2023

[clamav-users] ClamAV 1.1.0 released

Read this online at https://blog.clamav.net/2023/05/clamav-110-released.html The ClamAV 1.1.0 feature release is now stable and available for download on ClamAV.net or through Docker Hub. ClamAV 1.1.0 includes the fol

Re: [clamav-users] Inquiry about ClamAV's MaxFileSize

1.0.1, depending on the file you're scanning. Sorry about the delayed response. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Tachibanaki Nozomi (橘木 希美) Sent: Tuesday, April 18, 2023 7:27 PM

Re: [clamav-users] ssl peer certificate or ssh remote key was not ok

I'm not sure this will help, but can you try using the CURL_CA_BUNDLE environment variable to see if that helps? Ex: CURL_CA_BUNDLE=/usr/local/share/ca-certificates/cert.crt freshclam https://docs.clamav.net/faq/faq-freshclam.html?highlight=curl_#problem-with-the-ssl-ca-cert Regards,

[clamav-users] Clamav 1.1.0 release candidate available now

Read this online at https://blog.clamav.net/2023/03/clamav-110-release-candidate-now.html We are excited to announce the ClamAV 1.1.0 release candidate. You may find the source code and installers for this release on: * The clamav.net/downloads page, or

Re: [clamav-users] Clamav EOL Policy and Signatures

ownloads sooner than later. Anyways, we have some folks on PTO right now, including my manager. I want to talk about it with them some more before we make any decisions. But I didn't want to leave you hanging either. Regards, Micah Micah Snyder ClamAV Devel

Re: [clamav-users] ClamAV EOL of 0.104.x versions

Thanks for the heads up, Scott. The URL should be https://docs.clamav.net/faq/faq-eol.html I have fixed the blog post. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Scott Kitterman via clamav-users Sent: Thursday

[clamav-users] ClamAV EOL of 0.104.x versions

a supported version of ClamAV, currently at 0.103.8, 0.105.2, and 1.0.1, available for download now<https://www.clamav.net/downloads>. Posted by Micah Snyder <https://www.blogger.com/profile/07798916006145826441> at 4:15 PM<https://blog.clamav.net/2023/03/clamav-eol-of-0104x-ver

Re: [clamav-users] How to get rid of or Fix clamonacc error

that won't make sense to your average person looking for an AV solution. But it is basically a type of AV solution built to protect enterprise network computers. The "live demo" will show you want the admin dashboard looks like. It's pretty cool, but maybe a bit overwh

[clamav-users] Be wary of emails with attachments targeting clamav-users list members

.net/reports/malware Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. ___ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive

Re: [clamav-users] linux distribution including clamav-1.0.1

k our build system still adds a few extra files during the build to the source directory (like .pyc files from running test scripts which I'm not terribly happy about), but it's largely untouched. See also https://docs.clamav.net/manual/Installing/Installing-from-source-Unix.html#

Re: [clamav-users] Long database load time, long clamscan scan time

Hi Marc, I'm sorry I didn't see your request sooner. Yes the issue was fixed in the subsequent daily update. I'm not certain of the exact time of the daily database update update, but yes it is every 24 hours. Regards, Micah Micah Snyder ClamAV Development Talos Cis

[clamav-users] Long database load time, long clamscan scan time

n again in this way. Our apologies for the inconvenience. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. ___ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mailman/listinfo/clamav-us

Re: [clamav-users] 0 length bytecode.cvd causing problems with clamav daemon

both the empty bytecode.cvd​ and a bytecode.cld​. If that's not the case, then we may have a bug in freshclam​ and I would love some more information on what freshclam​ is downloading when it runs in order to get into this strange state. Best, Micah Micah Snyder ClamAV Development Talo

Re: [clamav-users] about ClamAV 0.103.8, 0.105.2 and 1.0.1 patch versions published

Matus is correct. The issue has nothing to do with what your file system is. It has to do with scanning archives that use the HFS+ filesystem. Specifically, HFS+ is commonly used in DMG archives. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From

Re: [clamav-users] Probably banned IP

show that information if you run it with the --verbose​ option. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of newcomer01 via clamav-users Sent: Friday, February 24, 2023 10:53 AM To: clamaV User Ma

Re: [clamav-users] What is the actual danger of this?

This alert means that the JPEG is slightly malformed. Many applications will probably be fine with it. ClamAV thinks it is a little odd. The risk is probably pretty low, but perhaps looking at a little to see if any other antivirus products think it is suspicious. Regards, Micah Micah

Re: [clamav-users] Future support of clamav in EPEL7 and EPEL8

distribute Rust itself within each distro. I am a fan of the approach that OpenSUSE has taken: https://en.opensuse.org/Rust I hope that some of the other distributions adopt a similar strategy. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. __

Re: [clamav-users] about ”Can't allocate memory ERROR”

or provide links to them. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Tsutomu Oyamada Sent: Thursday, February 9, 2023 5:51 AM To: ClamAV users ML Subject: Re: [clamav-users] about ”Can't alloc

[clamav-users] ClamAV 0.103.8, 0.105.2 and 1.0.1 patch versions published

mation leak vulnerability in the DMG file parser. The issue affects versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier. Thank you to Simon Scannell for reporting this issue. * Update the vendored libmspack library to version 0.11alpha. * GitHub pull request: htt

Re: [clamav-users] ClamAV Private Mirror Question

Very close. The 49192 number is for the version of (now defunct) safebrowsing.cvd. But yes, if they're able to access DNS and compare the version of daily/main/bytecode with what is in the DNS record then that will also be useful. Regards, Micah Micah Snyder ClamAV Development Talos

Re: [clamav-users] ClamAV Private Mirror Question

: 2018753 Functionality level: 90 Builder: raynman Verification OK. Is that what you're looking for? Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Bryan Whipkey via clamav-users Sent: Sunday, Ja

Re: [clamav-users] Upgrade to 1.0.0

hclam.html?highlight=wget#http-error-codes for more details. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Jorge Bastos Sent: Thursday, January 26, 2023 2:11 PM To: ClamAV users ML Subject: [clamav-users]

Re: [clamav-users] About scanning files larger than 2 GB in size

ics.Limits.Exceeded.EmailHeaderBytes - Heuristics.Limits.Exceeded.EmailHeaders - Heuristics.Limits.Exceeded.EmailMIMEPartsPerMessage - Heuristics.Limits.Exceeded.EmailMIMEArguments and possibly more with the "Heuristics.Limits.Exceeded." prefix. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. _

Re: [clamav-users] About scanning files larger than 2 GB in size

P.S. Do many current commercial AV suites for Windows have this limit? I have no idea. Does anyone else know? Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: Paul Kosinski Sent: Thursday, January 26, 2023 11:32 AM To: Micah Snyder (micasnyd

Re: [clamav-users] About scanning files larger than 2 GB in size

that all variables are upgraded in all modules. We cannot simply remove the limit and cross our fingers. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Paul Kosinski via clamav-users Sent: Saturday, Ja

[clamav-users] Decommission of unused clamav-binary mailing list

gards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. ___ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://githu

Re: [clamav-users] Documentation: Installing, Unix From Source

Sorry Scott, just saw this catching up on emails from over the holidays. Yes, absolutely we can the instructions to use apt instead of pip. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Scott Kitterman via clamav

Re: [clamav-users] Testing for Big Endian Architectures

Thanks Scott, Sebastian, and Orion. I'll keep an eye out for the patch PR. Best, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Scott Kitterman via clamav-users Sent: Saturday, January 7, 2023 10:18

Re: [clamav-users] Scanning result in socket connection for each file under a folder?

I don't think it's possible unless you send each file to be scanned instead of scanning the directory. clamd only sends back FOUND for files, or else OK for the directory. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users

Re: [clamav-users] linux.cvd database question

et to ticking the AV compliance checkbox then I guess go ahead. It is updated frequently. But it doesn't have all that much in it. Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Andy Ragusa (aragusa) via clamav-users Sent:

[clamav-users] Maintenance outage planned for legacy bugzilla server, Friday

. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. ___ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https

Re: [clamav-users] Renumbered name server.

Hi Grant, I'm the community manager for ClamAV now. Your previous contact was likely Joel Esler who has moved on to new adventures. We can continue this conversation in direct emails. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems

[clamav-users] ClamAV 1.0.0 LTS released

* Matt Jolly * Michael Orlitzky * monkz * teoberi * TerminalFi Posted by Micah Snyder<https://www.blogger.com/profile/07798916006145826441> at 12:31 PM<https://blog.clamav.net/2022/11/clamav-100-lts-released.html> Micah Snyder ClamAV Development Talos Cisco Sy

[clamav-users] Second ClamAV 1.0.0 release candidate AND updated packages for 0.105.1

ode. * GitHub pull request: https://github.com/Cisco-Talos/clamav/pull/741 Acknowledgments Special thanks to the following people for code contributions and bug reports: * Ben Bodenmiller * Дилян Палаузов * Liam Jarvis * Matt Jolly * monkz *

Re: [clamav-users] Can't access file ERROR - clamdscan - 0.103.7-1

> [Micah, I've just noticed that '-c file' doesn't appear in the 'man' page for clamd.conf but '--config-file=file' does. I *think* I've mentioned it before but I don't have time to check right now. The short version does work instead of

Re: [clamav-users] ClamAV signatures have been released to detect malware exploiting CVE-2022-3602 and CVE-2022-3786 OpenSSL 3.0.x security vulnerabilities

agine additional files will appear with time. Unfortunately, I do not have a sample that I can share for this signature. Regards, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. From: clamav-users on behalf of Turritopsis Dohrnii Teo En Ming via c

  1   2   3   4   5   6   7   >