On 06/07/2012 11:23 PM, Alex wrote:
> Hi,
>
>>> M:displayhostname.com:www.myrealhostname.com
>>>
>>> The M is the type flag for simple hostname comparisons. There are other
>>> types for regular expressions if you need it.
>>>
>>> Replace the hostnames appropriately and add a line like that to you
Hi,
>> M:displayhostname.com:www.myrealhostname.com
>>
>> The M is the type flag for simple hostname comparisons. There are other
>> types for regular expressions if you need it.
>>
>> Replace the hostnames appropriately and add a line like that to your local
>> whitelist (.wdb not .ign2) and you
On Jun 7, 2012, at 12:31 PM, Alex wrote:
> It seems to provide conflicting information. It says the site has
> distributed malware in the last 90 days, with 06/04/12 being the last
> day checked. However, it also says it hasn't hosted malware in the
> last 90 days. Am I missing something?
This ten
On 06/07/2012 09:57 PM, David Raynor wrote:
> The safebrowsing feature of ClamAV uses a separate domain list and
> whitelist from the other signatures. The blacklisted domains are stored in
> .pdb files, and the whitelist is stored in .wdb files.
> These process
> domains from URLs instead of virus
Hi,
> The safebrowsing feature of ClamAV uses a separate domain list and
> whitelist from the other signatures. The blacklisted domains are stored in
> .pdb files, and the whitelist is stored in .wdb files. These process
> domains from URLs instead of virus signatures, so that's why trying to use
The safebrowsing feature of ClamAV uses a separate domain list and
whitelist from the other signatures. The blacklisted domains are stored in
.pdb files, and the whitelist is stored in .wdb files. These process
domains from URLs instead of virus signatures, so that's why trying to use
your local .i
Hi,
How can I determine what domains the pattern
"Heuristics.Safebrowsing.Suspected-phishing_safebrowsing.clamav.net"
contains? I thought it was only a single domain, but it appears to
contain numerous?
If that's the case, then I'd prefer to not ignore the whole rule, but
whitelist one of the dom
