Hi All,
I have added the eicar_com zip file inside a rar file. When i scan it
with clamav it is passing as *'OK'*. Another case i have added the same
eicar_com zip file inside another TestScan zip file. But it is successful
scanned and got an indication that *"Eicar-Test-Signature FOUND"*.
I guess the problem is with the file type. ClamAV is not scanning the
zip files inside a rar file. Being a new developer i need to know it
clearly.
On Tue, Sep 25, 2012 at 3:13 PM, Siranjeevi wrote:
> Hi All,
>
> I have added the eicar_com zip file inside a rar file. When i scan it
>
Hi there,
On Tue, 25 Sep 2012, Al Varnell wrote:
... my understanding of what he's asking now is that the list
server remove any addresses that their client includes.
For the sake of clarity, I did not ask that. I also did not ask for
policy changes at Sourcefire, nor did I ask anyone to for
Siranjeevi skrev den 25-09-2012 11:46:
I guess the problem is with the file type. ClamAV is not scanning the
zip files inside a rar file. Being a new developer i need to know it
clearly.
provide more info on what you exactly do, are you have disabled
scanarchives in clamd.conf ?
using clamsc
No Benny. I am using clamdscan I have configured all the setting in
clamd.conf. But still i am not getting that problem solved.
ScanArchive yes I have already changed this also.
On Tue, Sep 25, 2012 at 6:50 PM, Benny Pedersen wrote:
> Siranjeevi skrev den 25-09-2012 11:46:
>
> I guess the prob
Siranjeevi skrev den 25-09-2012 15:31:
No Benny. I am using clamdscan I have configured all the setting in
clamd.conf. But still i am not getting that problem solved.
provide more info
is it failing with clamdscan ?, what files does it fail with ?, what is
the output from "file scanfile"
wh
As i mentioned in my previous mail the same here. I have tried with both
clamscan and clamdscan. Both giving output as "OK".
I have added the eicar_com zip file inside a rar file. When i scan it with
clamav it is passing as *'OK'*. Another case i have added the same
eicar_com zip file inside anoth
On Tue, Sep 25, 2012 at 10:03 AM, Siranjeevi wrote:
> As i mentioned in my previous mail the same here. I have tried with both
> clamscan and clamdscan. Both giving output as "OK".
>
> I have added the eicar_com zip file inside a rar file. When i scan it with
> clamav it is passing as *'OK'*. Ano
On Sep 25, 2012, at 6:17 AM, G.W. Haywood wrote:
> On Tue, 25 Sep 2012, Al Varnell wrote:
>
>> ... my understanding of what he's asking now is that the list
>> server remove any addresses that their client includes.
>
> For the sake of clarity, I did not ask that. I also did not ask for
> policy
On 25/09/2012 10:43, Siranjeevi wrote:
Hi All,
I have added the eicar_com zip file inside a rar file. When i scan it
with clamav it is passing as *'OK'*. Another case i have added the same
eicar_com zip file inside another TestScan zip file. But it is successful
scanned and got an indicat
I posted this a few days ago with no response. I think it got lost in
the mailing list etiquette discussion.
Original post:
Now that I have the submission working, I took a look at the personal
stats page (www.stats.clamav.net). I see a graph of some data here, but
I'm not sure how to read
I'm sorry I didn't respond. We are working on your request and I'll have one
of the guys get back to you.
Thanks for your patience.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Sep 25, 2012, at 11:29 AM, Bowie Bailey wrote:
> I posted this a few days
On 9/25/2012 11:45 AM, Joel Esler wrote:
I'm sorry I didn't respond. We are working on your request and I'll have one
of the guys get back to you.
Thanks for your patience.
No problem. Since the original thread devolved into an etiquette
discussion, I wanted to re-post in case the original
On Sep 25, 2012, at 11:59 AM, Bowie Bailey wrote:
> On 9/25/2012 11:45 AM, Joel Esler wrote:
>> I'm sorry I didn't respond. We are working on your request and I'll have
>> one of the guys get back to you.
>>
>> Thanks for your patience.
>
> No problem. Since the original thread devolved into
Bowie Bailey skrev den 25-09-2012 17:59:
No problem. Since the original thread devolved into an etiquette
discussion, I wanted to re-post in case the original was lost in the
shuffle. I'm not in any hurry. I just thought I'd ask since I was
directed to that page to see my stats and the chart
On 9/25/12 8:29 AM, Bowie Bailey wrote:
I posted this a few days ago with no response. I think it got lost in the
mailing list etiquette discussion.
I just visited the page and some idiot at SourceFire has decided I need to join
one of several social sites and deal with yet another EULA in or
On Sep 25, 2012, at 2:39 PM, Dennis Peterson wrote:
> On 9/25/12 8:29 AM, Bowie Bailey wrote:
>> I posted this a few days ago with no response. I think it got lost in the
>> mailing list etiquette discussion.
>
> I just visited the page and some idiot at SourceFire has decided I need to
> join
On 9/25/12 2:16 PM, Joel Esler wrote:
On Sep 25, 2012, at 2:39 PM, Dennis Peterson wrote:
On 9/25/12 8:29 AM, Bowie Bailey wrote:
I posted this a few days ago with no response. I think it got lost in the
mailing list etiquette discussion.
I just visited the page and some idiot at SourceFire
On Sep 25, 2012, at 6:05 PM, Dennis Peterson wrote:
> On 9/25/12 2:16 PM, Joel Esler wrote:
>> On Sep 25, 2012, at 2:39 PM, Dennis Peterson wrote:
>>> On 9/25/12 8:29 AM, Bowie Bailey wrote:
I posted this a few days ago with no response. I think it got lost in the
mailing list etiquett
While a good idea, it's not really feasible for me. I'm dealing with several
hundred terabytes of data and I simply do not have that much spare disk
available.
Fpsm
On Sep 24, 2012, at 6:39 AM, "G.W. Haywood" wrote:
> Hi there,
>
> On Mon, 24 Sep 2012, Fredrich Maney wrote:
>
>> I have a re
Alain (and others),
A month later and I am experiencing similar problems.
Worm.Bagle.F-zippwd-6 instead of -7.
The 'sigtool' output for both -6 and -7 appears to be identical minus a
single ^M at the end of a line., but my take on it is, surely the
presence of the word 'pass' followed by an encr
Mark,
Worm.Bagle.F-zippwd-6 had been in our signature database for 7 years and
had been performing well. It is definitely preferable for us to receive an
FP report along with the file(s) that are causing the suspected
FP. Nevertheless, I have dropped Worm.Bagle.F-zippwd-6 as of now, and will
relea
22 matches
Mail list logo
