Trying to find a good summary on the state of PUA in current (0.98) and how
best to turn on/off specific categories
The FAQ https://github.com/vrtadmin/clamav-faq/blob/master/faq/faq-pua.mdis
quite basic and the main PUA page on the main site dates back to 2007
so
wondering what current state of pl
On Sep 30, 2013, at 1:37 AM, Martin Hepworth wrote:
> Trying to find a good summary on the state of PUA in current (0.98) and how
> best to turn on/off specific categories
> The FAQ https://github.com/vrtadmin/clamav-faq/blob/master/faq/faq-pua.mdis
> quite basic and the main PUA page on the main
Thanks
was looking at the PUA page on the main www site and it's still got the
2007 advice of "here be monsters tread carefully" ;-)
--
Martin Hepworth, CISSP
Oxford, UK
On 30 September 2013 11:01, Al Varnell wrote:
> On Sep 30, 2013, at 1:37 AM, Martin Hepworth wrote:
> > Trying to find a g
On 30 Sep 2013 at 11:03, Martin Hepworth wrote:
> Thanks
> was looking at the PUA page on the main www site and it's still got
> the 2007 advice of "here be monsters tread carefully" ;-)
I use them but Alain Zidouemba from Sourcefire replied to a question in March
2013 about a
PUA type that did
On Sun, Sep 29, 2013 at 6:16 AM, McGranahan, Jamen <
jamen.mcgrana...@vanderbilt.edu> wrote:
> I'm using Clam 0.98 on RedHat 5 servers and since upgrading to 0.98, I am
> seeing the following when trying to run a clamscan:
>
> LibClamAV Warning: SWF: Invalid tag length
> LibClamAV Error: cli_scans
On Sep 30, 2013, at 6:03 AM, Martin Hepworth wrote:
> Thanks
> was looking at the PUA page on the main www site and it's still got the
> 2007 advice of "here be monsters tread carefully" ;-)
Looking for this page, and I can’t find it? Where do you see this?
--
Joel Esler
Senior Research Engine
On Sep 30, 2013, at 6:37 AM, Paul Whelan wrote:
> On 30 Sep 2013 at 11:03, Martin Hepworth wrote:
>
>> Thanks
>> was looking at the PUA page on the main www site and it's still got
>> the 2007 advice of "here be monsters tread carefully" ;-)
>
> I use them but Alain Zidouemba from Sourcefire rep
It may be something platform-specific. Please open a bugzilla bug at
bugzilla.clamav.net. If you can attach the config.log files from both
0.97.8 and 0.98 then we can take a closer look from there.
Dave R.
On Sun, Sep 29, 2013 at 10:00 AM, Ari Sovijärvi wrote:
> > Note that clamav was compiled
Joel
this one when you search on the g-search for clamav pua..
http://www.clamav.net/lang/en/2007/09/03/detection-of-potentially-unwanted-applications/
Martin
--
Martin Hepworth, CISSP
Oxford, UK
On 30 September 2013 14:22, Joel Esler wrote:
> On Sep 30, 2013, at 6:03 AM, Martin Hepworth
Ah, that was a blog post from 2007 from our blog (http://blog.clamav.net)
I see, okay. Yes, the functionality is quite useful, and the most current docs
we have on the subject are in the Github repository.
As a reminder
Anyone can contribute to these docs by doing a pull request against them
On Sep 28, 2013, at 8:04 AM, G.W. Haywood wrote:
> On Sat, 28 Sep 2013, Boszormenyi Zoltan wrote:
>
>> The machine in question is an older thingy with 256MB memory
>> running an embedded Linux version and a special full screen application
>> over TinyX and FBDEV.
>> Is is possible to make ClamAV
On 9/30/13 10:25 AM, "Joel Esler" wrote:
> On Sep 28, 2013, at 8:04 AM, G.W. Haywood wrote:
>
>> On Sat, 28 Sep 2013, Boszormenyi Zoltan wrote:
>>
>>> The machine in question is an older thingy with 256MB memory
>>> running an embedded Linux version and a special full screen application
>>> ov
On Sun, Sep 29, 2013 at 5:01 AM, Boszormenyi Zoltan wrote:
> 2013-09-29 10:26 keltezéssel, Boszormenyi Zoltan írta:
>
> 2013-09-29 04:26 keltezéssel, Benny Pedersen írta:
>>
>>>
>>> Is is possible to make ClamAV use less memory perhaps by repetitive
scanning with a smaller subset of the vi
Definitely for my case it is a sha256 calculation problem.
I started to compare debug output from x86 (which works ok) and this VLIW stuff
and found the following:
libclamav/dsig.c cli_versig2() fails on "if(!(salt = memchr(data, 0x01,
BLK_LEN)))" for VLIW
and difference in ctx contents (compare
2013-09-30 17:58 keltezéssel, David Raynor írta:
On Sun, Sep 29, 2013 at 5:01 AM, Boszormenyi Zoltan wrote:
2013-09-29 10:26 keltezéssel, Boszormenyi Zoltan írta:
2013-09-29 04:26 keltezéssel, Benny Pedersen írta:
Is is possible to make ClamAV use less memory perhaps by repetitive
scann
The data files were omitted from the source tarball beginning with
version 0.97.5. I thought that made sense. Now with 0.98 they appear to
be back.
Is there any easy/preferred way to "make install" (or "configure")
without having the data files included? I'm packaging clamav-toaster,
and am o
On Mon, Sep 30, 2013 at 2:02 PM, Boszormenyi Zoltan wrote:
> 2013-09-30 17:58 keltezéssel, David Raynor írta:
>
>>
>> Zoltán,
>>
>> Your idea of breaking the signature set into chunks to do repeated scans
>> is
>> a workable idea. It would require a few moving parts outside of ClamAV. I
>> cannot
17 matches
Mail list logo
