Hello, I'm trying to stream a file to clamav (V 0.99.2) using the TCP
Connection from a NodeJS server. Sometimes data is being sent back but
other times I am receiving the "FIN" packet before any data. Every time I
send a stream to be scanned, I see the result in the clamav logs, but for
some reaso
Cory,
If you can capture the tcp network traffic for a successful and a failed
session and send me the pcap files, I'd be glad to take a look at them.
I have noticed that clamd only allows a short delay following tcp
connection establishment before receiving a clamd command or else it sends
a fin
Thanks for the response Steven. I will get the information that you are
looking for.
What I have done in the meantime, is setup a retry of the scan with a 50 ms
delay until I receive an expected response (i.e. non FIN packet). What I
have found is that I always eventually get the expected response
Please find the pcap file attached. This particular run had 19 failures and
then the 20 time I received the expected response. I'll analyze it on my
end too but don't have much experience at this so a little help is
definitely appreciated.
On Mon, May 8, 2017 at 4:43 PM, Cory Parrish
wrote:
> Th
On Mon, May 8, 2017 at 4:43 PM, Cory Parrish
wrote:
> Thanks for the response Steven. I will get the information that you are
> looking for.
>
> What I have done in the meantime, is setup a retry of the scan with a 50 ms
> delay until I receive an expected response (i.e. non FIN packet). What I
>
... and / or CommandReadTimeout.
___
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.cla
On Mon, May 8, 2017 at 5:07 PM, Cory Parrish
wrote:
> Please find the pcap file attached. This particular run had 19 failures and
> then the 20 time I received the expected response. I'll analyze it on my
> end too but don't have much experience at this so a little help is
> definitely appreciate
Hello Friends
I am not sure if this is the right place to send the request to the issues
that I am facing.
I had ClamAV 0.97.1 running on RHEL (2.6.32-642.6.1.el6.ppc64) on our IBM
Power 7 system since many years. Today I upgraded it to ClamAV 0.99.2
(Source code). Unfortunately the DB is no loa
Hi ClamAV Developers,Users
As per My Understnading , Virus Signatures are Classified into two types
1.Static Virus Signatures(short/fixed length virus signatures)
2.Dynamic Virus Signatures(long length Signatures with Regular Expression)
So I guess, ClamAV performing both Signature Based Scann
I already answered most of these questions before and after reading "My
Understanding" which is totally wrong, it's obvious you have not read the
signature.pdf documentation closely enough to understand an of this.
The way you have chosen to classify signatures is completely wrong, which means
10 matches
Mail list logo
