Re: [Clamav-users] RE: More tests from www.testvirus.org

> Nbr 5) EICAR virus sent using BinHex encoding This was also missed on my ClamAV 0.65 running as clamd, however it was picked up by Amavisd-new for its extension. (Running ClamAV 0.65, Postfix 2.0.13, Amavisd-new-20030616-p5) > I do not care about the second section of the test virus web page, s

Re: [Clamav-users] RE: More tests from www.testvirus.org

> > > Nbr 5) EICAR virus sent using BinHex encoding > > > > This was also missed on my ClamAV 0.65 running as clamd, however it was > > picked up by Amavisd-new for its extension. > > (Running ClamAV 0.65, Postfix 2.0.13, Amavisd-new-20030616-p5) > > > > I am using the latest sendmail with clamd an

Re: [Clamav-users] Virus listing

> Could not find in the archives... > > Does anybody know how/where to obtain a listing of all viruses that ClamAV > 'knows' about? > > Thanks. On a related note... # cd /usr/local/share/clamav # sigtool -u daily.cvd LibClamAV Error: Unknown type flag . ERROR: Can't unpack file. /var/log/clam-up

[Clamav-users] Amavisd-new and Clamav TCP

I'm using ClamAV 0.67-1, currently using Unix sockets. I'm not too familiar with UNIX sockets, but I'm comfortable with TCP sockets and communication. Is clamd any more/less reliable when running over TCP? I started clamd briefly using TCP and was able to connect and PING it, but I can't get it

Re: [Clamav-users] SOLVED Amavisd-new and Clamav TCP

> You have to configure clamd with > #LocalSocket /var/run/clamav/clamd.ctl > TCPSocket 3310 > TCPAddr 127.0.0.1 > and restart it to make it listen to a TCP socket. Clamd uses a UNIX _or_ > a TCP socket, not both at the same time. Right, I should've been more clear. I set the TCPAddr and TCPSocke

Re: [Clamav-users] sendmail devel?

> what pop3 is good for multiple domains? instead of qpopper CourierPop3d and CourierImap are both good for multiple domains. (of course, CourierIMAP is not Pop3, but they are often packaged together, and do not require the Courier MTA). --Seth -

Re: [Clamav-users] sendmail devel?

> Why does multiple or single domains matter to the POP3 server? The only thing I can imagine off the top of my head is user accounts -- if you have [EMAIL PROTECTED] and [EMAIL PROTECTED], you need to make sure that your POP3 server doesn't think they both necessarily use the same mailbox b/c the

Re: [Clamav-users] ClamAV and CVE integration?

> I've googled this and found nothing but I'm sure it has been discussed > before... > Is there any work being done to get CVE names or aliases into the virus > database? > It would be nice to be able to dump the names and/or have the virus email > replies (amavisd-new) have links to the CVE or CAN

[Clamav-users] usefulness of complaining to abuse@whatever.com for Netsky/Bagle

> It looks like you get the proper IP of the offending machine firing off > these worms in the header (even though everything else is forged). > > Is there any point in telling [EMAIL PROTECTED] that one of their DSL > customers is spamming the Internet with noxious messages? Anyone have any > exp

Re: [Clamav-users] Virus Names

> > If netsky is Worm.SomeFool, then why is it not labeled as Worm.SomeFool? Rhetoric aside, this is obviously an itch that needs scratched. Clam does a wonderful job and (as was the case with SomeFool) does it faster than most. Perhaps we might be able to scratch up support for an alias correlat

Re: [Clamav-users] clamav.conf

> [EMAIL PROTECTED] root]# /usr/local/sbin/clamd > ERROR: Please edit the example config file /etc/clamav//clamav.conf. > ERROR: Can't open/parse the config file /etc/clamav//clamav.conf ^^ This

Re: [Clamav-users] OpenBSD 3.4

OpenBSD 3.4>Is there a version of CLAMAV that runs on OpenBSD 3.4 ? I get the following message when trying to >install Clamav-0.6.8 on OpenBSD 3.4. http://www.fatbsd.com/ --- This SF.Net email is sponsored by: IBM Linux Tutorials Free L

Re: [Clamav-users] Help Setup Newbie Please

> Hello - Fresh newbie meat here for the first time - Be gentle please... > > I'm using procmail to call clamassassin, which calls clamscan. I'm > getting X- headers added by clamav, but I'm not detecting the EICAR > string in emails. I'm using ClamAV v0.73 obtained and installed via the > Debian

Re: [Clamav-users] Clamav and Squid / SquidGuard

> Has anyone managed to get anything working with Clamav using squidguard > and another package to scan traffic as it enters the proxy? I read on > the main site that Viralator supports clamav, but the current download > available, viralator-09pre2.zip, has no provisions for clamscan at all > w

Re: [Clamav-users] ClamAV should not try to detect phishing and othersocial engineering attacks

> Would that include viruses that require action on the part of the > recipient? Included in password protected zips? What is the difference > between tricking a person into opening a password protected zip (which > is not dangerous in its delivered form) and tricking a user into > clicking a lin

Re: [Clamav-users] clamav as HTTP scanner?

BitFuzzy wrote: Is this a joke? "licensed under the GPL" & "not free for commercial use". As far as I can tell there is nothing wrong with this. In fact I've seen this quite alot. The GPL does not prevent anyone from making money. No, it certainly doesn't. However, you may notice that the mon

Re: [Clamav-users] Re: not updating clam

I can do that, but please tell me why it is not automatically updating. Because this problem might occurs in future also when new version releases. Perhaps you're confused? Clam is updating virus database files, but NOT updating the actual program binaries. This log message is there to let you

Re: [Clamav-users] Virus Description Library needed?

> wouldn't it be great to have some kind of virus description library like > NAI's VIL at for ClamAV? Are there > any efforts to create one? May I help? Do you think we need one for > ClamAV? There is a search on ClamAV (or at least there was right before the w