d in other posts (and indeed the
> clamd.conf example file).
> Also the clamd.conf example file points to
>
> http://www.clamav.net/support/pua
>
> which 404's
>
> --
>
> Martin
>
>
> --
> Martin Hepworth, CISSP
> Oxford, UK
>
>
> On
I’m always looking for people to look through the FAQ and add insight,
information, etc. If there is one place that people where people can help out,
that’s the place.
--
Joel Esler
Open Source Community Manager
Senior Research Engineer, VRT
Sourcefire
On Wednesday, October 2, 2013 at 10
On Thu, Sep 04, 2014 at 07:53:30AM +0200, Andreas Schulze wrote:
> Am 26.08.2014 20:56, schrieb Joel Esler (jesler):
> > * Elimination of dead links and pages
> >
> I was told the old website contained the current patternversion
> somewhere. That function is also gone
On Fri, Sep 05, 2014 at 09:09:59AM +0200, Matus UHLAR - fantomas wrote:
> On 04.09.14 07:53, Andreas Schulze wrote:
> >Am 26.08.2014 20:56, schrieb Joel Esler (jesler):
> >> * Simple Navigation
> >>
> >"Thanks" for the next site only usable with ma
On Fri, Sep 05, 2014 at 03:33:36PM +0200, Andreas Schulze wrote:
> Am 05.09.2014 09:22 schrieb Joel Esler:
> > I just tested the whole site with elinks and it worked fine. Which parts
> > are you referring to?
>
> OK, my fault too. The site *is* usable without javas
Matthias,
I’ll have our Mirror admins take a look. Thanks.
On Monday, November 24, 2014 at 8:07 AM, Matthias Egger wrote:
> Hello List
>
> I just checked the logfiles back until october 2014 and saw, that we got
> often "safebrowsing-.cdiff not found on remote server" when we tried
> downl
On 2/17/16 1:34 PM, Gene Heskett wrote:
> On Wednesday 17 February 2016 12:01:11 Noel Jones wrote:
>
>> On 2/17/2016 10:40 AM, Joel Esler (jesler) wrote:
>>> Okay, so this is a long email, let me respond inline:
>>>
>>>
>>> --
>>> Joel E
planations why it is to be so.
I've heard your concerns. You may think I don't grasp what you are
saying, but I do.
>
> For sure nothing will change for disgruntled users that have lowered
> their reliance or moved away from Clam flavours.
That is unfortunate.
to be corrected.
On 2/17/16 4:30 PM, Groach wrote:
> Last response LABELLED IN BRACKETS for reference in my reply below
>
> On 17/02/2016 21:06, Joel Esler wrote:
>> Let's try this inline-reply thing again, apologies for last time.
>>
>> On 2/17/16 12:15 PM, Groac
On Wed, Mar 23, 2016 at 12:00:51AM -0700, Al Varnell wrote:
There were two updates today:
Datefile: daily
Version:21468
Publisher: Alain Zidouemba
New Sigs: 5
Dropped Sigs: 1
Ignored Sigs: 2
Datefile: daily
Version:21469
Publisher: Joel Esler
This user has been removed from the list.
On 3 Apr 2016, at 18:44, li...@kratzt.net wrote:
> Hello!
>
>
>
> New message, please read
>
>
>
> li...@kratzt.net
>
> ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
s. If there's a
better alternative, I'd be interested in learning about it.
I'd be interested in shipping as much detection as we possibly can for ClamAV.
This is a community, but I'd love to have an increase in the amount of
signatures sent back to us.
--
Joel
s. Partly because of your concerns which brought things to our attention. False Positive reports are important!
--
Joel Esler
Manager, Threat Intelligence Team & Open Source
Talos Group
http://www.talosintel.com
signature.asc
Description: PGP signature
am again, but without success.
>
> Any tips to solve the problem?
You deleted all your virus databases, and you are still getting a
malformed database error?
--
Joel Esler
Manager, Threat Intelligence Team & Open Source
Talos Group
http://www.talosintel.com
On Wed, Jul 13, 2016 at 10:27:07PM +0200, Benny Pedersen wrote:
On 2016-07-13 22:21, Joel Esler (jesler) wrote:
It basically has to do with our how signature system works.
so its complicated ?
Oh yes.
i still like to know why its 3rd party, and why its not just added in
ExtraDatabase
e can expect some great content coming towards the blog.
Thanks!
--
Joel Esler
Skype:eslerjoel
http://blog.snort.org
http://blog.clamav.net
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
I'm "finchy" in IRC. So pester me all you want. ;)
On Fri, Jan 7, 2011 at 5:00 PM, Brandon Perry wrote:
> This is great news. I was pestering the guys in IRC about it every so
> often. :)
>
> On Fri, Jan 7, 2011 at 3:53 PM, Joel Esler wrote:
> > All --
>
.3 freebsd, clamav 0.96's are ok.
>
> see my previous post.
>
> You need to turn off freshclam and get an older daily file.
A new cvd was just uploaded about 10 minutes ago. Give that a shot.
--
Joel Esler
jesler () sourcefire.com
http://blog.snort.org && http://blog.
On Feb 10, 2011, at 6:22 PM, Jan-Pieter Cornet wrote:
> I happen to keep backups of the database. daily.cvd version 12660 works for
> me, and has my clamav's running again.
12664 was just uploaded a few minutes ago, please let me know if that still has
problems.
Thanks.
--
nt to this fact as well on
the ClamAV blog, just to keep everyone up to date with the newest information.
Thanks.
--
Joel Esler
jesler () sourcefire.com
http://blog.snort.org && http://blog.clamav.net
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
.clamav.net
>> http://www.clamav.net/support/ml
>>
>
>
> ___
> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
> http://www.clamav.net/support/ml
--
Joel Esler
jesler () sourcefire.com
http://blog.snort.org && http://blog.clamav.net
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
sse Klint wrote:
>
> Yes,
> ClamAV 0.95.3/12788/Mon Feb 28 06:55:40 2011
>
>
> "Joel Esler" said:
>
>> Jesse, are you also running 0.95?
>>
>>
>> On Feb 28, 2011, at 7:46 AM, Jesse Klint wrote:
>>
>>> We are seeing a similar issue
[FAILED]
>
> We are aware of the issues with running 0.95, and have a upgrade plan which
> should have us current in a couple weeks. However, it would be nice if we
> could keep it running until then :)
>
> "Joel Esler"
database
> [FAILED]
>
> We are aware of the issues with running 0.95, and have a upgrade plan which
> should have us current in a couple weeks. However, it would be nice if we
> could keep it running until then :)
>
12790 should fix it.
J
On Feb 28, 2011, at 8:44 AM, Matthias Hank wrote:
> Hi,
>
> On Mon, Feb 28, 2011 at 08:36:54AM -0500, Joel Esler wrote:
>
>> Try now, Edwin just released a new version and he says that it works on his
>> side.
>
> I tried
>
> File:
On Apr 30, 2011, at 6:19 PM, Noel Jones wrote:
> On 4/30/2011 3:57 PM, Gary Roach wrote:
>> While I received an email saying that this problem was fixed,
>> as of today (30 April) I still have the same problem. The list
>> just keeps getting longer and longer. I am now getting over 60
>> hits.
>> I
The key word in "PUA" is "potentially". These are indicators that something
may be malicious.
Joel
On May 30, 2011, at 2:51 PM, Robert Schetterer wrote:
> Am 30.05.2011 19:55, schrieb cas...@gmail.com:
>> Hi,
>>
>> Today I got our third PUA.* false positive.
>> (PUA.Script.PDF.EmbeddedJS)
>
If you have a sample of the file, submitting it through ClamAV's submission
interface makes it "bubble up" so the rule writers can get to it faster.
(instead of waiting for it to come through Virustotal)
J
On Jun 29, 2011, at 5:24 AM, polloxx wrote:
> Dear,
>
> One of our customers got a viru
ntless arguments?
>
> Has anybody talked to Apple?
Yes.
...and you know that's all I can say about it.
--
Joel Esler
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
nt.
> P.
> ___
> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
> http://www.clamav.net/support/ml
>
--
Joel Esler | http://blog.snort.org | http://vrt-blog.snort.org |
http://blog.clamav.net
Twitter: http://twitter.
there is no way to do the update. How do I do this
>> please?
>>
>
> ClamAV has a GUI? :)
>
> --
>
> 73,
> Ged.
>
> __**_
> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
> http://www.clamav.
virus scanners on the same box. If you don't make an effort to
> exclude one scanner's virus database location from being scanned by the
> other scanner, and vice-versa, then you will end up with them trying to
> quarantine or delete each other's malware database files.
>
-Al-
>
> --
> Al Varnell
> Mountain View, CA
>
>
>
> ___
> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
> http://www.clamav.net/support/ml
>
--
Joel Esler
Senior Research Engi
Yes. I've written protection for all the current versions of Flashback that we
know of.
Cc'ed to the ClamAV-users list.
On Apr 8, 2012, at 4:51 PM, Jeremy Neptune wrote:
> Does ClamAV detect the Flashback malware? I have an old Mac (running
> 10.4.11) and running clamxav.
>
> Am I protected?
Please run Freshclam. This has already been cleared up.
Joel
On May 11, 2012, at 12:14 PM, Cedric Knight wrote:
> Hi
>
> I'm seeing BC.Exploit.CVE_2012_0184 hit a wide variety of attachments as
> of 14:40 UTC this afternoon. Will submit a sample the usual way, but
> wanted to warn that it jus
Please run freshclam, an update has been pushed.
Joel
On May 11, 2012, at 11:40 AM, Andrew Thompson wrote:
>
> Hello
> We were seeing a number of files being quarantined earlier with the reference
> BC.Exploit.CVE_2012_1847 FOUND and BC.Exploit.CVE_2012_0184 FOUND. The CVE
> numbers point to vu
t could be a useful
> example for our more technical customers)
Sorry it's taken me this long to chime in on this thread.
If you are interested in doing something like this, I suggest you contact me
offlist so I can put you in touch with our
I assume you've ran freshclam since then. So, if so, then no.
Please send the file into us via the clamav.net FP reporter, and email us back
with the md5 and we'll take a look.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On May 23, 2012, a
Please remember to submit FP reports here:
http://cgi.clamav.net/sendvirus.cgi
It helps if, when you submit them, you write the list back with the md5's
involved. When you submit via the above form it goes right into our Signature
Database and allows us to analyze them.
--
Joel Esler
S
On Wed, May 23, 2012 at 10:01:37AM -0700, David Alix wrote:
>
> It looks like it was a latency problem. Restarting my mimedefang
> daemon fixed the problem.
>
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.cla
I just went through and cleaned up the mail queues. There were a few stuck.
On May 25, 2012, at 1:22 PM, Paul Whelan wrote:
> Is this 12 week delay down to a scanning problem?
>
> From list message received today:
>
>> Received: from tad.clamav.net (localhost.localdomain [127.0.0.1])
>> by ta
Yes. I've cleared all the queues now, and will monitor closely going forward.
Thanks.
--
Joel Esler
On May 26, 2012, at 3:12 AM, "Paul Whelan" wrote:
> On 25 May 2012 at 14:33, Joel Esler wrote:
>
>> I just went through and cleaned up the mail queues. There w
Thanks. We'll have a look.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
On Saturday, June 2, 2012 at 7:55 PM, Hiroaki Nakamura wrote:
> Hello,
> First of all, thank you for clamav, a great software and service.
>
> Please check db.
In addition to what Matt said, we have updated the verbiage and instructions
here:
http://www.clamav.net/lang/en/faq/faq-upgrade/
The fingerprint, etc is all there.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Jun 15, 2012, at 1:33 PM, Matt Olney
en/ml/. We look forward to hearing your ideas and
feedback. Thanks for using ClamAV and we look forward to working with you.
--
Joel Esler
Open Source Community Manager
Senior Research Engineer, VRT
Sourcefire
___
Help us build a comprehensive ClamAV gu
On Jun 22, 2012, at 7:48 PM, Jim Preston wrote:
> On 06/22/2012 11:56 AM, Joel Esler wrote:
>> Earlier this week we announced a new chapter for ClamAV with the departure
>> of Tomasz Kojm, Alberto Wu, Luca Gibelli and Edwin Török. While we are sad
>> to see them go, we
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Begin forwarded message:
> From: Ilyas Doskhozhayev
> Date: June 27, 2012, 5:45:28 AM EDT
> To: jes...@sourcefire.com
> Subject: update clamav
>
> Hi thank all you team for this antivirus tool/
>
so never used ;-)
Jason's right.
The ClamAV-users mailing list is public, if you go here you can get everyone
who's ever been archived sending an email to the list's email address:
http://lurker.clamav.net/list/clamav-users.en.html
Thanks.
--
Joel Esler
Se
What issue?
--
Joel Esler
On Jul 9, 2012, at 5:08 AM, Bruno Barosa
wrote:
> Hello again,
>
> Good morning and a good week for all
>
> anyone has got news on this issue?
>
> Regards
> Bruno
>
> On 27-06-2012 19:29, Nigel Houghton wrote:
>> On Jun 27, 2
On Jul 20, 2012, at 8:57 AM, "Kern, Thomas (CONTR)"
wrote:
> Last night 4 files on one of our internal servers were flagged as being
> infected with Exploit.PDF.Dropped-20.
>
> How do I find out what Exploit.PDF.Dropped-20 is and how to fix the files or
> the user's workstation from which th
dea to that ?
If you have the files, can you upload them to ClamAV.net and then send the md5s
back to the list so we can take a look?
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehe
This sig has been dropped.
It caught a lot of very bad things, but there were a few false positives.
Currently evaluating other avenues of approach.
J
On Jul 20, 2012, at 3:40 PM, Silca wrote:
> I had ten files last night show up positive for Exploit.PDF.Dropped-20
>
> Will double check fil
Thomas,
Yes, thank you. The four you submitted did happen to be false positives.
As always false positives can be submitted via http://www.clamav.net
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Jul 20, 2012, at 3:54 PM, "Kern, Thomas (
several years. So
we took it down.
We are going to be placing the documentation that was in the Wiki in the ACTUAL
documentation that comes with the software. We're working on it!
I'll announce via the blog when everything is 'back to normal'
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
On Jul 25, 2012, at 10:20 AM, Francois Rolland wrote:
> The problem with your approach is that the documentation that is currently
> delivered with the latest release of clamav (0.97.5) refers only to that
> wiki. For example, the UPGRADE file contains only the following line:
> http://wiki.cl
n a public list
makes your email address public. We aren't going to require or expect our
users to shape their email clients to not include the original email address in
the replies.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Communit
ld be much appreciated.
>
> Kind regards,
> Jeroen
I'll take a look this morning, thanks for emailing.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
On Aug 20, 2012, at 6:46 AM, Henri Salo wrote:
> Is there a way to configure ClamAV to scan also files with starting
> GIF87a/GIF89a? We get attacks like this daily.
I assume you mean detecting PHP files with that at the beginning?
--
Joel Esler
Senior Research Engineer, VRT
Open
Begin forwarded message:
> From: "Patrick Holahan"
> Subject: [Clamav-mirrors] mirror.ac.za details update.
> Date: August 20, 2012 10:52:03 AM EDT
> To:
> X-Mimeole: Produced By Microsoft Exchange V6.5
> Mime-Version: 1.0
> User-Agent: Microsoft-Entourage/12.33.0.120411
>
> Dear clamav mirro
On Aug 20, 2012, at 11:06 AM, Joel Esler wrote:
> Begin forwarded message:
>
Sorry about that all! Email auto-correct!
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
Db updates will start pushing again soon. We've done some heavy backend work on
the system that pushes them.
--
Joel Esler
On Sep 2, 2012, at 3:46 AM, Al Varnell wrote:
> Just wondering if the update system is broken as the last daily published
> seems to be 15306 on Wednesday
of that API is on this list. Otherwise you'll need to
contact the author directly.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
On Sep 17, 2012, at 4:05 PM, Peter Bonivart wrote:
> On Mon, Sep 17, 2012 at 9:28 PM, Joel Esler wrote:
>> Dear ClamAV users,
>>
>> ClamAV 0.97.6 includes minor bug fixes and detection improvements.
>
> Wasn't bug 5252 important enough to warrant a minor
lamAV-Users
list here:
http://lists.clamav.net/mailman/listinfo/clamav-users
Thanks!
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://blog.clamav.net/2012/09/clamav-stats-we-need-more-of-them-we.html
ClamAV Stats, we need more of them, we need your help
We've been working pretty hard behind the scenes over here on ClamAV, its
backend infrastructure, and moving the codebase as well as its detection up the
ladder.
In or
On Sep 19, 2012, at 7:21 AM, G.W. Haywood wrote:
> Hi there,
>
> On Wed, 19 Sep 2012, Joel Esler wrote:
>
>> In order for us to get some accurate statistics about what you all
>> are seeing out there, in the field, we need as many people as
>> possible to "o
On Sep 19, 2012, at 6:12 AM, Paul Whelan wrote:
> On 18 Sep 2012 at 16:55, Joel Esler wrote:
>
>> All:
>>
>> if you are a Windows user of ClamAV, you'll be happy to know that we have
>> released the Windows builds for ClamAV 0.97.6 to our Sourceforge site
acts to be possible. The source code doesn't even
> have to contain the exploit.
>
> http://cm.bell-labs.com/who/ken/trust.html
>
> --
>
> Brian Morrison
> ___
> Help us build a comprehensive ClamAV guide: visit http://wiki.cla
.
Maybe you are talking about something I'm not aware of. But by the pure fact
that you are emailing a mailing list shows your email address. It's not a
secret. Aside from the fact that most mail clients put it right back in the
reply (as shown above, like mine does). So ma
27;re already working on it.
Thanks for the request.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
On Sep 24, 2012, at 7:23 AM, G.W. Haywood wrote:
> Hi there,
>
> On Mon, 24 Sep 2012, Joel Esler wrote:
>
>> Maybe you are talking about something I'm not aware of.
>
> This is standard mailing list etiquette going back, I guess, almost a
> couple of de
rretrievably lost, and as far as
> I'm concerned it's finished.
Mailing list etiquette is always an interesting conversation. I love to see
different people's perspectives on the nuances of it.
For instance. Any idea why your mail client breaks threading? I thought Pine
ha
I'm sorry I didn't respond. We are working on your request and I'll have one
of the guys get back to you.
Thanks for your patience.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Sep 25, 2012, at 11:29 AM, Bowie Bailey wrote:
> I
On Sep 25, 2012, at 11:59 AM, Bowie Bailey wrote:
> On 9/25/2012 11:45 AM, Joel Esler wrote:
>> I'm sorry I didn't respond. We are working on your request and I'll have
>> one of the guys get back to you.
>>
>> Thanks for your patience.
>
> No p
ded I need to
> join one of several social sites and deal with yet another EULA in order to
> participate. That sure as hell isn't going to happen - most of those sites
> are already blocked in my spam/scam/irritation filters.
>
> Who thinks of this stuff?
To which site
On Sep 25, 2012, at 6:05 PM, Dennis Peterson wrote:
> On 9/25/12 2:16 PM, Joel Esler wrote:
>> On Sep 25, 2012, at 2:39 PM, Dennis Peterson wrote:
>>> On 9/25/12 8:29 AM, Bowie Bailey wrote:
>>>> I posted this a few days ago with no response. I think it got
e your client deletes message-id's from the
header, breaking threading.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
aking place? If Sourceforge it doing it, that's not
something we can fix. You just have to manually visit the project's website on
Sourceforge and download the package you want.
Let's keep the discussion on topic, and not drown the thread.
--
Joel Esler
Senior Research Engineer, V
mav.net/mirrors.html>, but it is listed on
> db.us.big.clamav.net and still comes up every few days.
>
> Mirror #5
> IP: 69.12.162.28
> Successes: 0
> Failures: 21
> Last access: Mon Apr 2 07:45:04 2012
> Ignore: No
We actually don't have this IP in the rotation at
Tom,
Thanks for your email. Let me talk with the team and see what we can do about
fixing these response issues.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Oct 26, 2012, at 8:20 PM, TR Shaw wrote:
> I don't mind if SourceFire decides they do
k you.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
ilter) scanning solution. The Immunet
client for Windows is the consumer version for desktops.
I hope this clears up any mistakes or misconceptions.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Nov 27, 2012, at 2:17 PM, Dennis Peterson wrote:
>
Submitting a bug into the ClamAV bugzilla is the best way to get new features
built.
--
Joel Esler
Sent from my iPhone
On Dec 5, 2012, at 12:59 AM, "suja" wrote:
> Dear all,
>
> I want my malware statistics to be generated and available in my own server
> without s
gets fixed in a day or two, but I
> by this posting, I would expect you'll get the feedback you are looking for.
Can you share the md5/sha256 of the sample you submitted? I know we are going
through the FP reports as we can, and sometimes it takes time. But if you know
the md5 or the
leaving our competitors out of this, how does this make sense to go and
change millions of signatures for no functionally viable reason?
--
Joel Esler
Sent from my iPhone
On Jan 12, 2013, at 3:42 PM, "Pancho" wrote:
> Hi - thanks to everyone for the replies. I have seen 2 repli
Great example of the perfect FP report.
On Jan 30, 2013, at 2:32 AM, Christoph Moench-Tegeder
wrote:
> Hi,
> I just re-reported a FP on signature Win.Trojan.Swrort-2293. The
> md5sum of the file in question is 26f868a9dd7b213f53d415311a70973c.
> I already reported this exact file (which is a sa
s on VirusTotal currently report it as being
> malware.
>
> All it does is unlock Apple iDevices, which may be a problem to Apple, but
> should not be of any concern to users and does not meet any definition of
> malware that I'm aware of.
Have you read how it actually does t
;
>
> What did I miss and how would it exploit OS X as the infection name would
> seem to indicate?
I know this is on Forbes, but this is a pretty good write up.
http://www.forbes.com/sites/andygreenberg/2013/02/05/inside-evasi0n-the-most-elaborate-jailbreak-to-ever-hack-your-iphone/
--
J
Okay, I forwarded these on.
On Feb 8, 2013, at 2:55 PM, Al Varnell wrote:
> This does not relate to my previous postings on this subject, which will
> eventually be responded to later.
>
> After receiving reports from three users on the ClamXav Forum and the Apple
> Community Support forum abou
The definitions are also gplv2.
—
Joel Esler
Mobile
On Mon, Feb 11, 2013 at 3:44 AM, Jesse Nicholson
wrote:
> I'm wondering if anyone can give me a definitive answer on this... what is
> the license for the virus signature databases? I know the code for the core
> of clamav
On Feb 12, 2013, at 3:31 AM, Benny Pedersen wrote:
> Joel Esler skrev den 11-02-2013 14:20:
>> The definitions are also gplv2.
>
> this does not include UNOFFICIAL sigs imho
No. But I can't speak for those.
--
Joel Esler
Senior Research Engineer, VRT
OpenSour
Al,
Where did you see this page? I see what you posted, but I don't see where you
found that page?
--
Joel Esler
On Tuesday, February 12, 2013 at 8:48 PM, Shawn Webb wrote:
> On Tue, Feb 12, 2013 at 7:51 PM, Al Varnell (mailto:alvarn...@mac.com)> wrote:
>
> > On 2/
Thanks Al.
--
Joel Esler
Sent from my iPhone
On Feb 13, 2013, at 12:53 AM, Al Varnell wrote:
> Joel,
>
> <http://www.clamav.net/lang/en/sendvirus/> Third paragraph.
>
>
> -Al-
>
> On 2/12/13 9:48 PM, "Joel Esler" wrote:
>
>>
>> W
Apple doesn't block everything but what they have tested. What does that mean?
--
Joel Esler
Sent from my iPhone
On Feb 13, 2013, at 9:03 AM, Matus UHLAR - fantomas wrote:
> On 11.02.13 13:26, Jim Preston wrote:
>> Apple's App protection is analogous to running anti-vir
To be sold in the store, sure. But your apps don't have to be sold in the
store.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Wednesday, February 13, 2013 at 10:02 AM, Jim Preston wrote:
> On 02/13/2013 07:36 AM, Joel Esler wrote:
&
That's not true at all. You can install an application from anywhere.
See the attached screenshot, which can be found in your System Preferences.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Wednesday, February 13, 2013 at 10:07 AM, Matus
No one knows what Apple is planning, except for Apple. It wouldn't surprise
me, but I'm not going to hold my breath and wait.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Wednesday, February 13, 2013 at 10:18 AM, Greg Folkert wrote:
>
System Preferences -> Security and Privacy
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Wednesday, February 13, 2013 at 10:30 AM, Benny Pedersen wrote:
> Joel Esler skrev den 13-02-2013 16:10:
>
> > See the attached screenshot, which
Well, as you stated in a previous reply, we weren't talking about the iPhone.
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Wednesday, February 13, 2013 at 11:14 AM, Tilman Schmidt wrote:
> Am 13.02.2013 16:43, schrieb Joel Esler:
> > Syst
More info on the Jailbreak. Good read:
http://blog.azimuthsecurity.com/2013/02/from-usr-to-svc-dissecting-evasi0n.html
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
On Thursday, February 14, 2013 at 8:17 AM, Daniel McDonald wrote:
> On 2/14/13 2:18
1 - 100 of 1161 matches
Mail list logo
