[clamav-users] ClamAV 0.100.2 has been released!

https://blog.clamav.net/2018/10/clamav-01002-has-been-released.html ClamAV 0.100.2 has been released! ClamAV 0.100.2 is a patch release to address a set of vulnerabilities. * Fixes for the following ClamAV vulnerabilities: * CVE-2018-15378

Re: [clamav-users] ClamAV 0.100.2 has been released!

:) We have some thoughts around 1.0. We want it to be a significant change, not just an incremental improvement. Sent from my iPhone On Oct 3, 2018, at 23:48, Dennis Peterson mailto:denni...@inetnw.com>> wrote: On 10/3/18 10:37 AM, Joel Esler (jesler) wrote: https://blog.clamav.net/2

Re: [clamav-users] ClamAV 0.100.2 has been released!

e in the style of Mozilla's "significant change" to > Firefox, which has just about destroyed it (IMHO, anyway). > > > On Thu, 4 Oct 2018 07:00:00 + > "Joel Esler (jesler)" wrote: > >> :) >> >> We have some thoughts around 1.0. We

Re: [clamav-users] ClamAV Central Management tools

Not to my knowledge. On Oct 16, 2018, at 12:36 PM, Mike Pmike mailto:pmik...@yahoo.com>> wrote: Hello. We are looking for ClamAV Central Management tools . The main thing is to be able to see an overview of the AV status on the our Ubuntu hosts so if there are any issues for instance definiti

Re: [clamav-users] /bin/mkdir: cannot create directory ‘/run/clamav’: File exists

After several complaints in this thread and three others that have written me off list, I've gone ahead and made the decision to removed Reindl from the ClamAV-users list. Present conduct on the list is reflective of past behavior that he has been warned about. -- Joel Esler Ma

Re: [clamav-users] Latest report on update "delays"

The DNS announcement is made as the last step in the process. The lag that may be seen is the lag in between when the DNS update is posted, and before the file is pushed out to the Tier 1 CDN servers. It has to be requested at the CDN server before it is cached. On Oct 18, 2018, at 12:07 PM

Re: [clamav-users] Latest report on update "delays"

Cloudflare will grab the file from our infrastructure once it's been requested. (Otherwise it wouldn't know it was there, we can't push into Cloudflare.). But we have discussed a few ideas internally that I think will fix this, let us try a couple things and see if it cuts down on this. On Oct

Re: [clamav-users] Latest report on update "delays"

ve to stall for > long -- or reply with the appropriate HTTP status code warning the > requester that something is amiss. (Codes 503, 504 or 409 might be > applicable.) > > > On Thu, 18 Oct 2018 22:34:03 + > "Joel Esler (jesler)" wrote: > >> Cloudfl

Re: [clamav-users] Latest report on update "delays"

27;t explicitly upload a >> file), is a mechanism to tell it that a file is out of date. This >> mechanism could operate very quickly. Then, what Cloudflare would do is >> either to stall the HTTP response -- I doubt it would have to stall for >> long -- or reply with the app

Re: [clamav-users] Latest report on update "delays"

t;>> >>> Thus, what Cloudflare *should* have (if you can't explicitly upload >>> a file), is a mechanism to tell it that a file is out of date. This >>> mechanism could operate very quickly. Then, what Cloudflare would >>> do is either to stall the HTTP

Re: [clamav-users] Latest report on update "delays"

We are aware that fresh clam is part of the issue. We are going to introduce some new code to freshclam (and have in the past two releases, IIRC) to prevent stuff like this happening. More updates to freshclam will come in future versions as well. That being said, it's important to realize th

Re: [clamav-users] Latest report on update "delays"

If you are testing connectivity, please state what version of ClamAV you are using. If you are not using the most up to date, please try that. Sent from my iPhone > On Oct 24, 2018, at 04:00, Michael Da Cova wrote: > > Hi > >> On 24/10/2018 04:09, Dave Warren wrote: >>> On Tue, Oct 23, 20

[clamav-users] ClamAV 0.101.0 beta has been posted!

amAV 0.101 beta! Bugs should be brought to our attention via the clamav-devel mailing list<https://www.clamav.net/contact#ml> or via bugzilla<https://bugzilla.clamav.net/>. You may download the ClamAV 0.101.0 beta at the usual location on ClamAV.net<https://www.clamav.net/downloa

Re: [clamav-users] Question about sending sample process

On Nov 6, 2018, at 4:46 AM, Luca Moscato mailto:l...@funambol.com>> wrote: Question 1 - Is this process correct to send samples? Please update the version of clamsubmit you are using. You are several versions behind. ___ clamav-users mailing list

Re: [clamav-users] Updates from ClamAV blocked by Cloudflare

On Nov 6, 2018, at 10:37 PM, Al Varnell mailto:alvarn...@mac.com>> wrote: Look under “Virus Definitions” here . Download daily.cvd and replace daily.cld file with it. Which gets it from Cloudflare :) ___ clamav-users

Re: [clamav-users] Updates from ClamAV blocked by Cloudflare

I need more details (feel free to email me directly). Version of ClamAV you are attempting to update. Your IP The RAYId from Cloudflare. We have plenty of blocks in Cloudflare of people that are abusing the system. Hopefully that's not you :) > On Nov 6, 2018, at 9:57 PM, twee...@secmail.pro w

Re: [clamav-users] Problem with BE db

Okay, so a couple things. Wget probably isn't going to work in the manner you expect. Which is why you got the 530 response. What version of freshclam are you using? > On Nov 11, 2018, at 11:18 AM, Pierre Dehaen wrote: > > Hi, > > It seems the db.be.clamav.net does not work any more since N

Re: [clamav-users] Problem with BE db

pgrade > soon. > > Thanks, > Pierre > > On 12 Nov 2018 at 16:41, Joel Esler (jesler) wrote: > > Okay, so a couple things. > > Wget probably isn't going to work in the manner you expect. Which is why you > got the 530 > response. > > What v

Re: [clamav-users] Problem with BE db

Awesome. This was my fault. Thank one of my team members for fixing my screw up. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com > On Nov 12, 2018, at 1:51 PM, Pierre Dehaen wrote: > > Yes, > > # vi /etc/opt/csw

Re: [clamav-users] Issue with freshclam in an IBM Cloud Private environment

This says you are running 0.93? Is that correct? What is the IP you are coming from? On Nov 14, 2018, at 5:19 PM, Mark Johnson mailto:mark.johnson...@gmail.com>> wrote: Hey everyone, We are trying to run clamAV in an IBM Cloud Private (ICP) environment. The issue that we are running into is

Re: [clamav-users] Issue with freshclam in an IBM Cloud Private environment

What is the public IP? Feel free to answer off list, so I can check the logs. > On Nov 15, 2018, at 11:50 AM, Mark Johnson wrote: > > We are using 0.100.2 release, I’m not sure where the .93 is coming from. The > IP is a private IP address in our ICP environment. > _

Re: [clamav-users] ClamAV mirrors have gotten worse!

Judging by the 60+TB of traffic we are transferring a day, it's working for at least 3M+ users. > On Nov 15, 2018, at 1:34 PM, Dennis Peterson wrote: > > On 11/13/18 12:04 PM, Paul Kosinski wrote: >> "Why are you looking at October reports?" >> >> It was the first one. And it also shows that t

[clamav-users] ClamAV® blog: The ClamAV 0.101.0 release candidate is here!

https://blog.clamav.net/2018/11/the-clamav-01010-release-candidate-is.html The ClamAV 0.101.0 release candidate is here! The ClamAV 0.101.0 release candidate is here! We have also made significant improvements to our User Manual

Re: [clamav-users] ClamAV mirrors have gotten worse!

es or mirrors. One was because the proxy didn't know how to address "HTTP/1.0" (Instead of "HTTP/1.1"). So it could be the smallest of issues, eliminate any issues that are not strictly relevant. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group ht

Re: [clamav-users] ClamAV mirrors have gotten worse!

ISP (Comcast) may be proxying / caching the ClamAV files -- and doing it badly. If that's the case, I don't know what we can do about it. On Tue, 20 Nov 2018 13:09:54 + "Joel Esler (jesler)" mailto:jes...@cisco.com>> wrote: Any particular reason that you are using a

Re: [clamav-users] ClamAV mirrors have gotten worse!

The “be” error was my fault. Plain and simple. I misconfigured a dns entry. Sent from my  iPhone On Nov 23, 2018, at 04:28, Pierre Dehaen wrote: >> On 11/22/18 8:51 PM, Paul Kosinski wrote: >> I wonder how many users of ClamAV actually log their freshclam updates. >> Those who don't likely

Re: [clamav-users] ClamAV mirrors have gotten worse!

; < Content-Range: bytes 0-99/52542292 >< Server: cloudflare >< CF-RAY: 47fd0b8064d9c1b8-IAD >< >{ [data not shown] >* Closing connection 0 >ClamAV-VDB:26 Nov 2018 09-14 > -0500:25155:2160841:63:9817036334370e1482f3fc58c6ed745a:MDvX2VW3tQr3ba

[clamav-users] ClamAV® blog: ClamAV 0.101.0 has been released!

> > https://blog.clamav.net/2018/12/clamav-01010-has-been-released.html > > > ClamAV 0.101.0 has been released! > > We are pleased to announce the release of ClamAV 0.101.0! Please take a look > at the below release notes

Re: [clamav-users] freshclam. Service exited with abnormal code: 1

You'd have to talk to the maintainer for homebrew for ClamAV. To my knowledge, we don't control that. > On Dec 4, 2018, at 10:23 AM, Robert Chalmers wrote: > > @Mica Snyder, > > Is there any chance that this update will make it to the Homebrew repo soon? > It’s not causing me any problems he

Re: [clamav-users] "Can't query daily..." entries in log since 0.101.0

Can you give us the full logs please? Not just that one line. Sent from my  iPhone > On Dec 7, 2018, at 15:49, Brian Fluet wrote: > > Hi All, > > Since installing Win32 portable v0.101.0 I am seeing the following > entry in the fresclam.log at each download: > > Can't query daily.25186.10

Re: [clamav-users] A workaround for the major ClamAV DB update delays we have been experiencing

Not sure what you’re saying here. Are you saying that the daily on the cache is out of date? Sent from my  iPhone > On Dec 8, 2018, at 20:30, Eric Tykwinski wrote: > > J.R. > > You are falling into the same trap I followed. The txt record is: > current.cvd.clamav.net.1749INTXT

Re: [clamav-users] A workaround for the major ClamAV DB update delays we have been experiencing

As it should be. No one should be downloading the daily and main, (although thousands are), cdiffs were created for a reason. Sent from my  iPhone > On Dec 9, 2018, at 06:58, Eric Tykwinski wrote: > > From back in archives, I think he’s using wget to just pull the files, but > freshclam w

Re: [clamav-users] Clamav download

Correct. > On Dec 10, 2018, at 5:42 AM, Robert Chalmers wrote: > > http://www.clamav.net/downloads > > > > - > Robert Chalmers > https://robert-chalmers.uk > aut...@robert-chalmers.uk > @R_A

Re: [clamav-users] A workaround for the major ClamAV DB update delays we have been experiencing

e going to fast" restrictions. (I have a rate limiter set up, if you are downloading 100 cdiffs in 10 seconds, to rate limit the offender...) I've disabled this for now We're up to about 71TB a day right now and it seems to be holding steady. Give it a couple more days and see

Re: [clamav-users] Can't detect deceptive URL's as infected !!

Not sure. Perhaps Alain can chime in. My team also runs the Phishtank project, so this is about making our different properties work together through the official signature set in a supported way. If false positives are reported on the phishtank sigs through ClamAV.net, they are automatically

Re: [clamav-users] Can't detect deceptive URL's as infected !!

lain > > On Wed, Dec 12, 2018 at 6:23 AM Joel Esler (jesler) <mailto:jes...@cisco.com>> wrote: > Not sure. Perhaps Alain can chime in. My team also runs the Phishtank > project, so this is about making our different properties work together > through the official signa

Re: [clamav-users] ClamAV installation is OUTDATED! as reported by freshclam utility on CentOS Linux release 7.6.1810 (Core)

ClamAV cannot control when the package distros update their packages. Also, some of the package maintainers, I suspect, rely on updates like that to tell them when they need to go update packages. > On Dec 13, 2018, at 12:28 PM, Scott Kitterman wrote: > > Would it be possible to turn off the

Re: [clamav-users] ClamAV installation is OUTDATED! as reported by freshclam utility on CentOS Linux release 7.6.1810 (Core)

y, December 13, 2018 06:49:08 PM Joel Esler wrote: >> ClamAV cannot control when the package distros update their packages. Also, >> some of the package maintainers, I suspect, rely on updates like that to >> tell them when they need to go update packages. >>&g

Re: [clamav-users] No good deed goes unpunished, or, why CVD files don't work

When Sourcefire acquired ClamAV "back in the day", we stopped accepting donations, as accounting for them on a corporate revenue side is more of a hassle than it is worth, so we just support it out of pocket. That being said, this thread is long and I wanted to reply to is. What if I flushed th

Re: [clamav-users] No good deed goes unpunished, or, why CVD files don't work

Inline: > On Dec 15, 2018, at 6:23 PM, Paul Kosinski wrote: > > I don't know if flushing the daily.cvd cache would be adequate, since > there are probably some downstream caches that wouldn't follow suit. Actually I had someone correct me after I wrote this email, we already have been doing th

Re: [clamav-users] No good deed goes unpunished, or, why CVD files don't work

> On Dec 17, 2018, at 3:01 PM, Dennis Peterson wrote: > > On 12/17/18 11:57 AM, Joel Esler (jesler) wrote: >> Inline: >> >>> On Dec 15, 2018, at 6:23 PM, Paul Kosinski >> <mailto:clamav-us...@iment.com>> wrote: >>> >>> I don&

Re: [clamav-users] No good deed goes unpunished, or, why CVD files don't work

Inline > On Dec 19, 2018, at 4:08 PM, J.R. wrote: > > Joel - In regards to the comment on pointing everyone to Cloudflare... > I'm guessing that statement means you are using a mix of the > Cloudflare CDN and the original volunteer mirrors still? No. Cloudflare is currently handling EVERYTHIN

Re: [clamav-users] No good deed goes unpunished, or, why CVD files don't work

Right. We only publish at certain times a day. I think a check once an hour is probably fine. Sent from my  iPhone > On Dec 20, 2018, at 09:55, Paul Kosinski wrote: > > Only DNS TXT queries are done 3-5 times per hour. Freshclam itself is > only run whenever that reports that there is so

Re: [clamav-users] Freshclam update HTTP Error 403 Forbidden

What IP are you coming from? What version ClamAV are you using? Sent from my  iPhone > On Dec 21, 2018, at 06:27, Claudiu Albu wrote: > > Hello all, > > > Been browsing through similar previous occurrences but found nothing > conclusive to our particular scenario. > > We’ve installed C

Re: [clamav-users] Freshclam update HTTP Error 403 Forbidden

Please see other email. Sent from my  iPhone > On Dec 21, 2018, at 06:15, Claudiu Albu wrote: > > Hello all, > > > Been browsing through similar previous occurrences but found nothing > conclusive to our particular scenario. > > We’ve installed ClamAV on a Centos7 server somewhere in

Re: [clamav-users] Freshclam update HTTP Error 403 Forbidden

Please see other other email. Sent from my  iPhone > On Dec 21, 2018, at 06:11, Claudiu Albu wrote: > > Hello all, > > > Been browsing through similar previous occurrences but found nothing > conclusive to our particular scenario. > > We’ve installed ClamAV on a Centos7 server somewhe

Re: [clamav-users] Freshclam update HTTP Error 403 Forbidden

Yours is a separate issue that I have to look into. I have to pull the logs and see why you are being blocked. Sent from my  iPhone > On Dec 21, 2018, at 14:22, Claudiu Albu wrote: > > Micah, Al and all, > > > Thanks a lot again for your prompt reply and willingness to assist. > > I su

Re: [clamav-users] One question 🙋

I’m sorry. I don’t understand the question. Sent from my  iPhone > On Dec 29, 2018, at 03:54, Dorian ROSSE wrote: > > Hello, > > > Do an e-mail server without machine learning script hasn't right to your last > clamav production 0.101.0 instead 0.100.2? > > Thank you in advance to answer

Re: [clamav-users] My second server is under 100.2

You mean: https://blog.clamav.net/2018/12/libclamav-missing-headers-issue.html <https://blog.clamav.net/2018/12/libclamav-missing-headers-issue.html> ? -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com > On Dec 29, 2018, a

Re: [clamav-users] ClamAV Scan results

Likely not. I would bet that there are some poorly written yara sigs in your environment. Sent from my  iPhone > On Jan 4, 2019, at 07:28, Kaushal Shriyan wrote: > > Hi, > > I have the below details > > [root@ clamav]# clamscan --version > ClamAV 0.100.2/25267/Fri Jan 4 06:17:25 2019 >

[clamav-users] ClamAV® blog: ClamAV 0.101.1 Patch has been released

/downloads>, send > us your feedback on ClamAV-Users > <http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users>. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com smime.p7s Description: S/MIME cryp

Re: [clamav-users] [Clamav-devel] ClamAV® blog: ClamAV 0.101.1 Patch has been released

Solaris is definitely not one of the OSs in our build farm. Just FYI. > On Jan 8, 2019, at 1:05 AM, Gary R. Schmidt wrote: > > On 08/01/2019 05:33, Joel Esler (jesler) wrote: >>> >>> https://blog.clamav.net/2019/01/clamav-01011-patch-has-been-released.html >&g

Re: [clamav-users] False Positives - Heuristics.Phishing.Email.SpoofedDomain

Check out http://www.clamav.net/documents/miscellaneous-faq > On Jan 8, 2019, at 2:43 PM, Ken Campney wrote: > > Emails from credit card companies I deal with have since 12/10/18 been > getting flagged by Heuristics.Phishing.Email.SpoofedDo

[clamav-users] Qnap

I’ve suddenly started receive a lot of emails from Qnap users saying they can’t update ClamAV anymore. Anyone have a Qnap system that is technically inclined that can help me troubleshoot? Sent from my  iPhone ___ clamav-users mailing list clamav-use

[clamav-users] ClamAV® blog: Bugzilla Maintenance tomorrow Feb 12th

w at 9am EST, February 12th, 2019, for about 90 minutes. We are moving to the data to a new machine at that time. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com smime.p7s Description: S/MIME cryptograph

Re: [clamav-users] Do you see clamav's exact detection rate and error detection rate?

I think that Shadowservers statistics are drastically wrong and haven’t changed in about 5 years. That’s number one. Sent from my  iPhone > On Feb 15, 2019, at 04:26, 조정환 wrote: > > Hello everyone ~ > > I looked around the other site bulletin board for .clamav, and I had a > question, so

[clamav-users] Testing

Testing! Sent from my  iPhone smime.p7s Description: S/MIME cryptographic signature ___ clamav-users mailing list clamav-users@lists.clamav.net https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https:/

Re: [clamav-users] Testing

May take time for DNS to get out. Sent from my  iPhone > On Feb 20, 2019, at 17:20, Benny Pedersen wrote: > > Joel Esler (jesler) skrev den 2019-02-20 23:14: >> Testing! > > DKIM and DMARC still fails > > no news there :( >

Re: [clamav-users] using older clients to download from internal clam proxy

e Email. > > ‐‐‐ Original Message ‐‐‐ > > On Thursday, December 2nd, 2021 at 12:14 PM, Joel Esler (jesler) > wrote: > >> The oldest version that is currently supported is the 0.101.x line, but that >> will be EOL in January. So I would recommend 0.103.x or hi

[clamav-users] ClamAV Community, it's been an honor!

, but will remain on the mailing lists with my personal email address (this one) and I will continue to help out where needed. Working with you all has been fantastic over the years, and I wish you all continued success. -- Joel Esler Open Source & Strategy, Cisco Talos Intelligence G

Re: [clamav-users] main.cvd update schedule

Correct. It’s about once a quarter. However, if you are using FreshClam or cvdupdate, (as you should be), those tools will download the correct files when the correct files need to be downloaded. > On Dec 21, 2021, at 3:21 PM, Kris Deugau wrote: > > Vu, Hong-Duc V. via clamav-users wrote:

Re: [clamav-users] Where can I download daily.cvd, bytecode.cvd and main.cvd from?

This is what cvdupdate was designed for. Please use that. — Sent from my  iPhone > On Jan 17, 2022, at 09:12, Nick Howitt via clamav-users > wrote: > > Please tell that to EPEL as well. We want to be able to distribute a package > which, in emergency, can be transferred to a standalone

Re: [clamav-users] Where can I download daily.cvd, bytecode.cvd and main.cvd from?

he sigs in a v0.103.5 rpm for my distro in the same way > as EPEL does. > >> On 17/01/2022 14:17, Joel Esler wrote: >> This is what cvdupdate was designed for. Please use that. >> — >> Sent from my  iPhone >>>> On Jan 17, 2022, at 09:12, Nick Howitt via clam

Re: [clamav-users] Where can I download daily.cvd, bytecode.cvd and main.cvd from?

> On Jan 17, 2022, at 10:17, Maarten Broekman via clamav-users > wrote: > > And, after 7 days, you'll see warning messages about outdated definitions > when clam starts up. And Freshclam and cvdupdate will still download the right files. ___ c

Re: [clamav-users] Where can I download daily.cvd, bytecode.cvd and main.cvd from?

> On Jan 17, 2022, at 2:03 PM, Matus UHLAR - fantomas wrote: > > On 17.01.22 16:30, Nick Howitt via clamav-users wrote: >> I give up. This is like pushing water up hill. There is no sensible way of >> building the packages in one pass which allows me to package the sigs >> automatically. It l

Re: [clamav-users] help with my system please hybrid os does not update signatures

Side comment about the below though: — Sent from my  iPhone > On Jan 21, 2022, at 18:16, G.W. Haywood via clamav-users > wrote: > > Since you're running Linux, and most of the published signatures are > intended to detect threats to Windows and other Microsoft products Only because of the p

Re: [clamav-users] Unable to mirror ClamAV database

Cvdupdate is where it’s at for what you’re trying to do. Clammirror was one of our problems, and why we had to put a stop to it. — Sent from my  iPhone > On Feb 9, 2022, at 05:08, Roy Cohen via clamav-users > wrote: > > Sorry, I (wringly) assumed clammirror was a clamav provided tool hen

Re: [clamav-users] Error 403 downloading virus updates

You’ll definitely need to upgrade. I imagine the minimum fLevel for the cvd files will have been moved as well, and if so, won’t work on older installations at all. > On Feb 10, 2022, at 10:55 AM, David Copeland via clamav-users > wrote: > > Hi Paul, > > According to https://docs.clamav.net

Re: [clamav-users] Scan log parsing

I think the word “FOUND” is used. — Sent from my  iPhone > On Feb 20, 2022, at 20:16, Eliya Voldman via clamav-users > wrote: > >  > > Hello, > I'm completely new to ClamAV > I am setting up ClamAV on one laptop located behind VLAN and I don't have the > option to monitor result. > St

Re: [clamav-users] Minor bug or working as intended?

Pretty sure you can write what you’re trying to look for with an ldb signature anyway. — Sent from my  iPhone > On Feb 24, 2022, at 18:53, G.W. Haywood via clamav-users > wrote: > > Hi there, > >> On Thu, 24 Feb 2022, Kris Deugau wrote: >> >> After chasing docs back and forth and trying

Re: [clamav-users] Virus database not updated since 14th July 2021

https://blog.clamav.net/2021/07/psa-freshclam-database-download-issue.html — Sent from my  iPhone > On Mar 9, 2022, at 16:25, clamav.mbou...@spamgourmet.com wrote: > > ReceiveTimeout=30 is probably the one causing you problems. I was bitten by > that when installing ClamAV on an Ubuntu-base

Re: [clamav-users] ClamAV 0.105 release candidate

Can’t use wget. — Sent from my  iPhone > On Mar 14, 2022, at 20:28, Yasuhiro Kimura wrote: > > From: "Micah Snyder \(micasnyd\) via clamav-users" > > Subject: [clamav-users] ClamAV 0.105 release candidate > Date: Mon, 14 Mar 2022 20:14:18 + > >> Read this announcement online at >>

Re: [clamav-users] ClamAV 0.105 release candidate

> On Mar 16, 2022, at 5:35 AM, Gary R. Schmidt wrote: > > On 16/03/2022 20:19, Christoph Moench-Tegeder via clamav-users wrote: >> ## Joel Esler via clamav-users (clamav-users@lists.clamav.net): >>> Can’t use wget. >> Looks like "can't use anything which

Re: [clamav-users] wget blocks - was Re: ClamAV 0.105 release candidate

> On Mar 16, 2022, at 10:55 AM, Andrew C Aitchison > wrote: > > On Wed, 16 Mar 2022, Joel Esler via clamav-users wrote: >>> On Mar 16, 2022, at 5:35 AM, Gary R. Schmidt >> <mailto:grschm...@acm.org>> wrote: >>> >>> On 16/03/2022

Re: [clamav-users] ClamAV 0.105 release candidate

> On Mar 16, 2022, at 11:25 AM, Bowie Bailey via clamav-users > wrote: > > On 3/16/2022 10:09 AM, Joel Esler via clamav-users wrote: >> >>> On Mar 16, 2022, at 5:35 AM, Gary R. Schmidt wrote: >>> >>> On 16/03/2022 20:19, Christoph Moench-Teged

Re: [clamav-users] ClamAV 0.105 release candidate

On Wed, 16 Mar 2022, Bowie Bailey via clamav-users wrote: >>> On 3/16/2022 10:09 AM, Joel Esler via clamav-users wrote: >>>> On Mar 16, 2022, at 5:35 AM, Gary R. Schmidt wrote: >>>>> On 16/03/2022 20:19, Christoph Moench-Tegeder via clamav-users wrote:

Re: [clamav-users] ClamAV 1020 when pulling 104.2.tar.gz

Should clear automatically after awhile. — Sent from my  iPhone > On Mar 16, 2022, at 13:09, Schneider, Arthur (A.V.) via clamav-users > wrote: > > Hello, > >Looks like we’re getting a 1020 when our automation is pulling the > 104.2.tar.gz. We’re currently in the process of compiling

Re: [clamav-users] Inquiry about ClamAV's usage within sandbox

If the purpose of doing all of this is to detect if malware is present, I would do it outside of the sandbox. The point of a sandbox is to let malware execute and NOT stop it. > On Mar 30, 2022, at 11:48 AM, G.W. Haywood via clamav-users > wrote: > > Hi there, > > On Wed, 30 Mar 2022, Yang,

Re: [clamav-users] DoD/IL4/Federal use case

https://lists.clamav.net/mailman/listinfo/clamav-users Look for unsubscribe at the bottom. — Sent from my  iPhone > On Apr 13, 2022, at 12:58, Eliya Voldman via clamav-users > wrote: > > Folks, > I unsubscribed my email from this list but still continue to receive email. > Is it my fault?

Re: [clamav-users] DoD/IL4/Federal use case

I’m pretty sure there should be an internal resource to the DoD to answer this question. > On Apr 19, 2022, at 2:27 PM, Enver Bahar via clamav-users > wrote: > > Hi, > > I tried before but didn't get a response, any directions would be great: > > I read on some forums that ClamAV is approved

Re: [clamav-users] DoD/IL4/Federal use case

Thanks. > On Apr 19, 2022, at 4:31 PM, Ivan Zanoth via clamav-users > wrote: > > Do what you need. > > Em ter., 19 de abr. de 2022 às 17:29, Joel Esler via clamav-users > mailto:clamav-users@lists.clamav.net>> > escreveu: > I’m pretty sure there should b

Re: [clamav-users] clamav/safebrowsing updates?

> On Apr 26, 2022, at 4:08 PM, Alex via clamav-users > wrote: > > Hi, > >>> Is the clamav-safebrowsing repository still maintained? >> >> https://blog.clamav.net/2020/06/the-future-of-clamav-safebrowsing.html > > Yes, that's exactly what I'm referring to - your link directs the user > to th

Re: [clamav-users] How to stop receive messages.

https://lists.clamav.net/mailman/listinfo/clamav-users > On May 4, 2022, at 7:43 PM, Eric Jin via clamav-users > wrote: > > Dear Sir, > I don't want to receive any posted messages. Please tell me how to stop it. > Thanks. > > Best reg

Re: [clamav-users] Scan reports

Is it not updating? Or not scanning? — Sent from my  iPhone > On May 31, 2022, at 07:09, John Paul Guay via clamav-users > wrote: > > Hello, > > I’m new to ClamAV and I need help to fix our master server so it will scan > each agent daily. I work in a federal department in government and

Re: [clamav-users] Version .105

https://www.clamav.net/downloads Seems to have what you need. > On Jun 29, 2022, at 10:02 AM, West, Hunter D [US] (ES) via clamav-users > wrote: > > Hello, > > I am unsure if I've come to the right place, but I need to install ClamAV > version .105. I work in a SAP environment with no inter

Re: [clamav-users] Off topic question...

Talosintelligence.com/support — Sent from my  iPhone > On Jun 29, 2022, at 10:59, Eric Tykwinski via clamav-users > wrote: > >  > Any one have an abuse contact for Cisco IronPorts hosted service? > > Customer of ours received a phishing email from a Cisco client but wasn’t > sent by them

Re: [clamav-users] Permanently banned from clamav

This is correct. — Sent from my  iPhone > On Jul 2, 2022, at 11:50, Maarten Broekman via clamav-users > wrote: > > Downloading the entire databases unnecessarily (using web browsers, etc) is > banned because it results in higher volumes of data transfer which, in turn, > costs more mone

Re: [clamav-users] Permanently banned from clamav

Freshclam and cvdupdate can be ran as often as you want. They check DNS to see if an update is needed before it attempts to download from the CDN, so knock yourself out. That being said, ClamAV only publishes updates once a day. So hourly is PLENTY of time to run the check. — Sent from

Re: [clamav-users] Inquire about clamav latest stable version -

ClamAV is a Cisco project. There’s no arguing that. All of the original team are observed here: https://www.clamav.net/about So, not sure what you’re getting at. — Sent from my  iPhone > On Jul 28, 2022, at 16:56, Paul Kosinski via clamav-users > wrote: > >  >> >> At the moment three

Re: [clamav-users] Inquire about clamav latest stable version -

> On Aug 1, 2022, at 15:36, Paul Kosinski wrote: > > On Thu, 28 Jul 2022 17:38:20 -0400 > Joel Esler wrote: > >> ClamAV is a Cisco project. There’s no arguing that. >> All of the original team are observed here: https://www.clamav.net/about >> So

Re: [clamav-users] False Positive?

Exactly the only answer that is correct to this email. :) > On Aug 11, 2022, at 2:15 PM, Al Varnell via clamav-users > wrote: > > Did you submit to ? > > -Al- > -- > ClamXAV user > > On Aug 11, 2022, at 11:01 AM, David Laxer

Re: [clamav-users] Best practices when using caching http proxy as cvd private mirror

What I don’t understand about threads like this: During my time at Cisco, Micah literally built multiple tools to correctly handle the CDN framework. CVDUPATE and Freshclam itself, and people are going out of their way to try and fake CVDUPDATE to create a local mirror. Which is literally wha

Re: [clamav-users] remove me

Check the bottom of every email sent to the list. — Sent from my  iPhone > On Sep 8, 2022, at 14:16, Michael Piziak via clamav-users > wrote: > > remove me > > ___ > > clamav-users mailing list > clamav-users@lists.clamav.net > https://lists.cl

Re: [clamav-users] remove me

> On Sep 9, 2022, at 12:40 PM, Matus UHLAR - fantomas wrote: > > On 09.09.22 12:29, Marc wrote: >> What about doing some sort of IQ test before users subscribe something like >> 2+2=? > > making unsubscribe easier would spare us from solving problems like these. > > unfortunately, subscribin

Re: [clamav-users] Are there test results for ClamAV and which malware is supported

Some tidbits from me. I do not speak for Cisco. > On Oct 6, 2022, at 5:21 PM, G.W. Haywood via clamav-users > wrote: > > Hi there, > > On Thu, 6 Oct 2022, Julia - via clamav-users wrote: > >> I have a general question to ClamAV regarding how good ClamAV is. > > It's a good question. Most p

Re: [clamav-users] ClamAV Action is not working on WHM/cPanel

I am betting that Inmotion is running an old version of ClamAV that can’t update anymore. I’d bet money on that. > On Oct 13, 2022, at 1:43 PM, Javier Camacho via clamav-users > wrote: > > Hi there, I am not sure if this the correct channel to request help. We have > a dedicated WHM/cPanel

Re: [clamav-users] on my microsoft windows with both edited freshclam.conf and clamd.conf unfornately i can't update and i can't scan

Dorian it looks like all your errors are below. Read the output. — Sent from my iPhone > On Oct 16, 2022, at 03:21, Dorian ROSSE via clamav-users > wrote: > >  > > ‘’’ > PS C:\Program Files\ClamAV> ./freshclam.exe > ERROR: Please edit the example config file C:\Program > Files\ClamAV\fre

Re: [clamav-users] on my microsoft windows with both edited freshclam.conf and clamd.conf unfornately i can't update and i can't scan

real help, > > Regards. > > > Dorian Rosse. > From: Joel Esler > Sent: Monday, October 17, 2022 1:04:50 PM > To: ClamAV users ML > Cc: Dorian ROSSE > Subject: Re: [clamav-users] on my microsoft windows with both edited > freshclam.conf and clamd.conf unfornately i

Re: [clamav-users] ClamAV 1.0.0 release candidate now available

You wouldn’t download the cld from the server. Or am I reading this thread wrong. — Sent from my iPhone > On Oct 28, 2022, at 04:15, Ralf Hildebrandt via clamav-users > wrote: > > * Yasuhiro Kimura : > >> I experienced same problem while I'm working to update FreeBSD ClamAV >> port to 1.

Re: [clamav-users] Information about the signature database

The Talos team should be able to tell you, I’d you give them the name of the detection, they can look it up. — Sent from my iPhone > On Dec 9, 2022, at 07:10, Al Varnell via clamav-users > wrote: > > Yes I simply search the daily's. If you give me the signature name I can do > that for y

<    3   4   5   6   7   8   9   10   11   12   >