Re: [clamav-users] How many viruses/malware is clamav protecting us from?

Technically speaking, this is an impossible question to answer. Since there are millions of pieces of detection in ClamAV, but one piece of detection can cover millions of pieces of malware. > On Dec 15, 2022, at 9:09 AM, Michael Kyriacou via clamav-users > wrote: > > Hello, is there a way to

Re: [clamav-users] Anyone else having trouble reaching the ClamAV website?

The system is probably set up that way on purpose to discourage automated bots from pounding on the site constantly, and ensure that the browser visiting the site is actually a human. — Sent from my  iPad > On Jan 6, 2023, at 14:55, Paul Kosinski via clamav-users > wrote: > > I occasional

Re: [clamav-users] Errors after using clamdscan

> On Jan 12, 2023, at 11:19, Matus UHLAR - fantomas wrote: > > On 12.01.23 18:34, Antonio Galdieri via clamav-users wrote: >> We are trying to use the clamdscan command with a scripts that sends us the >> results of the scan via mail, problem is, whenever we try to use the script >> we get the

Re: [clamav-users] Off Line Signature updates.

Andy, You can download them on a standalone machine and move them over via thumb drive. > On Jan 30, 2023, at 10:30 AM, GARLICK, Andy W via clamav-users > wrote: > > Hi CLAMAV, > > We only operate an air gapped system but still require anti-malware. > > Do you provide any options (free

Re: [clamav-users] [EXTERNAL] Re: Off Line Signature updates.

local mirror using the cvdupdate tool.     Kind Regards Andy     NATS Internal From: Joel Esler Sent: 30 January 2023 15:35 To: ClamAV users ML Cc: GARLICK, Andy W Subject: [EXTERNAL] Re: [clamav-users] Off Line Signature updates.   CAUTION: This email originated from outside of the

Re: [clamav-users] How do I get something added to the ignore list

What db do you think you want to add it to?— Sent from my iPhoneOn Jun 8, 2023, at 12:35, Tim McConnell via clamav-users wrote:Thanks for that AL, now how do I add to the DB? Two things I'm not is a programmer or DBA :-( -- Tim McConnell On Thu, 2023-06-08 at 05:01 -0700, Al Varnell wrote:First

Re: [clamav-users] Cloudflare ban?

403 is a specific ban. Maybe by country or an Ip specifically. — Sent from my iPhone > On Jul 11, 2023, at 02:50, Łukasz Baniecki via clamav-users > wrote: > > Today I did a clean cvd update, meaning I removed everything in > /var/lib/clamav, I flushed my fw rules, so it won't block anyth

Re: [clamav-users] ClamAV Issue - 127.0.0.1:3310 Connection refused

Is perhaps your freshclam update attempting to connect to localhost or something?— Sent from my iPhoneOn Aug 22, 2023, at 03:54, Mona AlRekabi via clamav-users wrote:Dear,   Kindly, we installed ClamAV Antivirus on Windows Server and we face the following issue:   No connection could be made beca

Re: [clamav-users] ClamAV Issue - 127.0.0.1:3310 Connection refused

Yup. Looks like your FreshClam can’t reach the internet. Or DNS is messed up. Or something. > On Aug 22, 2023, at 3:10 PM, Mona AlRekabi wrote: > > Kindly, find the attached file > ___ Manage your clamav-users mailing list subscription / unsubsc

Re: [clamav-users] freshclam not working

Curl won’t work at all.  But it definitely points to a dns problem. — Sent from my iPhoneOn Sep 11, 2023, at 13:07, Serge Slivitzky via clamav-users wrote:  Hi all,I'm using clamav on 2 systems built the same way: the first one is behind a firewall and freshclam is not working, the other one is u

Re: [clamav-users] freshclam not working

Off the top of my head. I think database is right. — Sent from my iPhone > On Sep 13, 2023, at 02:12, Andrew C Aitchison via clamav-users > wrote: > > On Tue, 12 Sep 2023, Joel Esler via clamav-users wrote: > >> Curl won’t work at all. >> But it definit

Re: [clamav-users] Cloudflare block me

You must use fresh clam to download updates. There are no country specific databases anymore.  They all just point at the same db. — Sent from my iPhoneOn Nov 17, 2023, at 02:00, Vedeau Jérôme via clamav-users wrote: Hello,   Can you help us to resolve this issue : We are blocked by Cloudf

Re: [clamav-users] Unable to download daily.cvd after upgrade to RHEL 8

Looks like you’re trying to connect through a proxy.  Not directly.  — Sent from my iPhoneOn Mar 7, 2024, at 13:34, John Paul Guay via clamav-users wrote:Hello,We have performed an In-Place upgrade to RHEL 8 on our system that ClamAV resides on and afterwards we are no longer able to download the

Re: [clamav-users] Feedback: Confusing branding, off putting to new users

Just to give you some background on the design choice: We originally had a clam as the logo, but when we decided to update the website and blog, we thought it was the perfect time to change the logo too. We wanted something that represented malware better. We went through a few designs and lan

Re: [clamav-users] Feedback: Confusing branding, off putting to new users

Not being the manager for ClamAV anymore, but we now have four threads about the logo. Feedback is appreciated, but the mail threading breaking is driving me crazy! > On Jun 23, 2024, at 22:20, Kenneth Porter via clamav-users > wrote: > > On 6/23/2024 7:02 PM, andre.nz--- via clamav-users wr

Re: [clamav-users] Issue getting private local mirror to work

You don't need to enter any of those mirrors. All you need is the main database, and you’ll be routed to the nearest POP to your location. The regional mirrors were decommissioned years ago. > On Jul 17, 2024, at 08:40, newcomer01 via clamav-users > wrote: > > Hi, > > curl or something is

Re: [clamav-users] CVE-2025-21298 vulnerability

ClamAV is an AV/file scanner. Not a Vulnerability scanner. > On Jan 16, 2025, at 14:36, Marc via clamav-users > wrote: > > I am just a bit curious are such vulnerabilities added to clamav? > > https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21298 > _

Re: [clamav-users] CVE-2025-21298 vulnerability

Yes, it is. And if a malicious file is being attached to an email for ClamAV to scan, then if a signature can be written to catch a file that may be attempting to export this vulnerability with either a logical signature or a bytecode signature, then I am sure that the ClamAV will write one t

Re: [clamav-users] manual download av definitions updates how long ?

Well, it looks like the blocks I put in place have been altered then.  — Sent from my 📱iPhoneOn Jun 11, 2025, at 02:01, Dirk Nichterwitz via clamav-users wrote: Hello, Am 10.06.25 um 22:25 schrieb Joel Esler: Manual downloads of the definitions

Re: [clamav-users] manual download av definitions updates how long ?

Manual downloads of the definitions were blocked about 5 years ago. — Sent from my 📱iPhone > On Jun 10, 2025, at 04:39, Dirk Nichterwitz via clamav-users > wrote: > > Hello, > > can someone tell how long the official manual download of AV definition files > will be possible ? > > Is the

Re: [clamav-users] Need help on clamav database mirroring.

Atish — Have you read Brendan’s link? https://docs.clamav.net/appendix/CvdPrivateMirror.html?highlight=setting%20DatabaseMirror#use-cvdupdate-to-serve-whole-databases-and-database-patch-files-from-a-private-mirror How to set up a private mirror is all documented there. > On Jul 24, 2025, at

Re: [clamav-users] Help! - ClamAV database IP addresses (at Cloudflare) blocked by firewall

. — Joel Esler Former ClamAV Open Source Manager Miss you guys! > On Jul 30, 2025, at 11:05, Paul Kosinski wrote: > > How might I keep up to date on the *specific* IP addresses at Cloudflare for > ClamAV database updates? They seem to change now and then. > > I use ClamAV for ema

Re: [clamav-users] local server takes time to update clamav db

can see). I think the way to fix this is, freshclam, if it receives an “I’m behind” error from the PoP, to do a sleep for awhile and then try again. If the second attempt still fails then give the error to the user. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http

Re: [clamav-users] local server takes time to update clamav db

> On Dec 10, 2020, at 9:07 AM, Andrew C Aitchison > wrote: > > On Thu, 10 Dec 2020, Joel Esler (jesler) via clamav-users wrote: > >>> >>> >> >> By “unable to resolve” Micah means: “There’s nothing more we can do >> to solve th

Re: [clamav-users] local server takes time to update clamav db

> On Dec 10, 2020, at 11:58 AM, Paul Kosinski via clamav-users > wrote: > > I would imagine that Cloudflare has a means of fetching a specific file > from any of their own mirror servers (via its unique, non-anycast, IP > address) to check its operation. If ClamAV DB files could be requested >

Re: [clamav-users] local server takes time to update clamav db

> On Dec 10, 2020, at 12:21 PM, G.W. Haywood via clamav-users > wrote: > > But the real fix must be in the hands of Cloudflare, or perhaps those > of Cloudflare's customers (making more fuss about something which, at > first sight, could very easily be remedied). While I agree, I am sure twea

Re: [clamav-users] local server takes time to update clamav db

sleep for awhile and then try again. If the >>> second attempt still fails then give the error to the user. >> >> I want to be clear -- the message that was originally reported is not an >> error message. It's a verbose (a.k.a debug-level) message. If you're >

Re: [clamav-users] local server takes time to update clamav db

Both of those things are done as well. Sent from my  iPhone > On Dec 13, 2020, at 19:24, Dave Warren via clamav-users > wrote: > > On 2020-12-11 08:51, Paul Kosinski via clamav-users wrote: >> "The whole CVD filename is not versioned (always "daily.cvd") which is >> why the CloudFlare cach

Re: [clamav-users] How can we consume .ldb files in ClamAV Ubuntu?

Also, we have shipped detection which detects the same things Fireeye was detecting and much more, also rewritten to be more efficient in the official ruleset. Sent from my  iPhone > On Dec 14, 2020, at 18:54, G.W. Haywood via clamav-users > wrote: > > Hi there, > >> On Mon, 14 Dec 2020,

Re: [clamav-users] ClamAV Fireeye Rules?

Again, same as I wrote on the Snort list, we rewrote all of this detection and it is in the official ClamAV database, so If you are using fresh clam to update from clamav, you already have it. On Dec 17, 2020, at 3:44 PM, bobby via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: I

Re: [clamav-users] Looks like we've gotten a new variant of Emotet getting through...

I pretty much disagree with this. 90% or greater of what is sent into clamav.net is covered in less than 24 hours, and to a much greater degree. We don’t aim to cover just the sample you sent in, we cover all the variants of that sample at the time, if possible. On Dec 21,

Re: [clamav-users] Looks like we've gotten a new variant of Emotet getting through...

On Dec 21, 2020, at 4:02 PM, eric-l...@truenet.com wrote: Joel, I pretty much disagree with this. 90% or greater of what is sent into http://clamav.net is covered in less than 24 hours, and to a much greater degree. We don’t aim to cover ju

Re: [clamav-users] How can we consume .ldb files in ClamAV Ubuntu?

Yes Sent from my  iPhone > On Dec 22, 2020, at 02:30, Luca Sironi via clamav-users > wrote: > >  > Hello, > are those signatures coming from FireEye github already included on the > regular update ? > > regards > Luca > > ___ > > clamav-users m

Re: [clamav-users] Looks like we've gotten a new variant of Emotet getting through...

Isn’t that literally the opposite of what needs to happen? On Dec 22, 2020, at 1:27 AM, Brent Clark via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Hiya Can you please submit to Sanesecurity too. https://sanesecurity.com/contact-us/ Regards Brent On 2020/12/21 18:44, eric-l..

Re: [clamav-users] freshclam can't download updates due to SSL issue

Nothing has changed on our end. Sent from my  iPhone > On Dec 23, 2020, at 13:57, Chris via clamav-users > wrote: > >  > Hello > > I'm using ClamAV version 0.103.0 and recently whenever I try to update ClamAV > with freshclam, for some reason it spits out this error: > > WARNING: Downloa

Re: [clamav-users] Remove from list

Please go to here: https://lists.clamav.net/mailman/listinfo/clamav-users At the bottom and follow the links to unsubscribe. Sent from my  iPad > On Dec 30, 2020, at 20:54, Jim and Jenn Guild via clamav-users > wrote: > >  Hi, > > Would you please remove me from the mailing list? > > Tha

Re: [clamav-users] [SUSPICIOUS] Re: Question about Urlhaus.Malware.452652-9766253-0

You should set it to ignore if you don’t want to use it. Sent from my  iPad > On Dec 30, 2020, at 20:16, Orion Poplawski wrote: > > So that is a apparently a malicious site as determined by Urlhaus and is on > their filter list. But how is it useful as a ClamAV signature? You are not > goin

Re: [clamav-users] ClamAv help

What would you like to do other than what you have done? Seems like you were able to cover the basics. Sent from my  iPhone > On Dec 31, 2020, at 15:47, Jay A. Schoon via clamav-users > wrote: > >  Hello: > > I have installed ClamAV on a Mac running Mojave 10.14.6. I have successfully

Re: [clamav-users] Problem with private mirror and cld, inc files

Why wouldn’t you just download less often? Instead of doing all of this? We publish updates once a day, there’s no need to download the entire package once a second. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https

Re: [clamav-users] Problem with private mirror and cld, inc files

s the only blocker to make this > work :/ > > On Tue, Jan 26, 2021 at 7:00 PM Joel Esler (jesler) <mailto:jes...@cisco.com>> wrote: > Why wouldn’t you just download less often? Instead of doing all of this? We > publish updates once a day, there’s no need to download the

Re: [clamav-users] Problem with private mirror and cld, inc files

or the clamav-daemon to > run, but the files are not available for download > I am afraid that in the long run my service could again DoS > database.clamav.net <http://database.clamav.net/> and it would be prudent for > me to proceed with the private mirror solution. > > Reg

Re: [clamav-users] freshclam logs "DNS record is older than 3 hours."

> On Jan 29, 2021, at 7:50 AM, Gary R. Schmidt wrote: > > On 29/01/2021 21:57, G.W. Haywood via clamav-users wrote: >> Hi there, >> On Fri, 29 Jan 2021, Gary R. Schmidt wrote: >>> I've just noticed that freshclam has logged "DNS record is older than 3 >>> hours." twice in the last few days. >>

[clamav-users] ClamAV® blog: ClamAV 0.103.1 patch release

> > https://blog.clamav.net/2021/02/clamav-01031-patch-release.html > > > ClamAV 0.103.1 patch release > > ClamAV 0.103.1 is out now. Users can head over to clamav.net/downloads > to download

Re: [clamav-users] [SUSPECTED SPAM] When was 0.103.1 announced on *this* list?

I forgot to announce it. Sorry about that. — Sent from my  iPad > On Feb 9, 2021, at 10:14, Paul Kosinski via clamav-users > wrote: > > I save all the ClamAV mail, and couldn't find an announcement. > > ___ > > clamav-users mailing list > clam

Re: [clamav-users] [When was 0.103.1 announced on *this* list?

Nothing to read into. I just forgot. Life is good. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org > On Feb 9, 2021, at 2:55 PM, Paul Kosinski wrote: > > Thanks. > > It's good to know th

[clamav-users] ClamAV® blog: ClamAV EOL versions prior to 0.100

> > https://blog.clamav.net/2021/02/clamav-eol-versions-prior-to-0100.html > > > ClamAV EOL versions prior to 0.100 > > <>ClamAV community, we want to inform you that, effective March 1, ClamAV > 0.99.0 (and all minor v

Re: [clamav-users] Freshclam failing to get update

Everyone should upgrade to current. So many CVEs have been patched in the past couple of major versions. We’ve shut off older versions as it’s costing a fortune for us to keep feeding older versions of ClamAV, which download the daily.cvd in its entirety, once a second. (So many people do thi

Re: [clamav-users] Problem updating dats

Please send me the IP that you are attempting to connect from off list. > On Feb 12, 2021, at 11:58 AM, Justus Addiss via clamav-users > wrote: > > About three days ago our HP-UX server stopped being able to get DAT updates > via freshclam. A SPARC system is still getting them successfully, an

Re: [clamav-users] ClamAV not even mentioned in article "The 6 Best Antiviruses for Linux 2021"

This is what happens when you don’t pay people for SEO. Sent from my  iPhone > On Feb 19, 2021, at 12:10, Paul Kosinski via clamav-users > wrote: > > https://www.safetydetectives.com/best-antivirus/linux/ > > ___ > > clamav-users mailing list >

Re: [clamav-users] ClamAV not even mentioned in article "The 6 Best Antiviruses for Linux 2021"

These types of articles are written purely for seo. We get contacted constantly about this type of thing. Sent from my  iPhone > On Feb 19, 2021, at 17:26, Andrew C Aitchison via clamav-users > wrote: > >  >> On Fri, 19 Feb 2021, Paul Kosinski via clamav-users wrote: >> >> https://www.s

Re: [clamav-users] Virus Sigs not updating

step up and take on this task. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org > On Feb 20, 2021, at 10:58 AM, G.W. Haywood via clamav-users > wrote: > > Hi there, > > On Sat, 20 Feb 2021,

Re: [clamav-users] FreshClam can't download database

You’re not sending “server-name” in your test there: echo | openssl s_client -connect database.clamav.net:443 -servername database.clamav.net | openssl x509 -text -noout > On Feb 24, 2021, at 5:05 PM, Royce Souther via clamav-users > wrote: > > It looks like the SSL cert for database.clamav

[clamav-users] Rate Limiting Downloads

. There’s no reason to download the full main and daily. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org signature.asc Description: Message signed with OpenPGP

Re: [clamav-users] Rate Limiting Downloads

downloading is now in place. If you are getting “429” back from Cloudflare - you are part of the problem. 2. Use of Wget, Curl, and the link is now severely limited. 3. Use FreshClam 4. We’re modifying FreshClam in upcoming releases to deal with this problem better. 5. See #3 -- Joel Esler

Re: [clamav-users] Virus def download results in 403 Forbidden

Are you using Freshclam to download the updates? > On Mar 5, 2021, at 12:58 PM, Ritch Parker wrote: > > Hello, > > Yesterday, for some reason, all my AWS VMs receive a 403 Forbidden response > from clamav when attempting to pull the latest cvd files. I’ve tried from > two different instances

Re: [clamav-users] Virus def download results in 403 Forbidden

d to be the best fit. > > >> On Mar 5, 2021, at 10:20 AM, Joel Esler (jesler) via clamav-users >> wrote: >> >> Are you using Freshclam to download the updates? >> >>> On Mar 5, 2021, at 12:58 PM, Ritch Parker wrote: >>> >>> Hello

Re: [clamav-users] Downloading CVD files manually..

Correct. Wget is restricted. I wrote that in my email. So if you upgrade your version of freshclam/ClamAV, you should be good. Please see our blog post made back in the beginning of February. Sent from my  iPhone > On Mar 6, 2021, at 16:10, Paul Smith via clamav-users > wrote: > > OK,

[clamav-users] Restriction of downloads

. — Joel Esler The guy putting in the time to try snd solve this Sent from my  iPhone ___ clamav-users mailing list clamav-users@lists.clamav.net https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https

Re: [clamav-users] (no subject)

ClamWin is not a ClamAV product. They use our engine, but we don’t make it. ClamWin needs to update to a more current version of ClamAV, they are very far behind. — Sent from my  iPad > On Mar 6, 2021, at 21:54, Tech Support via clamav-users > wrote: > >  > Hi, > > > I’m using clamw

Re: [clamav-users] I can't update Clamav database for 5 days

Thank you all for understanding, and yes, I could have been more clear in the blog post. But the intention is that when EOL happens, those versions are now disabled. — Sent from my  iPad > On Mar 7, 2021, at 11:18, Paul Smith via clamav-users > wrote: > >  > On 07/03/2021 15:55, Arjen de

Re: [clamav-users] QNAP - Cannot update virus definition & cannot wget *.cvd (receive error 403 forbidden)

So, Qnap is up to date? But people using older versions need to update their Qnap software? Is that what’re your saying? It seems like the holdouts are ClamWin and Qnap. A lot of the issues that I have seen of versions lower than 0.100 are those two. — Sent from my  iPad > On Mar 7, 2021,

Re: [clamav-users] QNAP - Cannot update virus definition & cannot wget *.cvd (receive error 403 forbidden)

:48 PM, Joel Esler (jesler) via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: So, Qnap is up to date? But people using older versions need to update their Qnap software? Is that what’re your saying? It seems like the holdouts are ClamWin and Qnap. A lot of the issues that I

Re: [clamav-users] Script PHP to refresh private miror in sinergy with freshclam

Also this: “ SERIOUSLY ? MORE THAN 100 DAYS WITHOUT UPDATE ? IT WILL COST LESS MONEY ON BANDWITH AT CLAMAV IF YOU DOWNLOAD THE FULL NEW DATABASE";” Is incorrect. It costs less to download 100 cdiffs than it does to download the full daily. Sent from my  iPhone On Mar 7, 2021, at 18:07, Vinc

Re: [clamav-users] Restriction of downloads

ground right now, for anyone on the client side that has been paying attention to the downloads over the last couple days, you’ve seen it work then not work then work again. Please use Freshclam. Sent from my  iPhone On Mar 6, 2021, at 19:33, Joel Esler (jesler) wrote:  ClamAV community

Re: [clamav-users] 回覆: Not able to use curl to download the cvd files successfully

Please use either FreshClam or our new tool cvdupdate: https://github.com/micahsnyder/cvdupdate Just replace your CURL script with this. On Mar 8, 2021, at 9:19 AM, Lo Nelson via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Hi Matus, I use a Windows server with Cygwin installed

Re: [clamav-users] Script PHP to refresh private miror in sinergy with freshclam

Okay, users of this script should be good to go. I would suggest that you put this on GitHub, and we’ll link to it from the official FAQ. On Mar 7, 2021, at 6:06 PM, Vincent GUESNARD via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: My last edit for today just to magnify cli retur

Re: [clamav-users] Not able to use curl to download the cvd files successfully

#x27; No! Don’t “bypass” it. And “protecting” does not need to be in quotes, it’s quite literally what we are doing. And people doing the above are the problem. As I said in countless other emails, either use Freshclam or https://github.com/micahsnyder/cvdupdate. The more peo

Re: [clamav-users] ASP : Forbidden 403 on download virus database

Vincent, I don’t show that IP in our logs. However, check out: https://lists.clamav.net/pipermail/clamav-users/2021-March/010577.html -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org On Mar 8, 2021, at 5:12 AM

Re: [clamav-users] Not able to use curl to download the cvd files successfully

On Mar 8, 2021, at 11:30 AM, Todd Aiken mailto:todd.ai...@ubishops.ca>> wrote: > From: clamav-users > mailto:clamav-users-boun...@lists.clamav.net>> > on behalf of "Joel Esler (jesler) via clamav-users" > mailto:clamav-users@lists.clamav.net>> >

Re: [clamav-users] Freshclam network unreachable

ClamAV environment. Please Immediately switch to using Freshclam or https://github.com/micahsnyder/cvdupdate to update your AV definitions. Sorry for the inconvenience, but we are currently in emergency mode and have to make several drastic changes over the several days. -- Joel Esler Manager

Re: [clamav-users] Rép. : Re: ASP : Forbidden 403 on download virus database

ClamAV environment. Please Immediately switch to using Freshclam or https://github.com/micahsnyder/cvdupdate to update your AV definitions. Sorry for the inconvenience, but we are currently in emergency mode and have to make several drastic changes over the last several days. -- Joel Esler

Re: [clamav-users] Blocked by Cloudflare

ClamAV environment. Please Immediately switch to using Freshclam or https://github.com/micahsnyder/cvdupdate to update your AV definitions. Sorry for the inconvenience, but we are currently in emergency mode and have to make several drastic changes over the last several days. -- Joel Esler

Re: [clamav-users] Freshclam network unreachable

Out of procedural curiosity, why would someone want to disable ipv6? > On Mar 8, 2021, at 6:40 PM, G.W. Haywood via clamav-users > wrote: > > Hi there, > > On Mon, 8 Mar 2021, Adam Bashore via clamav-users wrote: > >> I'm able to telnet to port 80 at db.local.clamav.net without issue. but I >

Re: [clamav-users] Freshclam network unreachable

Thanks team, was just wondering. On Mar 9, 2021, at 11:52 AM, Gene Heskett via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: On Tuesday 09 March 2021 09:37:59 Joel Esler (jesler) via clamav-users wrote: Out of procedural curiosity, why would someone want to disable ipv6?

Re: [clamav-users] Rate Limiting Downloads

mav-users > wrote: > > Hi there, > > On Thu, 4 Mar 2021, Joel Esler (jesler) via clamav-users wrote: > >> ... >> Downloading using other than FreshClam has now been limited. >> ... > > Should this not have gone to

Re: [clamav-users] Rate-limiting question

You shouldn’t be rate limited if Freshclam is operating correctly. Can you give me an IP to look up? Sent from my  iPhone On Mar 9, 2021, at 16:58, Jimmy Tigert via clamav-users wrote:  Greetings, We are experiencing the results of the current rate-limits due to some parties’ activities

Re: [clamav-users] Database update downloads blocked with 403 error

ClamAV environment. Please Immediately switch to using Freshclam or https://github.com/micahsnyder/cvdupdate to update your AV definitions. Sorry for the inconvenience, but we are currently in emergency mode and have to make several drastic changes over the last several days. -- Joel Esler

Re: [clamav-users] Database update downloads blocked with 403 error

Preach. On Mar 10, 2021, at 11:48 AM, Paul Smith via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: People think if they're downloading to a server and then their users' PCs download from that server, then they're saving bandwidth, but about 11,000 client computers getting a CDIFF

Re: [clamav-users] freshclam getfile failed - and clamav links Cloudfare 1020 error.

That browser is blocked because it’s old as heck, and we’re dealing with automated bots that are randomizing and using illegitimate browser User-Agents to try and bypass the controls. On Mar 10, 2021, at 2:01 PM, r.dodin via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Hi, My

Re: [clamav-users] Unable to download clamav cvd file using google cloud python function

On Mar 10, 2021, at 12:31 PM, Paul Smith via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: On 10/03/2021 17:00, Paul Kosinski via clamav-users wrote: I wonder how many "ordinary" users of ClamAV are giving up on using it after getting permanent 403s. I would imagine there are lots

Re: [clamav-users] Unable to download clamav cvd file using google cloud python function

g said that, I agree a prominent message about the obsolescence of ClamAV < 0.100 and the current download limits is desireable. Traffic wise? About 80% of people aren’t using Freshclam or cvdupdate. What that equates to in real person numbers? I have not done that calculation. -- Joel E

Re: [clamav-users] looks like I have a problem too

> On Mar 10, 2021, at 3:58 PM, Arjen de Korte via clamav-users > wrote: > > Citeren Paul Smith via clamav-users : > >> That's certainly how it seems to behave here. If the DNS record hasn't >> changed, then it just says "everything's fine" and does nothing else. So, if >> you ran Freshclam

Re: [clamav-users] looks like I have a problem too

On Mar 10, 2021, at 3:29 PM, Paul Kosinski via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: I wrote a little script that run off cron every hour or so. But it *only* invokes freshclam after querying ClamAV's DNS TXT record to see if any advertised versions of 'daily', 'bytecode'

Re: [clamav-users] Restriction of downloads

You’ll have to work with qnap. We can’t update qnap. Sent from my  iPhone On Mar 11, 2021, at 13:39, Harv Azad via clamav-users wrote:  I’m a simple QNAP 509 (x2) user and having read the emails I’m a bit confused on how to resolve the issue of definitions not updating automatically. Havin

Re: [clamav-users] Private Mirror Via Artifactory

environment. Please Immediately switch to using Freshclam or https://github.com/micahsnyder/cvdupdate to update your AV definitions. Sorry for the inconvenience, but we are currently in emergency mode and have to make several drastic changes over the last several days. -- Joel Esler Manager

Re: [clamav-users] Unable to download clamav cvd file using google cloud python function

vailable? > > > >> On Wed, 10 Mar 2021 22:29:41 + >> "Joel Esler \(jesler\) via clamav-users" >> wrote: >> >> To give everyone a frame of reference. This is what a Cdiff release and >> download cycle should look like: >> >>

Re: [clamav-users] Restriction of downloads

sonne autre qu'un destinataire, et toute diffusion ou publication ultérieure du contenu de ce message, en totalité ou en partie, est interdite sauf autorisation préalable et écrite de l'émetteur" De: "Joel Esler (jesler) via clamav-users&qu

Re: [clamav-users] Restriction of downloads

Please don’t. You have two solutions provided from us. Please use one of them. Sent from my  iPhone On Mar 13, 2021, at 06:18, Eero Volotinen wrote:  Just use that php based freshclam replacement? Eero On Sat 13. Mar 2021 at 13.53, Matus UHLAR - fantomas mailto:uh...@fantomas.sk>> wrote:

Re: [clamav-users] Restriction of downloads

Team— The qnap and synology issues are a result of the EOL of <0.100. Not as a result of the abusive downloaders. Two separate issues. Our EOL policy that has been in place is “current version with all minor patches and one back with all minor patches”. This has been our policy for about 8–10

Re: [clamav-users] Restriction of downloads

> On Mar 13, 2021, at 08:53, Matus UHLAR - fantomas wrote: > >>> On 13.03.21 12:47, Joel Esler (jesler) via clamav-users wrote: >>> The qnap and synology issues are a result of the EOL of <0.100. Not as a >>> result of the abusive downloaders. Two separate i

Re: [clamav-users] Restriction of downloads

Thank you for writing in. Go to this URL to change user options or unsubscribe: https://lists.clamav.net/mailman/listinfo/ClamAV-users or by sending an email to clamav-users-le...@lists.users.net Thanks! Sent from my  iPhone On Mar 13, 2021, at 16:02, Rémy via clamav-users wrote:  As a re

Re: [clamav-users] Restriction of downloads

:53, Matus UHLAR - fantomas >>>> wrote: >>> >>>>> On 13.03.21 12:47, Joel Esler (jesler) via clamav-users wrote: >>>>> The qnap and synology issues are a result of the EOL of <0.100. Not as a >>>>> result of the abusive downloade

Re: [clamav-users] Exchange attacks...

Hello Eric, You’re saying that you were caught up in the Exchange attacks, but ClamAV was able to catch an installed Webshell? -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org On Mar 13, 2021, at 8:12 PM, Eric

Re: [clamav-users] Restriction of downloads

.cdiffs since the release need to be applied. > We are currently writing a blog post that talks about this. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org ___ clama

Re: [clamav-users] Unable to download clamav cvd file using google cloud python function

there’s work on all sides right now. On Mar 11, 2021, at 7:20 AM, G.W. Haywood via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Hi there, On Thu, 11 Mar 2021, Paul Smith via clamav-users wrote: On 10/03/2021 22:29, Joel Esler (jesler) via clamav-users wrote: ... in the past 24

Re: [clamav-users] can't find daily signatures

The links on the webpage have been removed. Please read the other email on this thread for cvdupate links or Freshclam. On Mar 16, 2021, at 1:57 PM, Volcy, Georges via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Unable to find signatures on clamav.net. The f

Re: [clamav-users] wget http://database.clamav.net/daily-26108.cdiff ERROR 403: Forbidden.

-prior-to-0100.html Sorry for the inconvenience, but we are currently in emergency mode and have to make several drastic changes over the last several days. -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com | https://www.snort.org Sent from

Re: [clamav-users] Unable to update ClamAV virus database on QNAP

No, the problem with Qnap is they are running an old version of Snort that has been EOL’ed and refuse to update, so they are blaming it on us. On Mar 17, 2021, at 9:47 AM, Bas Heeringa via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: L.s. Since begin March my NAS reported failure

Re: [clamav-users] Unable to update ClamAV virus database on QNAP

Err…. Old version of ClamAV, sorry. They are running something in the 0.99 range. On Mar 17, 2021, at 10:07 AM, Joel Esler mailto:jes...@cisco.com>> wrote: No, the problem with Qnap is they are running an old version of Snort that has been EOL’ed and refuse to update, so they are blam

Re: [clamav-users] Offline Updating

Please use Freshclam or cvdupdate. On Mar 17, 2021, at 7:12 AM, presario2133--- via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Hello, Instead of using Freshclam, are those folowing urls stil allowed to be used? http://database clamav.net/daily.cvd ht

<    4   5   6   7   8   9   10   11   12   >