Le Lun 19 jan 08:46:36 2004, Jim Ramsay écrit:
>
> 3 - The "PING" command doesn't seem to be very useful in the light of
> each command running in its own TCP session. If I get a PONG back, I
> know that the server is sane. But then I have to make another TCP
> connection to do any other work
Le Mar 20 jan 11:27:27 2004, Tomasz Kojm écrit:
> > > PING/PONG is useless. It could have been better if the server had
> > > send a banner at connection startup.
> >
> > Good point - that's much better for determining server state upon
> > connection. This banner should also include the clamd v
Le Mar 20 jan 11:23:35 2004, Tomasz Kojm écrit:
> > IMHO, the main misfit of the STREAM command is the random TCP
> > port. You have to open your firewall to allow any connection to any
> > port from clamd clients to servers.
>
> Today night, I will add an option that will allow to limit the port
Le Mar 20 jan 09:01:29 2004, Jim Ramsay écrit:
> >I like that, it's probably less ambiguous than SHUTDOWN.
>
> Um... I think I meant that SHUTDOWN is less ambiguous than QUIT.
Probably true if you don't know the shutdown(2) system call who
half-close a socket :-)
> "What, me fail English? That
Tomasz Kojm wrote:
> > Shouldn't clamd just IGNORE it instead of saying ERROR?
> > clamd / ClamAV version devel-20040130
>
> Done (libclamav now also ignores old errors for recursion and files
> limits).
You may have two configurations :
- check most of the file against viruses, so ignore unpar
Nigel Horne wrote:
> > Is there any way to persuade the milter to block password-protected
> > zip-files ?
>
> I do not feel that is the job of anti-virus software.
It should be implementation dependant, a security policy may want to
allow only datas parsed by the anti-virus with a "no virus here
Tomasz Papszun wrote:
> Despite adding to the submission page (in BIG fontsize!) this request:
>
> "DO NOT SUBMIT naked zip files IF their contents is DETECTED as infected
> by ClamAV AFTER UNZIPPING"
>
> they keep submitting these idiotic samples.
You may change the virus submission CGI to make
Tomasz Kojm wrote:
>due to many requests ClamAV is now able to detect and mark password
>protected archives as a virus type "Encrypted.Zip" (big thanks to
>Michael L Torrie). You have to enable this feature manually with
>ArchiveDetectEncrypted in clamav.conf and --detect-encrypted in
>clamscan. Pl
Denis De Messemacker wrote:
> On Mon, Mar 15, 2004 at 10:01:00AM -0600, Keith Murphy wrote :
> > I'm suddenly seeing this:
> >
> > clamscan Notepad.exe
> > Notepad.exe: W32.Ladmar.A FOUND
(...)
> Please submit this executable in the web submission interface as 'false
> virus'. Then we will proc
Le Ven 19 mar 15:41:34 2004, Wolfgang Cernohorsky écrit:
> > At this time, I'd like the recipient to be warned of a quarantined mail.
> > I tried many things but I never succeeded to except if I also warn the
> > sender. (what I don't want)
>
> I think, today 99,9% of mails with viruses or worms
Le Mar 3 aoû 11:15:39 2004, Xavier Beaudouin écrit:
> Humm ... What about using FreeBSD 5.2.1 and set in /etc/make.conf :
>
> PTHREAD_CFLAGS?=
> PTHREAD_LIBS?=-lkse
On FreeBSD 5, you may able to swap on the fly to your favorite thread
library editing /etc/libmap.conf.
See libmap.conf(5) for det
Le Ven 29 oct 15:46:44 2004, René Berber écrit:
> I found this by accident, trying to run TrippLite's PowerAlert the program
> reported that the port was in use, I checked and clamd was using that TCP
> port. So I checked some more, with Sysinternals' tcpvcon to see what ports
> was the clamd proc
Le Ven 3 déc 10:09:48 2004, Samuel Benzaquen écrit:
> I think it could be nice to have like a list of "known systems". That way a
> newbie could read and choose the best for his needs.
On my side, I use two systems
- one for my workstation, it's based on procmail
and a self made clamd clien
Le Lun 7 mar 09:38:30 2005, Robert Blayzor écrit:
> $err = $1 if ($r =~ /^ERROR\:(.*)/);
die "$1\n" if $r =~ /(.*) ERROR$/;
You may also remove the starting "stream: ".
___
http://lurker.clamav.net/list/clamav-users.html
Cedric Foll wrote:
> > Here are three infected mails (http://oban.ac-rouen.fr/virus/) get from
> > my postfix server.
> > When I extract manualy the attachement (with a mimencode -u) viruses are
> > detected by clamscan. When I scan them directly with clamscan they
> > aren't detected (I'm using cl
Le Mer 29 oct 08:39:31 2003, Erik Bourget écrit:
> What version should I use? I was going to go with the latest 'stable' until I
> read here that clamd stops every once in a while randomly. I can't have that.
> Anyone using a more recent snapshot successfully in a production environment?
I'm cal
> #0 0x28121bbc in kill () from /usr/lib/libc_r.so.4
> #1 0x2816fe6e in abort () from /usr/lib/libc_r.so.4
> #2 0x28149a37 in __assert () from /usr/lib/libc_r.so.4
> #3 0x2807ea38 in insert () from /usr/local/lib/libclamav.so.1
That is useless without debugging symbol or the full message may h
Le Jeu 13 nov 17:21:31 2003, Cedric Foll écrit:
> I'm trying to scan a file given on stdin with clamdscan but it doesn't
> work.
You can probably not.
I've written a client who get data from standart input and send it to
clamd server across the network. I use it with procmail on my mail
without
Le Jeu 13 nov 17:21:31 2003, Cedric Foll écrit:
> oban:~# clamdscan - < tmp/mail/tmp
> stream: OK
Check the
StreamSaveToDisk
clamav.conf option (should be enabled, which is not the case by default)
---
This SF.Net email sponsored by: ApacheC
Le Ven 17 jui 09:43:00 2005, Joanna Roman écrit:
> Can clamav scan dll type files ? I dont see the clamav
> website mention that clamav can scan dll type files.
DLL as MS Windows dynamic library archives are not a compressed format
and so, is not listed with them. Consired it as a ordinary binary
Hi,
I've released a small clamd client in sourceforge with the GPL
licence. It is designed to be used into procmail or maildrop filter
rules. It does not require clamav to be installed on the running host
(clamav just need to be installed on the server host). I use it since
about two years on m
Le Jeu 29 sep 11:17:03 2005, Jay Tortorelli écrit:
> Thank you! I have been looking for something like this for awhile to
> integrate into a qmail setup.
Please tell me the receipt if you use it in a standart qmail
installation. I'll add it in the documentation.
_
Le Jeu 29 sep 16:53:57 2005, Odhiambo Washington écrit:
>
> This app assumes that clamd is listening on a TCP socket! So, those
> using Unix sockets, beware ;)
>
Yes. I didn't underlined this point. As it does not require clamav
installed on the running host, unix socket connexions are not
suppo
23 matches
Mail list logo
