It doesn't recognize data type and just performs a direct signature scanning.
Why is my test program failing then? I would think that the signature
for the clam.exe would appear if I were to pass the contents of a file containing the virus signature.
Thank you for your help, I'll also try to check the source to see how cl_scandesc and cl_scanfile are grabbing signatures.
Regards, ------------------------------------------------------------------ Gregory Class "Gus" Developer Spam Arrest LLC _______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-devel
