If someone wants to validate that their files have not changed, there are already programs to do it (tripwire).
Someone else can always write a "shell" program to virus scan any programs that have had their checksum change. The checksums would have to be kept separate and in a secure location, like another system, or usb dongle, otherwise a malware program can conceivably alter the "known good" checksums. > clamav could then do > a checksum on each file, if the checksum matches a known good signature > for that filename, it can skip scanning it for viruses. > -- "Knowledge is Power" -- Francis Bacon Robert Leyva [EMAIL PROTECTED] _______________________________________________ http://lurker.clamav.net/list/clamav-devel.html
