On 04/16/2010 07:15 PM, Henri Salo wrote:
It would be very nice to see hashes and possible CVEs in
submissions in virusdb-mailinglist. Every submission should have at
least MD5-, SHA1-checksums
Of the databases?
The database itself contains the hash, and it is digitally signed.
The public key for that is embedded in clamav, and freshclam checks
those digital signatures.
You can run sigtool --info on a CVD and find out the MD5 hash, the
digital signature.
Also the newer databases contain sha256 hashes (in daily/main.info), and
their corresponding digital signatures.
and possible CVE listed.
I'm not sure what you mean by this. Do you mean CVE references for
exploits we detect?
Best regards,
--Edwin
_______________________________________________
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net