Wouldn't that be best done by a separate product, like Tripwire? Then only scan those files with changed sigs.
...Just my two cents. > Hello, > > I propose a possible speed-up scan (as I think that hashing is faster than > scanning) > > The idea comes from security software like WinSonar ( > http://www.fewbyte.com/winsonar.html) and file synchronisation. > > I propose that when a media has been fully scanned, that for each large > file > (maybe define by a threshold) its hash signature (SHA256, MD5, ...) is > stored so that when one re-scan the same media, ClamAV would skip the scan > of file if its current signature matches the scanned one. > > One could even image a online central database with hashes of common > files. > > Yours, > > Philippe > _______________________________________________ > http://lurker.clamav.net/list/clamav-devel.html > Please submit your patches to our Bugzilla: http://bugs.clamav.net > -- "Knowledge is Power" -- Francis Bacon Robert Leyva mrflash...@geophile.net _______________________________________________ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net