[Clamav-devel] Question about threads
Hi ClamAV Developers, ClamAV Users what will happen if I configure more than 2 threads(for say example , I keep MaxThreads attribute value 10 in clamd.conf) on Dual Core Processor Systems. How exactly ClamAV (clamd) will work in this kind of scenarios? Kindly waiting for knowledgable info from ClamAV developers and users as well Thanks, Crazy Thinker Inc ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
Re: [Clamav-devel] [clamav-users] Question about Heuristic Scanning and Signature Based Scanning
@AI Varnell Yes, I have plans to rewrite it from scratch.. you willing to join me ?:) On 9 May 2017 at 13:08, Al Varnell <alvarn...@mac.com> wrote: > On Tue, May 09, 2017 at 12:29 AM, crazy thinker wrote: > > > > Thanks for Reply. How many Heuristic Scan Engines ClamAV using Now? > > I only know of one. > > All the other heuristic approaches use the primary scanner along with > signatures designed to detect suspicious patterns in file names or coding. > > > what > > are extensions of db files used by ClamAV Heurisitci Engine? > > As I told you on Friday... > > There's a heuristics engine that uses data from the .pdb and .sfp > sections of the database to detect messages from selected financial > institutions that appear to be phishing attempts. > > > Can I > > Increase Heuristic Scan Engine Count ? > > I suspect you would have to write your own. > > -Al- > > > On 9 May 2017 at 12:21, Al Varnell wrote: > > > >> I already answered most of these questions before and after reading "My > >> Understanding" which is totally wrong, it's obvious you have not read > the > >> signature.pdf documentation closely enough to understand an of this. > >> > >> The way you have chosen to classify signatures is completely wrong, > which > >> means the questions you've asked don't make any sense. All signatures in > >> the database are static in that they only change when replaced by a more > >> accurate signature. There is nothing dynamic about any of them. > >> > >> The signature based scanner uses both fixed and variable length > signatures. > >> > >> As I told you before, the heuristics based scanner only checks a limited > >> list of financial institutions for phishing attempts. That only > represents > >> a tiny fraction of what could be considered behavior based malware > >> detection. And the database is used to define what financial > institutions > >> are included as well as the ability to whitelist certain behaviors that > are > >> known to not be a threat. > >> > >> On Mon, May 08, 2017 at 10:49 PM, crazy thinker wrote: > >>> > >>> Hi ClamAV Developers,Users > >>> > >>> As per My Understnading , Virus Signatures are Classified into two > types > >>> > >>> 1.Static Virus Signatures(short/fixed length virus signatures) > >>> 2.Dynamic Virus Signatures(long length Signatures with Regular > >> Expression) > >>> > >>> So I guess, ClamAV performing both Signature Based Scanning and > >> Heuristic > >>> Based Scanning for Malware Detection Process > >>> > >>> Please find below questions that in my mind > >>> > >>> 1.Does Signature Based Scanner uses only Static Signatures (not > Dynamic > >>> Signatures) ? > >>> 2.Does Heuristic Scanner uses only Dynamic Signatures for Malware > >>> Detection? > >>> 3. If Herusitc Scanner uses Behaviour Based Approach, why Heuristic > >>> Scanner needs Virus Database? > >>> 4.To implement Efficient AV Scanner, Can I go with Heuristic Scanning > >>> Approach and Excluding Signature Based Scanning Approach? > >>> > >>> I would like to get help/suggestions from you guys... > >>> > >>> > >>> Kindly waiting for your reply > >>> > >>> > >>> Thanks, > >>> Crazy Thinker, Inc > > ___ > clamav-users mailing list > clamav-us...@lists.clamav.net > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > > > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml > ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about Heuristic Scanning and Signature Based Scanning
Hi ClamAV Developers,Users As per My Understnading , Virus Signatures are Classified into two types 1.Static Virus Signatures(short/fixed length virus signatures) 2.Dynamic Virus Signatures(long length Signatures with Regular Expression) So I guess, ClamAV performing both Signature Based Scanning and Heuristic Based Scanning for Malware Detection Process Please find below questions that in my mind 1.Does Signature Based Scanner uses only Static Signatures (not Dynamic Signatures) ? 2.Does Heuristic Scanner uses only Dynamic Signatures for Malware Detection? 3. If Herusitc Scanner uses Behaviour Based Approach, why Heuristic Scanner needs Virus Database? 4.To implement Efficient AV Scanner, Can I go with Heuristic Scanning Approach and Excluding Signature Based Scanning Approach? I would like to get help/suggestions from you guys... Kindly waiting for your reply Thanks, Crazy Thinker, Inc ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Artificial Intelligence Based Anti-Virus
Hi ClamAV Developers, Users, I have heard that Artificial Intellgience Based Anti-Virus provides more security than others.. is it really true? is there any AI based free Desktop AV? did ClamAV uses AI techniques to threat prevention and detection? Thanks, Crazy Thinker Inc ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] ClamAV UnOfficial Database
Hi ClamAV Developers, Users To my curiosity, i want to remove ClamAV Official Database and plan to integrate unofficial database with clamav engine.. i heard that Sanesecurity signatures increases ClamAV performance upto 90%.. so i am thinking that excluding ClamAV Official Database not afffecting ClamAV performance in this scenario. because. i guess Sanesecurity unofficial database covers signatures which is covered by ClamAV Official Database.. Am i right? Th e reason behind to do like this is i want to keep optimized database i would like to get some suggestions/advices on my experimental thought Thanks, Crazy Thinker Inc ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Home Network Scan Feature
Hi ClamAV Developers, I would like to appreciate ClamAV Developers for their efforts on ClamAV Development and i planned to decided to contribute as developer for ClamAV Source Code for Unix/Unix like systems. i have some plans to include Home Network Scan Security Feature in ClamAV please find below my use case 1.Discover network devices connected to home Network 2.Check default user name and password for web management devices like camera, printer, router 3.Check port-farwarding and device accessability over internet 4. implement multi-threaded portscanner 5.Calculating device security percentage based on above parameters I have implemented basic version of this feature for mac OS X Environment I am looking forward to see some suggestions from ClamAV Development Team Thanks, Satish Yaduvanshi Crazy Thinker Inc ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] ClamAV for EnterPrise
Hi ClamAV Developers, ClamAV Users I have refered ClamAV Docs but i could find any info to set up clamav in Business Environment. i have a small business office where 50-75 employees are working Could anyone of you please help me in this? ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about LibClamAV Library
Hi ClamAV Developers, I have compiled the ClamAV source code on Mac OS X and investigating libclamav.dylib and libclamav.7.dylib internal files information for my curiousity.. Surprisingly i got below info when i ran grep with some pattern *admin-macbookPro-2:clamav-devel-0.99.2 CrazyThinker$ grep -ir "This file was created by ClamAV for internal use and should not be run" .* *Binary file ./libclamav/.libs/libclamav.7.dylib matches* *Binary file ./libclamav/.libs/libclamav.dylib matches* *Binary file ./libclamav/.libs/libclamav_la-rebuildpe.o matches* *Binary file ./libclamav/.libs/libclamav_la-upx.o matches* i still don't understand why those above binary files contains that pattern(that i mentioned above) even though single source file of ClamAV Codebase doesn't have that kind of pattern . From where this pattern appending to .dylib files.? Thanks, Satish Yaduvanshi ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
Re: [Clamav-devel] Question about LibClamAV
Hi ClamAV Developers, Users Sorry.. i missed proper info in my previous mail thread.. please find correct info below I have compiled the ClamAV source code on Mac OS X and investigating libclamav.dylib and libclamav.7.dylib internal files information for my curiousity.. Surprisingly i got below info when i ran grep with some pattern *admin-macbookPro-2:clamav-devel-0.99.2 tringappsinc$ grep -ir "This file was created by ClamAV for internal use and should not be run"* *Binary file ./libclamav/.libs/libclamav.7.dylib matches* *Binary file ./libclamav/.libs/libclamav.dylib matches* *Binary file ./libclamav/.libs/libclamav_la-rebuildpe.o matches* *Binary file ./libclamav/.libs/libclamav_la-upx.o matches* i still don't understand why those above binary files contains that pattern(that i mentioned above) even though single source file of ClamAV Codebase doesn't have that kind of pattern . From where this pattern appending to .dylib files.? i am so curious to understand things behind it. is there any logic ClamV Internally using? Could please any one of you to help me on this On 17 April 2017 at 18:02, crazy thinker <crazythinke...@gmail.com> wrote: > Hi ClamAV Developers, Users > > I have compiled the ClamAV source code on Mac OS X and investigating > libclamav.dylib and libclamav.7.dylib internal files information for my > curiousity.. Surprisingly i got below info when i ran grep with some > pattern > *admin-macbookPro-2:clamav-devel-0.99.2 tringappsinc$ grep -ir "This file > was created by ClamAV for internal use and should not be run"* > > *Binary file ./libclamav/.libs/libclamav.7.dylib matches* > > *Binary file ./libclamav/.libs/libclamav.dylib matches* > > *Binary file ./libclamav/.libs/libclamav_la-rebuildpe.o matches* > > *Binary file ./libclamav/.libs/libclamav_la-upx.o matches* > > i still don't understand why those above binary files contains that > pattern(that i mentioned above) even single source file of ClamAV > Codebase. from where this pattern appending to .dylib files. > > i am so curious to understand things behind it. is there any logic ClamV > Internally using? > > Could please any one of you to help me on this > > > Thanks, > > Crazy Thinker Inc > > > Thanks, > > Crazy Thinker > > > ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about LibClamAV
Hi ClamAV Developers, Users I have compiled the ClamAV source code on Mac OS X and investigating libclamav.dylib and libclamav.7.dylib internal files information for my curiousity.. Surprisingly i got below info when i ran grep with some pattern *admin-macbookPro-2:clamav-devel-0.99.2 tringappsinc$ grep -ir "This file was created by ClamAV for internal use and should not be run"* *Binary file ./libclamav/.libs/libclamav.7.dylib matches* *Binary file ./libclamav/.libs/libclamav.dylib matches* *Binary file ./libclamav/.libs/libclamav_la-rebuildpe.o matches* *Binary file ./libclamav/.libs/libclamav_la-upx.o matches* i still don't understand why those above binary files contains that pattern(that i mentioned above) even single source file of ClamAV Codebase. from where this pattern appending to .dylib files. i am so curious to understand things behind it. is there any logic ClamV Internally using? Could please any one of you to help me on this Thanks, Crazy Thinker Inc Thanks, Crazy Thinker ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Create Custom Virus Database with Server Signing
Hi ClamAV Developers,ClaAV Users I have some plans to create Custom Virus Database on my own with Windows Malware and will keep Digital Signature on top of it. As i go with Experimental Startegy, I plan to integrate with my Custom Signed Database with ClamAV Engine to check Scanning Funcionality. i heard that ClamAV Supports two types of databases. #1.Official Database #2.UnOfficial Database. i guess Custom Signed Database won't work along with ClamAV Since it's digitally signed by me not by ClamAV is there anything to change in Codebase to achieve my requirements ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
Re: [Clamav-devel] [clamav-users] Identify Threat Risk Level with ClamAV
@joel No. all malware would not be large risk.. for an example, EICAR test file is sample virus file.it can't make big damage to system. I think malware can be classified into folllowing formats like low level threat, high level threat and high level threat based on malware's impact Thanks Crazy Thinker Inc On 14 April 2017 at 20:58, Joel Esler (jesler) <jes...@cisco.com> wrote: > Wouldn’t all malware be a large risk? > > -- > Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> > > > > > > > On Apr 14, 2017, at 12:47 AM, crazy thinker <crazythinke...@gmail.com< > mailto:crazythinke...@gmail.com>> wrote: > > Hi ClamAV Developers,Users > > I know that ClamAV is a very powerful anti-virus scanner.i am looking for > the feature of threat risk level(high,low,medium) with ClamAV > > ClamAV Development Team, > > you guys have ideas on implementing this feature in upcoming relesases of > ClamAV > > i would like to contribute to implement this feature.. could anyone of you > give a brief idea on how to implement it with ClamAV Virus Scanner > > for an example > > if Y threat is found on X Machine, > > i have to represent the scan result of file with Virus Attributes > > *Virus Name VirusFamily RiskLevel* > > > > Thanks, > Crazy Thinker > ___ > clamav-users mailing list > clamav-us...@lists.clamav.net<mailto:clamav-us...@lists.clamav.net> > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > > > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml > > ___ > clamav-users mailing list > clamav-us...@lists.clamav.net > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > > > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] ClamAV for Enterprise Solutions
Hi ClamAV Developers,Users I am a security researcher and got interest in AV World. i know that ClamAV is powerful anti-virus scanner I have below questions in my mind 1.I would like to know How Desktop AV diifer with Enterprise AV? 2.Does ClamAV able to provide Enterprise level solutions? 3.what are essential features in Enterprise AV i am very curious and ding depper in security solutions and could anyone of you please help me in this Thanks, Crazy Thinker ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Identify Threat Risk Level with ClamAV
Hi ClamAV Developers,Users I know that ClamAV is a very powerful anti-virus scanner.i am looking for the feature of threat risk level(high,low,medium) with ClamAV ClamAV Development Team, you guys have ideas on implementing this feature in upcoming relesases of ClamAV i would like to contribute to implement this feature.. could anyone of you give a brief idea on how to implement it with ClamAV Virus Scanner for an example if Y threat is found on X Machine, i have to represent the scan result of file with Virus Attributes *Virus Name VirusFamily RiskLevel* Thanks, Crazy Thinker ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
Re: [Clamav-devel] [clamav-users] Question about .cvd files
if Y System have AV, Virus Could have been caught :P @Gary Anyhow All anti-virus vendors following same statergry just like keeping all kinds of malware(Linux,unix,unix like os) in single virus database filr.. any idea on this? On 13 April 2017 at 11:43, Gary R. Schmidt <grschm...@acm.org> wrote: > On 13/04/2017 15:56, crazy thinker wrote: > >> Hi All, >> >> I would like to install ClamAV for Windows Desktop Operating System. I >> know >> that ClamAV Official Database (.cvd files) contains all kinds of malware >> in >> terms of platform specific (Linux,UNIX,Unix Like) in single >> file(s)(daily.cvd ,main.cvd) and i heard that unix malware can't effect >> windows machine or vice versa. so i would like to separate the windows >> malware signatures from ClamAV Official database and add them in custom >> virus database to optimize the virus database size and to improve windows >> malware detetcion faster. >> >> if my thouhgts and understanding is wrong, please correct me >> >> Any help and suggestions would be appreciated on this >> >> You are wrong to want to do this. > > Consider the following scenario: > = > A file, which is infected with a Y-system-specific virus, arrives on your > machine, and passes all the checks because you have removed its > fingerprints from the scanner. > > You then copy that file onto a USB stick and give it to a friend who runs > a Y-system, and they put it in their machine... > > Shortly after this, their bank-account is drained, their identity is > stolen, and it is your fault. > = > > We scan files for any and all sorts of virii, because we don't know where > the files may end up. > > Cheers. > GaryB-) > ___ > http://lurker.clamav.net/list/clamav-devel.html > Please submit your patches to our Bugzilla: http://bugs.clamav.net > > http://www.clamav.net/contact.html#ml > ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
Re: [Clamav-devel] [clamav-users] Question about .cvd files
Hi All, I would like to install ClamAV for Windows Desktop Operating System. I know that ClamAV Official Database (.cvd files) contains all kinds of malware in terms of platform specific (Linux,UNIX,Unix Like) in single file(s)(daily.cvd ,main.cvd) and i heard that unix malware can't effect windows machine or vice versa. so i would like to separate the windows malware signatures from ClamAV Official database and add them in custom virus database to optimize the virus database size and to improve windows malware detetcion faster. if my thouhgts and understanding is wrong, please correct me Any help and suggestions would be appreciated on this On 13 April 2017 at 05:52, Dennis Peterson <denni...@inetnw.com> wrote: > The ClamAV product is designed to be used for real time detection with > mail transport agents and to respond on detection. These mail transport > agents are capable of delivering malware that will run on any architecture. > In a perfect world everyone that runs an MTA would test outbound mail for > malware and block before sending. But that doesn't happen and so we use > ClamAV for inbound mail for self-protection. Since email service providers > cannot predict what architecture their users are using they use tools that > try to protect every architecture and the signatures provide that support. > > dp > > > On 4/12/17 9:13 AM, crazy thinker wrote: > >> Hi ClamAV Developer, users >> >> I have below Questions on ClamAV Virus Database >> >> 1.what information bytecode.cvd contatins? and how it is useful in >> malware >> detection? >> >> 2.Why not ClamAV release virus databse in terms of platform specific like >> Windows,Linux,Mac OS X,Androind,BSD etc? is there any logic behind this? >> >> 3.How to separate malware signatures based on target operating system >> to optimize database size? >> >> Could Anyone of you please help me in this. >> ___ >> clamav-users mailing list >> clamav-us...@lists.clamav.net >> http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users >> >> >> Help us build a comprehensive ClamAV guide: >> https://github.com/vrtadmin/clamav-faq >> >> http://www.clamav.net/contact.html#ml >> > > > ___ > clamav-users mailing list > clamav-us...@lists.clamav.net > http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users > > > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml > ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about .cvd files
Hi ClamAV Developer, users I have below Questions on ClamAV Virus Database 1.what information bytecode.cvd contatins? and how it is useful in malware detection? 2.Why not ClamAV release virus databse in terms of platform specific like Windows,Linux,Mac OS X,Androind,BSD etc? is there any logic behind this? 3.How to separate malware signatures based on target operating system to optimize database size? Could Anyone of you please help me in this. ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about detection of malware types
Hi ClamAV User, Developer I like ClamAV tool and have below question does ClamAV able to detect below malware types? *1.adware* *2.spyware* *3.virus* *4.torjan* *5.worm* *6.rootkit* *7.backdoors* *8.keyloggers* *9.rouge security software* *10.ransomware* *11.browser hijacker* ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Compile ClamAV for Linux MIPS
Hi all, I am planning to build clamav from sourc for MIPS boarad. could anyone of you help me to build it for mips processor ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] error: 'os_generic' undeclared
Hi all, i tried to build clamav source code with ndk tools for android platform and x86 cpu architecture please find below my build script info *#!/bin/bash* *export NDK=/home/crazythinker-admin/Android/Sdk/ndk-bundle* *$NDK/build/tools/make-standalone-toolchain.sh --platform=android-9 --toolchain=x86-4.9 --install-dir=`pwd`/i686-linux-android --force* *export TOOLCHAIN_PATH=`pwd`/i686-linux-android/bin* *export TOOL=i686-linux-android* *export NDK_TOOLCHAIN_BASENAME=${TOOLCHAIN_PATH}/${TOOL}* *export CC=$NDK_TOOLCHAIN_BASENAME-gcc* *export CXX=$NDK_TOOLCHAIN_BASENAME-g++* *export LINK=${CXX}* *export LD=$NDK_TOOLCHAIN_BASENAME-ld* *export AR=$NDK_TOOLCHAIN_BASENAME-ar* *export RANLIB=$NDK_TOOLCHAIN_BASENAME-ranlib* *export STRIP=$NDK_TOOLCHAIN_BASENAME-strip* *export ARCH_FLAGS="-march=i686 -msse3 -mstackrealign -mfpmath=sse"* *export ARCH_LINK=* *export CPPFLAGS=" ${ARCH_FLAGS} -fpic -ffunction-sections -funwind-tables -fstack-protector -fno-strict-aliasing -finline-limit=64 "* *export CXXFLAGS=" ${ARCH_FLAGS} -fpic -ffunction-sections -funwind-tables -fstack-protector -fno-strict-aliasing -finline-limit=64 -frtti -fexceptions "* *export CFLAGS=" ${ARCH_FLAGS} -fpic -ffunction-sections -funwind-tables -fstack-protector -fno-strict-aliasing -finline-limit=64 "* *export LDFLAGS=" ${ARCH_LINK} "* *#export CC="$NDK/toolchains/-4.9/prebuilt/linux-i686-linux-android_64/bin/i686-linux-android-clang --sysroot=$SYSROOT"* *#export AR="$NDK/toolchains/-4.9/prebuilt/linux-i686-linux-android_64/bin/i686-linux-android-clang-ar --sysroot=$SYSROOT"* *./configure --host=x86 --disable-shared --disable-pthreads --with-openssl=/home/crazythinker-admin/Downloads/ClamAVNDK/OpenSSL/openssl-1.0.2 --with-pcre=/home/crazythinker-admin/Downloads/ClamAVNDK/pcre2-10.22/PCREx86 --with-zlib=/home/crazythinker-admin/Downloads/ClamAVNDK/zlib-1.2.8/ZLIBx86 --with-libncurses-prefix=/home/crazythinker-admin/Downloads/ClamAVNDK/ncurses-gittup/NCURSESx86 --prefix=$(pwd)/ClamAVx86 --disable-llvm --disable-quikdtop --disable-clamav --disable-yara --disable-bzip2 --disable-unrar --disable-fanotify --with-libcurl=/home/crazythinker-admin/Downloads/ClamAVNDK/curl-7.51.0/CURLx86* *make clean* *make* *make install* my intention is i need to get clamav engine library for android plaatform so i tried build it using cross compilation mechanisim but i got below error. *GEN version.h* * CC libclamav_la-version.lo* * CC libclamav_la-mpool.lo* * CC libclamav_la-filtering.lo* * CC libclamav_la-fmap.lo* * CC libclamav_la-perflogging.lo* * CC libclamav_la-bytecode.lo* * CC libclamav_la-bytecode_vm.lo* * CC libclamav_la-cpio.lo* * CC libclamav_la-macho.lo* * CC libclamav_la-ishield.lo* * CC libclamav_la-bytecode_api.lo* * CC libclamav_la-bytecode_api_decl.lo* * CC libclamav_la-cache.lo* * CC libclamav_la-bytecode_detect.lo* *bytecode_detect.c: In function 'cli_detect_environment':* *bytecode_detect.c:243:24: error: 'os_generic' undeclared (first use in this function)* * env->os_category = os_generic;* *^* *bytecode_detect.c:243:24: note: each undeclared identifier is reported only once for each function it appears in* *make[4]: *** [libclamav_la-bytecode_detect.lo] Error 1* *could you please help me to find root casue and resolve this error* any help/suggestions would be appreciated Thanks, Crazy Thinker ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Porting LibClamAV for Android
Hi all, I am new to android and ndk build .i am planning to use libclamav in my ndk project could anyone of you please help me to build libclamav for android Thanks Crazy Thiner Inc. ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Building ClamAV for Android PC
Hi All, i have installed remix os on personal laptop for expermential work. and want to compile ClamAV source code for android OS (remix). Could any one of you help me to work out on this THnaks, Crazy Thinker. ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about Repairing infected files
Hi All, It is known that ClamAV uses Pattern Matching to Catch infected files. In this case,Can We use Pattern Removal Statergy to repair infected files. could anyone of you help me to get steps that follow for repairing infected files ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Qusestion abotu Cloud base Scanning
Hi all, Does ClamAV have cloud base scanning capability? i have come across requirement where i have to send local files from my local computer to Cloud server that do actual sanning process and sends results to client side Thanks, Crazy Thinker's ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about ClamAV Engine
Hi all, I am doing research on anti-virus engines. for my research , i downloaded clamav source code and built from source. when i debugged source code,i came to know that ClamAV internally 14 Engine instances for pefrom Scanning files against virus db files Could any one of you know, why creating 14 engine instances logically I am palning to port ClamAV Source code to Andorid Platform. could anyone of you intertested in this. please join your hands with me :) ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Question about Virus DB
Hi all, I have a doubt regarding virus db files. why ClamAV team providing common database for paltforms like windows linux and mac os x. why not they provide virus database files based on platform specific. is there any specific reason behind this? i am very curious about know it. Thanks, Crazy ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Build ClamAV from Source for Android
Hi all, I am Planning to build ClamAV from Source for Android Phone. can anyone of you please let me know the steps to build it? how exactly mobile antivrus differ with desktop anti-virus? ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
Re: [Clamav-devel] [clamav-users] How to get each file status when scan a ditrtectory using clamdscan
@All In MultiScan Mode,i would like to get each file staus call back from clamd server but currently clamdscan gets callback from clamd when a file is either infected or error one. clamdscan runs faster than clamscan..so i would like to improve performance in full system scan i am reading source code and started to do code changes to achieve this. but i am missing some logic and getting dififculty to get call back for each file from clamd server @ClamAV Dev Team Could someone from Development Team help me to implement this feature On 6 October 2016 at 03:32, Paul Kosinski <clamav-us...@iment.com> wrote: > Some years ago, before ClamAv had an option to follow symlinks when > recursing, I modified the source code to add an option to do that. It > was not too much work to do it once, but it got tedious to roll the > modifications forward and recompile with every new version, as I like > to keep up, even ahead of the distro (which forced a recompile in any > case). > > This was not a big deal, but having private mods is basically forking. > I was very happy when ClamAV added the option and spared me future work. > > P.S. In the past, with some experimental software at IBM Research, quite > extensive code changes were needed, and it was almost impossible to > keep up. So, being able to modify the source code is *necessary*, but > not *sufficient* to make things behave the way you want, depending on > the effort needed, the resources available, and the number of target > users (only me, in that example). > > > > On Wed, 5 Oct 2016 01:07:49 -0700 > Dennis Peterson <denni...@inetnw.com> wrote: > > > You have access to the source code. Make it do what you want that it > > does not already do. > > > > dp > > > > On 10/3/16 10:05 AM, crazy thinker wrote: > > > Hi, > > > > > > when i scanned a dirtectory using clamdscan, i could get only > > > error and virus file infected files status in output.but i would > > > like to see each file status(including "OK" status also ) when i > > > perform scan over sinle dirtectory / multiple dirtectories > > > > > > how does it can be achived? could anyone please help me in this... > > > > > > > > > Thanks, > > > crazy thinker > > > > ___ > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml > ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] Build ClamAV for Mobile Platforms(Windows & Android)
Hi all, I am interseted to build ClamAV for Mobile Platforms like Windows & Android.Could anyone please help me to port it for Mobile Platforms ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
[Clamav-devel] MaxQueue & MaxConnectionQueueLength
Hi All, I am newbie to ClamAV. what is the exact difference between MaxQueue and MaxConnectionQueueLength how many clamdscan instances can able to connect to clamd on local machine? is theere any limit on this. Any help/Suggestions would be appreciated Thanks, Crazy Thinker ___ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml