Re: [clamav-users] Compiler error: 7z/Types.h:58: redefinition of `Byte'
Shawn Webb wrote: On Tue, Sep 24, 2013 at 2:21 PM, Rob Sterenborg (lists) li...@sterenborg.info wrote: On 09/24/2013 03:51 PM, Shawn Webb wrote: On Mon, Sep 23, 2013 at 5:04 PM, Dennis Peterson denni...@inetnw.com wrote: On 9/23/13 1:59:42PM, Shawn Webb wrote: Maybe this time I'll actually attach the patch. ;) I believe the list server discourages attachments. dp Did the patch not go through? No it didn't. The patch has been uploaded to this BugZilla report: https://bugzilla.clamav.net/show_bug.cgi?id=8959 ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml I applied the patch but still get the same compile error. CC libclamav_la-upx.lo In file included from 7z/LzmaDec.h:7, from lzma_iface.h:26, from upx.c:59: 7z/Types.h:58: redefinition of `Byte' /usr/local/zlib/include/zconf.h:368: `Byte' previously declared here make[4]: *** [libclamav_la-upx.lo] Error 1 ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
[clamav-users] Clarification required on DisableCertCheck configuration option.
Dear List, I am seeing a new option: DisableCertCheck in clamd.conf in 0.98. And in configuration file, it is mentioned that, by default, the signature chain is checked with database. Is this database part of main.cvd or something else, which gets downloaded with freshclam? -- Regards Anant -- Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. -- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
[clamav-users] Compilation failed for ClamAV 0.98 on AIX 6.1
Dear List, Compilation of ClamAV 0.98 fails on AIX 6.1 with gcc 4.2.0. make all-recursive Making all in libltdl cp ./argz_.h argz.h-t mv argz.h-t argz.h make all-am CC dlopen.lo CCLD dlopen.la CC libltdlc_la-preopen.lo CC libltdlc_la-lt__alloc.lo CC libltdlc_la-lt_dlloader.lo CC libltdlc_la-lt_error.lo CC libltdlc_la-ltdl.lo CC libltdlc_la-slist.lo CC argz.lo CC lt__strl.lo CCLD libltdlc.la Target all-am is up to date. Making all in libclamav make all-recursive CC libclamav_la-matcher-ac.lo CC libclamav_la-matcher-bm.lo CC libclamav_la-matcher-hash.lo CC libclamav_la-matcher.lo CC libclamav_la-others.lo In file included from others.c:60: clamav.h:32:1: warning: STAT redefined In file included from /usr/include/dirent.h:35, from others.c:36: /usr/include/sys/dir.h:270:1: warning: this is the location of the previous definition CC libclamav_la-readdb.lo In file included from readdb.c:42: clamav.h:32:1: warning: STAT redefined In file included from /usr/include/dirent.h:35, from readdb.c:32: /usr/include/sys/dir.h:270:1: warning: this is the location of the previous definition CC libclamav_la-cvd.lo CC libclamav_la-dsig.lo CC libclamav_la-scanners.lo In file included from scanners.c:51: clamav.h:32:1: warning: STAT redefined In file included from /usr/include/dirent.h:35, from scanners.c:41: /usr/include/sys/dir.h:270:1: warning: this is the location of the previous definition CC libclamav_la-textdet.lo CC libclamav_la-filetypes.lo CC libclamav_la-rtf.lo CC libclamav_la-blob.lo CC libclamav_la-mbox.lo mbox.c: In function 'rfc1341': mbox.c:2816: error: called object '1' is not a function make: 1254-004 The error code from the last command is 1. Stop. make: 1254-004 The error code from the last command is 1. Stop. make: 1254-004 The error code from the last command is 2. Stop. make: 1254-004 The error code from the last command is 1. Stop. make: 1254-004 The error code from the last command is 2. Stop. Any hints to resolve this issue. The same gcc was used to compile 0.97.8 and it had worked. -- Regards Anant -- Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. -- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Compilation failed for ClamAV 0.98 on AIX 6.1
Added information to bug https://bugzilla.clamav.net/show_bug.cgi?id=8993in case the failures are related. We'll provide info here when we resolve the issues. On Wed, Sep 25, 2013 at 8:34 AM, ANANT S ATHAVALE a...@isac.gov.in wrote: Dear List, Compilation of ClamAV 0.98 fails on AIX 6.1 with gcc 4.2.0. make all-recursive Making all in libltdl cp ./argz_.h argz.h-t mv argz.h-t argz.h make all-am CC dlopen.lo CCLD dlopen.la CC libltdlc_la-preopen.lo CC libltdlc_la-lt__alloc.lo CC libltdlc_la-lt_dlloader.lo CC libltdlc_la-lt_error.lo CC libltdlc_la-ltdl.lo CC libltdlc_la-slist.lo CC argz.lo CC lt__strl.lo CCLD libltdlc.la Target all-am is up to date. Making all in libclamav make all-recursive CC libclamav_la-matcher-ac.lo CC libclamav_la-matcher-bm.lo CC libclamav_la-matcher-hash.lo CC libclamav_la-matcher.lo CC libclamav_la-others.lo In file included from others.c:60: clamav.h:32:1: warning: STAT redefined In file included from /usr/include/dirent.h:35, from others.c:36: /usr/include/sys/dir.h:270:1: warning: this is the location of the previous definition CC libclamav_la-readdb.lo In file included from readdb.c:42: clamav.h:32:1: warning: STAT redefined In file included from /usr/include/dirent.h:35, from readdb.c:32: /usr/include/sys/dir.h:270:1: warning: this is the location of the previous definition CC libclamav_la-cvd.lo CC libclamav_la-dsig.lo CC libclamav_la-scanners.lo In file included from scanners.c:51: clamav.h:32:1: warning: STAT redefined In file included from /usr/include/dirent.h:35, from scanners.c:41: /usr/include/sys/dir.h:270:1: warning: this is the location of the previous definition CC libclamav_la-textdet.lo CC libclamav_la-filetypes.lo CC libclamav_la-rtf.lo CC libclamav_la-blob.lo CC libclamav_la-mbox.lo mbox.c: In function 'rfc1341': mbox.c:2816: error: called object '1' is not a function make: 1254-004 The error code from the last command is 1. Stop. make: 1254-004 The error code from the last command is 1. Stop. make: 1254-004 The error code from the last command is 2. Stop. make: 1254-004 The error code from the last command is 1. Stop. make: 1254-004 The error code from the last command is 2. Stop. Any hints to resolve this issue. The same gcc was used to compile 0.97.8 and it had worked. -- Regards Anant --**--** -- Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. --**--** -- __**_ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/**clamav-faqhttps://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/**ml http://www.clamav.net/support/ml ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
[clamav-users] scanning RPMs with clamav
I have been trying to scan RPM files with clamav without success. clamscan file.rpm shows nothing. If I unpack the cpio from the RPM and scan the extracted cpio, I get a hit on a virus (as expected). Is clamav capable to unpacking RPM files to scan them? ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] scanning RPMs with clamav
On Wed, Sep 25, 2013 at 10:57 AM, ScrumpyJack scrumpyj...@me.com wrote: I have been trying to scan RPM files with clamav without success. clamscan file.rpm shows nothing. If I unpack the cpio from the RPM and scan the extracted cpio, I get a hit on a virus (as expected). Is clamav capable to unpacking RPM files to scan them? ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml ClamAV does not currently have that functionality, though as you found in your testing it does have support for cpio if you unpack the contents. We are working on a bunch of things for upcoming releases, but as always I cannot make any promises about future release contents or timetables. Dave R. -- --- Dave Raynor Sourcefire Vulnerability Research Team dray...@sourcefire.com ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Compiler error: 7z/Types.h:58: redefinition of `Byte'
On Wed, Sep 25, 2013 at 4:51 AM, Francis Stevens francis.stev...@bristow.co.uk wrote: Shawn Webb wrote: On Tue, Sep 24, 2013 at 2:21 PM, Rob Sterenborg (lists) li...@sterenborg.info wrote: On 09/24/2013 03:51 PM, Shawn Webb wrote: On Mon, Sep 23, 2013 at 5:04 PM, Dennis Peterson denni...@inetnw.com wrote: On 9/23/13 1:59:42PM, Shawn Webb wrote: Maybe this time I'll actually attach the patch. ;) I believe the list server discourages attachments. dp Did the patch not go through? No it didn't. The patch has been uploaded to this BugZilla report: https://bugzilla.clamav.net/**show_bug.cgi?id=8959https://bugzilla.clamav.net/show_bug.cgi?id=8959 __**_ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/**clamav-faqhttps://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/**ml http://www.clamav.net/support/ml I applied the patch but still get the same compile error. CC libclamav_la-upx.lo In file included from 7z/LzmaDec.h:7, from lzma_iface.h:26, from upx.c:59: 7z/Types.h:58: redefinition of `Byte' /usr/local/zlib/include/zconf.**h:368: `Byte' previously declared here make[4]: *** [libclamav_la-upx.lo] Error 1 Hey Francis, Can you add the --disable-silent-rules option to your configure script and re-run make? It'd be helpful to see what's being passed to the compiler. Here's a small patch that might help. Can you give this a try and let me know how it goes? http://ix.io/8fk Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Clarification required on DisableCertCheck configuration option.
On Wed, Sep 25, 2013 at 7:10 AM, ANANT S ATHAVALE a...@isac.gov.in wrote: Dear List, I am seeing a new option: DisableCertCheck in clamd.conf in 0.98. And in configuration file, it is mentioned that, by default, the signature chain is checked with database. Is this database part of main.cvd or something else, which gets downloaded with freshclam? -- Regards Anant Hey Anant, Though the feature exists in ClamAV 0.98, we are currently not shipping an authenticode certificate database. We plan to in the future. Enabling the DisableCertCheck flag will prevent all certificates from being loaded by any published CVD, turning the Authenticode checks off. We are in the process of deciding in which CVD the authenticode certificates will go. Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] scanning RPMs with clamav
On 9/25/13 9:36 AM, David Raynor wrote: ClamAV does not currently have that functionality, though as you found in your testing it does have support for cpio if you unpack the contents. We are working on a bunch of things for upcoming releases, but as always I cannot make any promises about future release contents or timetables. Dave R. You can easily script rpm2cpio to deal with scanning RPM files. dp ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Clarification required on DisableCertCheck configuration option.
- Message from Shawn Webb sw...@sourcefire.com - Date: Wed, 25 Sep 2013 13:48:17 -0400 From: Shawn Webb sw...@sourcefire.com Reply-To: ClamAV users ML clamav-users@lists.clamav.net Subject: Re: [clamav-users] Clarification required on DisableCertCheck configuration option. To: ClamAV users ML clamav-users@lists.clamav.net On Wed, Sep 25, 2013 at 7:10 AM, ANANT S ATHAVALE a...@isac.gov.in wrote: Dear List, I am seeing a new option: DisableCertCheck in clamd.conf in 0.98. And in configuration file, it is mentioned that, by default, the signature chain is checked with database. Is this database part of main.cvd or something else, which gets downloaded with freshclam? -- Regards Anant Hey Anant, Though the feature exists in ClamAV 0.98, we are currently not shipping an authenticode certificate database. We plan to in the future. Enabling the DisableCertCheck flag will prevent all certificates from being loaded by any published CVD, turning the Authenticode checks off. We are in the process of deciding in which CVD the authenticode certificates will go. Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faqhttp://www.clamav.net/support/ml - End message from Shawn Webb sw...@sourcefire.com - Thank you. -- Regards Anant -- Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. -- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Compiler error: 7z/Types.h:58: redefinition of `Byte'
On 09/25/2013 07:47 PM, Shawn Webb wrote: Hey Francis, Can you add the --disable-silent-rules option to your configure script and re-run make? It'd be helpful to see what's being passed to the compiler. I didn't do this, but.. Here's a small patch that might help. Can you give this a try and let me know how it goes? http://ix.io/8fk This seems to solve the problem for me; no more compile error. -- Rob ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml