Re: [clamav-users] Finding infections in a tar-ball
Mischa, Can you send me your file for debugging? Thanks, Steve On Fri, Apr 11, 2014 at 5:20 AM, Mischa Coenen wrote: > > > Tried the scan with the --recursive option but didn't help, I see that the > archive is extracted and scanned when I check the debug output but the > eicars are not detected and I have multiple eicars in the tar ball. > > -- > Mischa Coenen skrev den 2014-04-11 10:31: > > > > > Anybody advice what could be the issue? > > > > if its not in tarball one would use --recursive if > subdirs would be scanned aswell, if you see this is not working in archive > files that clamav can unpack then its imho a bug > > > > so try scan a tarball with --recursive > > > ___ > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > http://www.clamav.net/support/ml > ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] git repository
On Apr 11, 2014, at 3:14 AM, Steve Basford mailto:steveb_cla...@sanesecurity.com>> wrote: Dear all, I the past - before the latest takeover - I used the git repository to keep track of updates and/or other changes. I notice that since the latest takeover the git repository only is used when a new version has been released, thus defeating the practical use of the git repository. Hi Frans, +1 Must admit I miss seeing the changelog being updated quite a bit before the actual release comes into play, plus it gives a bit of a road-map. Let us discuss this internally and I’ll get back to you all on this. -- Joel Esler Open Source Manager Threat Intelligence Team Lead Vulnerability Research Team ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Finding infections in a tar-ball
Tried the scan with the --recursive option but didn't help, I see that the archive is extracted and scanned when I check the debug output but the eicars are not detected and I have multiple eicars in the tar ball. -- Mischa Coenen skrev den 2014-04-11 10:31: > Anybody advice what could be the issue? if its not in tarball one would use --recursive if subdirs would be scanned aswell, if you see this is not working in archive files that clamav can unpack then its imho a bug so try scan a tarball with --recursive ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Finding infections in a tar-ball
Mischa Coenen skrev den 2014-04-11 10:31: Anybody advice what could be the issue? if its not in tarball one would use --recursive if subdirs would be scanned aswell, if you see this is not working in archive files that clamav can unpack then its imho a bug so try scan a tarball with --recursive ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
[clamav-users] Finding infections in a tar-ball
Hi, Clamscan can scan the contents of tar-balls for virusses, when I tar only a eicar-file than clamav detects it. But I did a test in which i have put an eicar file in different directories including the top-directory, clamscan cannot detect any of the eicar files. I'm using ClamAV 0.98.1. Anybody advice what could be the issue? Regards Mischa ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] git repository
> Dear all, > > I the past - before the latest takeover - I used the git repository to > keep track of updates and/or other changes. I notice that since the > latest takeover the git repository only is used when a new version has > been released, thus defeating the practical use of the git repository. Hi Frans, +1 Must admit I miss seeing the changelog being updated quite a bit before the actual release comes into play, plus it gives a bit of a road-map. Cheers, Steve Sanesecurity ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
