Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread E R 
I didn't really play with any ./configure options, from what I read the way
about this was SUBDIRS =...

So can anyone tell me what would be the minimal I need to install for
clamscan out of all these I have listed so far below?

SUBDIRS = libltdl libclamav clamscan freshclam sigtool clamconf database
docs etc test clambc unit_tests

Slackware has come a long way and 14.1 is quite nice. I've yet to find a
simpler more stable distro, IMHO there is none! :)

On Wed, Jan 21, 2015 at 3:31 PM, Dennis Peterson 
wrote:

> On 1/21/15 5:22 PM, E R wrote:
>
>> @Dennis, Al asked what platform, I said; Slack which = Slackware, hence
>> I'm
>> a Slacker. ;)
>>
>> What you don't think a Slacker knows how to do? ./configure --help > log
>> :)
>>
>> JUST KIDDING Dennis! :)
>>
>> But seriously, there's nothing in there to really strip it down, just a
>> few
>> options is all I see...
>>
>> --enable-milter
>> --enable-clamdtop
>>
>> Ok so these two are --enable flags, SO I don't add them in, but guess
>> what?
>> They're still getting built, sheesh,
>> someone seemed to forget somewhere in the src that if you don't add it,
>> then it's not enabled, hence it shouldn't
>> be getting built but they do...  Hmm
>>
>> Sure would be nice for the DEV to make one simple flag option -->
>> --enable-clam-mini (For a basic only on demand scanner install)
>>
>> thanks guys
>>
>>
>>
> Did you try
>
> --enable-clamdtop=no
> --enable-milter=no
>
> or
>
> --disable-clamdtop
> --disable-milter
>
> (see --disable-FEATURE).
>
> Slackware was the first Linux I looked at but I haven't looked at it in
> 20+ years. Sure was a rough diamond back then.
>
>
> dp
>
> ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread Dennis Peterson 

On 1/21/15 5:22 PM, E R wrote:

@Dennis, Al asked what platform, I said; Slack which = Slackware, hence I'm
a Slacker. ;)

What you don't think a Slacker knows how to do? ./configure --help > log :)

JUST KIDDING Dennis! :)

But seriously, there's nothing in there to really strip it down, just a few
options is all I see...

--enable-milter
--enable-clamdtop

Ok so these two are --enable flags, SO I don't add them in, but guess what?
They're still getting built, sheesh,
someone seemed to forget somewhere in the src that if you don't add it,
then it's not enabled, hence it shouldn't
be getting built but they do...  Hmm

Sure would be nice for the DEV to make one simple flag option -->
--enable-clam-mini (For a basic only on demand scanner install)

thanks guys




Did you try

--enable-clamdtop=no
--enable-milter=no

or

--disable-clamdtop
--disable-milter

(see --disable-FEATURE).

Slackware was the first Linux I looked at but I haven't looked at it in 20+ 
years. Sure was a rough diamond back then.

dp

___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread E R 
@Dennis, Al asked what platform, I said; Slack which = Slackware, hence I'm
a Slacker. ;)

What you don't think a Slacker knows how to do? ./configure --help > log :)

JUST KIDDING Dennis! :)

But seriously, there's nothing in there to really strip it down, just a few
options is all I see...

--enable-milter
--enable-clamdtop

Ok so these two are --enable flags, SO I don't add them in, but guess what?
They're still getting built, sheesh,
someone seemed to forget somewhere in the src that if you don't add it,
then it's not enabled, hence it shouldn't
be getting built but they do...  Hmm

Sure would be nice for the DEV to make one simple flag option -->
--enable-clam-mini (For a basic only on demand scanner install)

thanks guys

On Wed, Jan 21, 2015 at 2:52 PM, Dennis Peterson 
wrote:

> On 1/21/15 2:26 PM, E R wrote:
>
>> Hi to all,
>>
>> I made this post over at Github, my assumptions that this is Clamav's
>> Github?
>>
>> https://github.com/vrtadmin/clamav-devel/issues/14
>>
>> I'm trying to figure out how to compile clamav as only a stand alone
>> scanner when needed...
>>
>> Any help would be apprecaited.
>>
>> thank you
>> Mii
>>
>>  Have you tried ./configure --help to see what build options are built in?
>
> dp
>
> ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread Dennis Peterson 

On 1/21/15 2:26 PM, E R wrote:

Hi to all,

I made this post over at Github, my assumptions that this is Clamav's
Github?

https://github.com/vrtadmin/clamav-devel/issues/14

I'm trying to figure out how to compile clamav as only a stand alone
scanner when needed...

Any help would be apprecaited.

thank you
Mii


Have you tried ./configure --help to see what build options are built in?

dp
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread E R 
Forgot to mention, I just edited the Makefile;

SUBDIRS = libltdl libclamav clamscan freshclam sigtool clamconf database
docs etc test clambc unit_tests

To be honest I'm not sure what is needed just for the clamscan, if there's
anything else I can remove from the SUBDIRS =?

I don't see any 'autoreconf' in 0.98.5, I just changed the SUBDIRS = and
compiled...

On Wed, Jan 21, 2015 at 2:24 PM, E R  wrote:

> Hi,
>
> I'm using Slack, yes I can just compile it as normal and I know clamscan
> is the on demand scanner, I just
> don't want all the other things that get typically compiled and installed
> along with it;
>
> I don't want the top, milter, daemon(s), nothing but clamscan compiled and
> installed...
>
> Thanks guys...
>
> On Wed, Jan 21, 2015 at 1:12 PM, Kevin Lin  wrote:
>
>> 'clamscan' is an on-demand scanner. In regards to the blog post, have you
>> tried running 'autoreconf' after your changes? I'm assuming the 'SUBDIRS'
>> changes were to an autotools file.
>>
>> -Kevin
>>
>> On Wed, Jan 21, 2015 at 5:48 PM, Ed Christiansen MS 
>> wrote:
>>
>> > I just compile it and then use clamscan when I want to.
>> >
>> >
>> > On 1/21/2015 5:47 PM, Joel Esler (jesler) wrote:
>> >
>> >> I’ll let someone from the team chime in here, but it’s always better to
>> >> come to the mailing lists than to go to Github.
>> >>
>> >> We’ll see it either way, but more people are here.
>> >>
>> >> --
>> >> Joel Esler
>> >> Open Source Manager
>> >> Threat Intelligence Team Lead
>> >> Talos
>> >>
>> >>
>> >>  On Jan 21, 2015, at 4:26 PM, E R  wrote:
>> >>>
>> >>> Hi to all,
>> >>>
>> >>> I made this post over at Github, my assumptions that this is Clamav's
>> >>> Github?
>> >>>
>> >>> https://github.com/vrtadmin/clamav-devel/issues/14
>> >>>
>> >>> I'm trying to figure out how to compile clamav as only a stand alone
>> >>> scanner when needed...
>> >>>
>> >>> Any help would be apprecaited.
>> >>>
>> >>> thank you
>> >>> Mii
>> >>> ___
>> >>> Help us build a comprehensive ClamAV guide:
>> >>> https://github.com/vrtadmin/clamav-faq
>> >>>
>> >>> http://www.clamav.net/contact.html#ml
>> >>>
>> >>
>> >>
>> >>
>> >> ___
>> >> Help us build a comprehensive ClamAV guide:
>> >> https://github.com/vrtadmin/clamav-faq
>> >>
>> >> http://www.clamav.net/contact.html#ml
>> >>
>> >>  ___
>> > Help us build a comprehensive ClamAV guide:
>> > https://github.com/vrtadmin/clamav-faq
>> >
>> > http://www.clamav.net/contact.html#ml
>> >
>> ___
>> Help us build a comprehensive ClamAV guide:
>> https://github.com/vrtadmin/clamav-faq
>>
>> http://www.clamav.net/contact.html#ml
>>
>
>
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread E R 
Hi,

I'm using Slack, yes I can just compile it as normal and I know clamscan is
the on demand scanner, I just
don't want all the other things that get typically compiled and installed
along with it;

I don't want the top, milter, daemon(s), nothing but clamscan compiled and
installed...

Thanks guys...

On Wed, Jan 21, 2015 at 1:12 PM, Kevin Lin  wrote:

> 'clamscan' is an on-demand scanner. In regards to the blog post, have you
> tried running 'autoreconf' after your changes? I'm assuming the 'SUBDIRS'
> changes were to an autotools file.
>
> -Kevin
>
> On Wed, Jan 21, 2015 at 5:48 PM, Ed Christiansen MS 
> wrote:
>
> > I just compile it and then use clamscan when I want to.
> >
> >
> > On 1/21/2015 5:47 PM, Joel Esler (jesler) wrote:
> >
> >> I’ll let someone from the team chime in here, but it’s always better to
> >> come to the mailing lists than to go to Github.
> >>
> >> We’ll see it either way, but more people are here.
> >>
> >> --
> >> Joel Esler
> >> Open Source Manager
> >> Threat Intelligence Team Lead
> >> Talos
> >>
> >>
> >>  On Jan 21, 2015, at 4:26 PM, E R  wrote:
> >>>
> >>> Hi to all,
> >>>
> >>> I made this post over at Github, my assumptions that this is Clamav's
> >>> Github?
> >>>
> >>> https://github.com/vrtadmin/clamav-devel/issues/14
> >>>
> >>> I'm trying to figure out how to compile clamav as only a stand alone
> >>> scanner when needed...
> >>>
> >>> Any help would be apprecaited.
> >>>
> >>> thank you
> >>> Mii
> >>> ___
> >>> Help us build a comprehensive ClamAV guide:
> >>> https://github.com/vrtadmin/clamav-faq
> >>>
> >>> http://www.clamav.net/contact.html#ml
> >>>
> >>
> >>
> >>
> >> ___
> >> Help us build a comprehensive ClamAV guide:
> >> https://github.com/vrtadmin/clamav-faq
> >>
> >> http://www.clamav.net/contact.html#ml
> >>
> >>  ___
> > Help us build a comprehensive ClamAV guide:
> > https://github.com/vrtadmin/clamav-faq
> >
> > http://www.clamav.net/contact.html#ml
> >
> ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread Kevin Lin 
'clamscan' is an on-demand scanner. In regards to the blog post, have you
tried running 'autoreconf' after your changes? I'm assuming the 'SUBDIRS'
changes were to an autotools file.

-Kevin

On Wed, Jan 21, 2015 at 5:48 PM, Ed Christiansen MS 
wrote:

> I just compile it and then use clamscan when I want to.
>
>
> On 1/21/2015 5:47 PM, Joel Esler (jesler) wrote:
>
>> I’ll let someone from the team chime in here, but it’s always better to
>> come to the mailing lists than to go to Github.
>>
>> We’ll see it either way, but more people are here.
>>
>> --
>> Joel Esler
>> Open Source Manager
>> Threat Intelligence Team Lead
>> Talos
>>
>>
>>  On Jan 21, 2015, at 4:26 PM, E R  wrote:
>>>
>>> Hi to all,
>>>
>>> I made this post over at Github, my assumptions that this is Clamav's
>>> Github?
>>>
>>> https://github.com/vrtadmin/clamav-devel/issues/14
>>>
>>> I'm trying to figure out how to compile clamav as only a stand alone
>>> scanner when needed...
>>>
>>> Any help would be apprecaited.
>>>
>>> thank you
>>> Mii
>>> ___
>>> Help us build a comprehensive ClamAV guide:
>>> https://github.com/vrtadmin/clamav-faq
>>>
>>> http://www.clamav.net/contact.html#ml
>>>
>>
>>
>>
>> ___
>> Help us build a comprehensive ClamAV guide:
>> https://github.com/vrtadmin/clamav-faq
>>
>> http://www.clamav.net/contact.html#ml
>>
>>  ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread Ed Christiansen MS 

I just compile it and then use clamscan when I want to.

On 1/21/2015 5:47 PM, Joel Esler (jesler) wrote:

I’ll let someone from the team chime in here, but it’s always better to come to 
the mailing lists than to go to Github.

We’ll see it either way, but more people are here.

--
Joel Esler
Open Source Manager
Threat Intelligence Team Lead
Talos



On Jan 21, 2015, at 4:26 PM, E R  wrote:

Hi to all,

I made this post over at Github, my assumptions that this is Clamav's
Github?

https://github.com/vrtadmin/clamav-devel/issues/14

I'm trying to figure out how to compile clamav as only a stand alone
scanner when needed...

Any help would be apprecaited.

thank you
Mii
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml




___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml


___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread Joel Esler (jesler) 
I’ll let someone from the team chime in here, but it’s always better to come to 
the mailing lists than to go to Github.

We’ll see it either way, but more people are here.

--
Joel Esler
Open Source Manager
Threat Intelligence Team Lead
Talos


> On Jan 21, 2015, at 4:26 PM, E R  wrote:
> 
> Hi to all,
> 
> I made this post over at Github, my assumptions that this is Clamav's
> Github?
> 
> https://github.com/vrtadmin/clamav-devel/issues/14
> 
> I'm trying to figure out how to compile clamav as only a stand alone
> scanner when needed...
> 
> Any help would be apprecaited.
> 
> thank you
> Mii
> ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
> 
> http://www.clamav.net/contact.html#ml



smime.p7s
Description: S/MIME cryptographic signature
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] Configure Options For Minimal Install

2015-01-21 Thread Al Varnell 
For what platform?

Perhaps you should be looking at ClamWin  or ClamXav 
 for home use on MS Windows or Apple OS X, respectively.

Sent from Janet's iPad

-Al-
-- 
Al Varnell

On Jan 21, 2015, at 2:26 PM, E R  wrote:

> Hi to all,
> 
> I made this post over at Github, my assumptions that this is Clamav's
> Github?
> 
> https://github.com/vrtadmin/clamav-devel/issues/14
> 
> I'm trying to figure out how to compile clamav as only a stand alone
> scanner when needed...
> 
> Any help would be apprecaited.
> 
> thank you
> Mii
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

[clamav-users] Configure Options For Minimal Install

2015-01-21 Thread E R 
Hi to all,

I made this post over at Github, my assumptions that this is Clamav's
Github?

https://github.com/vrtadmin/clamav-devel/issues/14

I'm trying to figure out how to compile clamav as only a stand alone
scanner when needed...

Any help would be apprecaited.

thank you
Mii
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] FP / PDF.Exploit.CVE_2014_8449

2015-01-21 Thread Shaun Hurley 
Max,

Thank you for bring this to our attention.  The detection window is a bit
too broad. We will get this resolved.
The signature has been dropped from the signature database.

It will be corrected, and then added back to the signature database.

Thanks again,
Shaun Hurley
Cisco Talos Malware Researcher



On Wed, Jan 21, 2015 at 9:05 AM, max  wrote:

> hi,
>
> is anybody else seeing false positives triggered by
> PDF.Exploit.CVE_2014_8449?
>
> eg
>
>
> https://www.virustotal.com/en/file/d30b1be5880f2c380b1bac39f058e10f06c50b9aebae99dcd22a7e255deff060/analysis/
>
> kind regards
> max
> ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

[clamav-users] FP / PDF.Exploit.CVE_2014_8449

2015-01-21 Thread max 
hi,

is anybody else seeing false positives triggered by
PDF.Exploit.CVE_2014_8449?

eg

https://www.virustotal.com/en/file/d30b1be5880f2c380b1bac39f058e10f06c50b9aebae99dcd22a7e255deff060/analysis/

kind regards
max
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml