Re: [clamav-users] ClamAV(R) blog: CRDF Joins the ClamAV Signature Partner Program!

[Arnaud Jacques / SecuriteInfo.com]

Hello Alain,

> If you could
> be so kind to point them out, we'll let you know what their status is.

I have sent a few email @community-sigs to point them out.

-- 
Best regards,

Arnaud Jacques
SecuriteInfo.com

Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] ClamAV® blog: CRDF Joins the ClamAV Signature Partner Program!

[Arnaud Jacques / SecuriteInfo.com]

> * Joel Esler (jesler) :
> > http://blog.clamav.net/2016/07/crdf-joins-clamav-signature-partner.html
> 
> Are these signatures already active?

Yes, since a few days

-- 
Best regards,

Arnaud Jacques
SecuriteInfo.com

Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] ClamAV(R) blog: CRDF Joins the ClamAV Signature Partner Program!

[Alain Zidouemba]

We usually acknowledge every community signature submission, and even work
with submitters to tweak the signature if needed.

I see that you submitted a few signatures in the past few hours, which we
will acknowledge and review in a few hours. If there are signatures that
you've submitted in the past that we did not acknowledge, they somehow have
fallen through the cracks and I sincerely apologize for that. If you could
be so kind to point them out, we'll let you know what their status is.

Thanks,

- Alain

On Thursday, July 14, 2016, Arnaud Jacques / SecuriteInfo.com <
webmas...@securiteinfo.com> wrote:

> Hello Joel,
>
> > You're right.   Nothing I said was negative.  We know exactly what
> happens
> > when our testing is done. We don't know in other cases.  I didn't say
> > anything about the quality of 3rd party signatures.   In fact, the
> quality
> > is so good, that's exactly why we are rolling out the program to protect
> > more people.
>
> I have couple of signatures, handmade, I submited to community-sigs. And I
> have *no news* from them.
> Did they pass false positive tests ? Are they wrong ? Will they be
> published one day ? Do Clamav want
> better detection ratio ? If yes, the minimum is to provide news for
> sigmakers that sumbit their signatures
> (time and efforts) to community-sigs to be included in official Clamav
> databases.
>
>
> > Protecting customers is a good thing.  We're always going to try and do
> > that.
>
> We (third parties) do that too ;)
>
> --
> Best regards,
>
> Arnaud Jacques
> SecuriteInfo.com
>
> Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
> Twitter : @SecuriteInfoCom
> ___
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] ClamAV® blog: CRDF Joins the ClamAV Signature Partner Program!

[Ralf Hildebrandt]

* Joel Esler (jesler) :
> 
> 
> http://blog.clamav.net/2016/07/crdf-joins-clamav-signature-partner.html

Are these signatures already active?

-- 
Ralf Hildebrandt   Charite Universitätsmedizin Berlin
ralf.hildebra...@charite.deCampus Benjamin Franklin
http://www.charite.de  Hindenburgdamm 30, 12203 Berlin
Geschäftsbereich IT, Abt. Netzwerk fon: +49-30-450.570.155
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] ClamAV® blog: CRDF Joins the ClamAV Signature Partner Program!

[Joel Esler (jesler)]

Arnaud,

Nothing I said was negative against 3rd party signature makers.  I hope you are 
not upset by my comments.  As I said, there is a ton of good content out there, 
and we want to get it out to more users.

As far as feedback, I'll talk to our team.

--
Joel Esler
iPhone

On Jul 14, 2016, at 8:09 AM, Arnaud Jacques / 
SecuriteInfo.com 
mailto:webmas...@securiteinfo.com>> wrote:

Hello Joel,

You're right.   Nothing I said was negative.  We know exactly what happens
when our testing is done. We don't know in other cases.  I didn't say
anything about the quality of 3rd party signatures.   In fact, the quality
is so good, that's exactly why we are rolling out the program to protect
more people.

I have couple of signatures, handmade, I submited to community-sigs. And I have 
*no news* from them.
Did they pass false positive tests ? Are they wrong ? Will they be published 
one day ? Do Clamav want
better detection ratio ? If yes, the minimum is to provide news for sigmakers 
that sumbit their signatures
(time and efforts) to community-sigs to be included in official Clamav 
databases.


Protecting customers is a good thing.  We're always going to try and do
that.

We (third parties) do that too ;)

--
Best regards,

Arnaud Jacques
SecuriteInfo.com

Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] ClamAV® blog: CRDF Joins the ClamAV Signature Partner Program!

[Arnaud Jacques / SecuriteInfo.com]

Hello Joel,

> You're right.   Nothing I said was negative.  We know exactly what happens
> when our testing is done. We don't know in other cases.  I didn't say
> anything about the quality of 3rd party signatures.   In fact, the quality
> is so good, that's exactly why we are rolling out the program to protect
> more people.

I have couple of signatures, handmade, I submited to community-sigs. And I have 
*no news* from them. 
Did they pass false positive tests ? Are they wrong ? Will they be published 
one day ? Do Clamav want 
better detection ratio ? If yes, the minimum is to provide news for sigmakers 
that sumbit their signatures 
(time and efforts) to community-sigs to be included in official Clamav 
databases.


> Protecting customers is a good thing.  We're always going to try and do
> that.

We (third parties) do that too ;)

-- 
Best regards,

Arnaud Jacques
SecuriteInfo.com

Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] ClamAV® blog: CRDF Joins the ClamAV Signature Partner Program!

[Joel Esler (jesler)]

You're right.   Nothing I said was negative.  We know exactly what happens when 
our testing is done. We don't know in other cases.  I didn't say anything about 
the quality of 3rd party signatures.   In fact, the quality is so good, that's 
exactly why we are rolling out the program to protect more people.

Protecting customers is a good thing.  We're always going to try and do that.

--
Joel Esler
iPhone

On Jul 14, 2016, at 3:21 AM, Arnaud Jacques / 
SecuriteInfo.com 
mailto:webmas...@securiteinfo.com>> wrote:

Hello,

We are putting out more detection for the user.
We are making it easier for the vast majority of our users to use ClamAV and
provide more detection with the built in system.

And that's a good way for everyone. I approve. We are all here to fight 
malwares, right ?

There are lots of places
out there that make detection other than us, but not distributed in an
large fashion, regression tested, etc.

How do you know ? Do you think SaneSecurity or 
Securiteinfo.com does not verify their signatures 
before
publishing ? Do you know our technical infrastructure ?
SaneSecurity and SecuriteInfo.com are NOT poor-low 
quality-sub signatures. We provide FAST RESPONSE to
0-day malware threads and our detection ratio is actually FAR BETTER than 
Clamav+CRDF.
We will publish some public stats in a few weeks to proove the above.

That's true we have less users. But we could be surprise how many computers we 
protect in the word. And
as you say, we have 95% room for improvement, marketing stats of course.

SaneSecurity and SecuriteInfo.com signatures are 
compatible with freshclam.conf, this facilitates
integration with official Clamav. And the final user have the choice to include 
them or not.

Not everyone uses ClamAV on the command line to scan mail.  Not everyone
uses it on *nix.  Our user base is gigantic, and spreads over nearly every
platform we've ever seen.

Our signatures are good for other platforms too.

--
Best regards,

Arnaud Jacques
SecuriteInfo.com

Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Re: [clamav-users] ClamAV® blog: CRDF Joins the ClamAV Signature Partner Program!

[Arnaud Jacques / SecuriteInfo.com]

Hello,

> We are putting out more detection for the user.
> We are making it easier for the vast majority of our users to use ClamAV and
> provide more detection with the built in system.

And that's a good way for everyone. I approve. We are all here to fight 
malwares, right ?

> There are lots of places
> out there that make detection other than us, but not distributed in an
> large fashion, regression tested, etc.

How do you know ? Do you think SaneSecurity or Securiteinfo.com does not verify 
their signatures before 
publishing ? Do you know our technical infrastructure ? 
SaneSecurity and SecuriteInfo.com are NOT poor-low quality-sub signatures. We 
provide FAST RESPONSE to 
0-day malware threads and our detection ratio is actually FAR BETTER than 
Clamav+CRDF.
We will publish some public stats in a few weeks to proove the above.

That's true we have less users. But we could be surprise how many computers we 
protect in the word. And 
as you say, we have 95% room for improvement, marketing stats of course.

SaneSecurity and SecuriteInfo.com signatures are compatible with 
freshclam.conf, this facilitates 
integration with official Clamav. And the final user have the choice to include 
them or not.

> Not everyone uses ClamAV on the command line to scan mail.  Not everyone
> uses it on *nix.  Our user base is gigantic, and spreads over nearly every
> platform we've ever seen.

Our signatures are good for other platforms too.

-- 
Best regards,

Arnaud Jacques
SecuriteInfo.com

Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml