[clamav-users] detection of really old viruses?
Most of the virus definitions in the cvd files don't seem to have dates associated with them (at least that I could see with sigtool), so I can't tell -- are older definitions ever dropped? That is, will clamav always be able to detect viruses from, e.g., the 1990s, or are definitions for viruses that old eventually removed from the database? ~Felix. ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] detection of really old viruses?
On Sat, 22 Nov 2014 18:53:58 -0800 Al Varnell alvarn...@mac.com wrote: AFAIK, definitions exist forever unless they have been found to cause False Positives. You can normally find the date a definition was added by searching the clamav-virusdb archive: http://lurker.clamav.net/list/clamav-virusdb.en.html Confirmed; e.g. searching that list for CIH (a.k.a. Chernobyl, from about 1998 or 99) shows W95.CIH-II.882 and some variants were added to the defs in about 2003. sigtool -l of the current main.cvd shows that these definitions are still present in current. Thanks, ~Felix. ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [Clamav-users] [sanesecurity] Re: Gentoo 3rd party ebuild for clamav-unofficial-sigs.sh
Bill Landry wrote: I ask that all package maintainers please send me an off-list email to b...@inetmsg.com with the following information so that I can compile a complete list. done ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml