Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Tue, 25 Sep 2012 11:17:56 +0100 (BST) G.W. Haywood wrote: In a 'PS' footnote in my original post I merely asked another poster to be considerate to me, and not to include my email address in the body of his message. I've now changed my reply template to accommodate you, I will add that I have _never_ before been asked to do this in the 25 odd years that I've been using email and mailing lists. In fact the template was the default that my MUA supplies with a new installation. This is perfectly ordinary practice on most of the mailing lists that I frequent, and I am frankly baffled by the response. Perhaps unlike me you don't all get ten thousand attempts to send spam to you every single day. As I say, I've never been asked to do it before, and yes I do get hundreds if not thousands of spam attempts each day and am subscribed to dozens of mailing lists. My email address has been public since I started using it, I have measures in place to deal with the problem as I run my own mail server and have complete control of it. Sorry if you thought I was being awkward. In my experience bots do harvest some headers as well, so it's entirely possible that an address in the list headers can be harvested. -- Brian Morrison ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hi there, On Tue, 25 Sep 2012, Al Varnell wrote: ... my understanding of what he's asking now is that the list server remove any addresses that their client includes. For the sake of clarity, I did not ask that. I also did not ask for policy changes at Sourcefire, nor did I ask anyone to force anyone else to do anything. In a 'PS' footnote in my original post I merely asked another poster to be considerate to me, and not to include my email address in the body of his message. This is perfectly ordinary practice on most of the mailing lists that I frequent, and I am frankly baffled by the response. Perhaps unlike me you don't all get ten thousand attempts to send spam to you every single day. However this thread is now, I think, irretrievably lost, and as far as I'm concerned it's finished. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Sep 25, 2012, at 6:17 AM, G.W. Haywood wrote: On Tue, 25 Sep 2012, Al Varnell wrote: ... my understanding of what he's asking now is that the list server remove any addresses that their client includes. For the sake of clarity, I did not ask that. I also did not ask for policy changes at Sourcefire, nor did I ask anyone to force anyone else to do anything. In a 'PS' footnote in my original post I merely asked another poster to be considerate to me, and not to include my email address in the body of his message. This is perfectly ordinary practice on most of the mailing lists that I frequent, and I am frankly baffled by the response. Perhaps unlike me you don't all get ten thousand attempts to send spam to you every single day. However this thread is now, I think, irretrievably lost, and as far as I'm concerned it's finished. Mailing list etiquette is always an interesting conversation. I love to see different people's perspectives on the nuances of it. For instance. Any idea why your mail client breaks threading? I thought Pine handled Message-ID's correctly? -- Joel Esler Senior Research Engineer, VRT OpenSource Community Manager Sourcefire ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hi there, On Mon, 24 Sep 2012, Joel Esler wrote: Maybe you are talking about something I'm not aware of. This is standard mailing list etiquette going back, I guess, almost a couple of decades and I'm both surprised and disappointed to have to go over it here. But by the pure fact that you are emailing a mailing list shows your email address. It's not a secret. Aside from the fact that most mail clients put it right back in the reply (as shown above, like mine does). This is not about what happens when people subscribe to mailing lists, nor about what your mail client may or may not do to be helpful. So maybe we are confused about what you are talking about, It does look that way. :) or perhaps you are. Nope. Mailing lists are archived by a number of list archiving systems which both archive the content of list messages and and publish it on their Websites. Unlike the lists to which I subscribe, it is not necessary to make any form of subscription to be able to search these archives. For that reason they are regularly trawled by spammers' email address harvesting bots. http://en.wikipedia.org/wiki/E-mail_address_harvesting For that reason, the responsible list archive managers do not publish the message headers (except of course for the 'Subject:' header) and when they serve pages of text containing the mail messages that they have archived, they use various techniques to try to avoid publication of email addresses which happen to be included in the message bodies. But the software which does this is not infallible, so it makes sense to minimize the risk. It has long been accepted practice to avoid placing email addresses in the body of any mail message which is sent to any mailing list. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
B0;261;0cHi there, On Mon, 24 Sep 2012, Joel Esler wrote: My point being that we have a bug open on it, we're working on it, so continuing trying to argue the point is pointless. ... Ah, yes, I think we are at crossed purposes here. I'm not trying to convince you to act on the enhancement request, just trying to explain the reasoning behind it to a couple of people who might not follow it. Thanks for accepting the request. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Sep 24, 2012, at 7:23 AM, G.W. Haywood wrote: Hi there, On Mon, 24 Sep 2012, Joel Esler wrote: Maybe you are talking about something I'm not aware of. This is standard mailing list etiquette going back, I guess, almost a couple of decades and I'm both surprised and disappointed to have to go over it here. But by the pure fact that you are emailing a mailing list shows your email address. It's not a secret. Aside from the fact that most mail clients put it right back in the reply (as shown above, like mine does). This is not about what happens when people subscribe to mailing lists, nor about what your mail client may or may not do to be helpful. I understand your concern. I've been on mailing lists since the mid 90s, and am well aware of list etiquette. Of course, bottom posting is etiquette too, and not a lot of people do it, as their client doesn't do it by default. I'm not going to force people to change the default behavior of how their client behaves just to participate in an open mailing list. Listen, I get it, I've been in the industry a long time as well, but it's just not something I'm going to FORCE people to do. -- Joel Esler Senior Research Engineer, VRT OpenSource Community Manager Sourcefire ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On 9/24/12 8:41 AM, Joel Esler wrote: On Sep 24, 2012, at 7:23 AM, G.W. Haywood wrote: Hi there, On Mon, 24 Sep 2012, Joel Esler wrote: Maybe you are talking about something I'm not aware of. This is standard mailing list etiquette going back, I guess, almost a couple of decades and I'm both surprised and disappointed to have to go over it here. But by the pure fact that you are emailing a mailing list shows your email address. It's not a secret. Aside from the fact that most mail clients put it right back in the reply (as shown above, like mine does). This is not about what happens when people subscribe to mailing lists, nor about what your mail client may or may not do to be helpful. I understand your concern. I've been on mailing lists since the mid 90s, and am well aware of list etiquette. Of course, bottom posting is etiquette too, and not a lot of people do it, as their client doesn't do it by default. I'm not going to force people to change the default behavior of how their client behaves just to participate in an open mailing list. Listen, I get it, I've been in the industry a long time as well, but it's just not something I'm going to FORCE people to do. I agree that trying to force people to do so would be a loosing battle and not worth the effort. I subscribe to many lists and must say that this is the first time I've read such a request. But my understanding of what he's asking now is that the list server remove any addresses that their client includes. -Al- -- Al Varnell Mountain View, CA ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hi-- On Sep 24, 2012, at 10:28 AM, Al Varnell wrote: [ ... ] I agree that trying to force people to do so would be a loosing battle and not worth the effort. I subscribe to many lists and must say that this is the first time I've read such a request. But my understanding of what he's asking now is that the list server remove any addresses that their client includes. Then they are looking for the Avoid duplicate copies of messages? preference, which is available for clamav-users list subscribers here: http://lists.clamav.net/cgi-bin/mailman/options/clamav-users [ You'll need to login, or boink on the password reminder button if need be... ] As for obscuring email addresses in list archives, that ought to be controllable by a list-admin option, but it's sufficiently pointless that I don't see why one would bother. An intelligent spammer avoids sending traffic to abuse@ and postmaster@ for the simple reason that such people are in the best position to globally blacklist or train anti-spam/AV filters. Spamming the subscribers of this list would be a fast way of getting added to unofficial and maybe official signatures :-) Regards, -- -Chuck ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hello again, On Sun, 23 Sep 2012, Brian Morrison wrote: On Sat, 22 Sep 2012 14:50:10 +0100 (BST) G.W. Haywood wrote: PS Please don't mail somebody's email address to the whole world. It's in the list headers, it's already been made public... Flame wars aren't going to get us anywhere. I chided you over a small lapse in email etiquette, let's leave it at that. Heaven knows I've made the odd howler in public too, I can live with that. I don't think it hurts to remind people that there's a great deal more to securing a network than to install a firewall and hope for the best. Perhaps a discussion on the subject might to encourage people to read more about basic security concepts, to contribute, and perhaps even to investigate ways in which their network security can be improved. That's one of the main reasons this list exists, and for signal to noise ratio it's one of the very best to which I've subscribed. Let's try to keep it that way. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Sep 23, 2012, at 6:47 AM, G.W. Haywood g...@jubileegroup.co.uk wrote: On Sun, 23 Sep 2012, Brian Morrison wrote: On Sat, 22 Sep 2012 14:50:10 +0100 (BST) G.W. Haywood wrote: PS Please don't mail somebody's email address to the whole world. It's in the list headers, it's already been made public... Flame wars aren't going to get us anywhere. I chided you over a small lapse in email etiquette, let's leave it at that. Heaven knows I've made the odd howler in public too, I can live with that. G.W. Maybe you are talking about something I'm not aware of. But by the pure fact that you are emailing a mailing list shows your email address. It's not a secret. Aside from the fact that most mail clients put it right back in the reply (as shown above, like mine does). So maybe we are confused about what you are talking about, or perhaps you are. -- Joel Esler Senior Research Engineer, VRT OpenSource Community Manager Sourcefire ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Sep 22, 2012, at 9:50 AM, G.W. Haywood g...@jubileegroup.co.uk wrote: Mr. Esler's assertion that this is a pedantic argument, given his position, bothers me a little. My point being that we have a bug open on it, we're working on it, so continuing trying to argue the point is pointless. We're already working on it. Thanks for the request. -- Joel Esler Senior Research Engineer, VRT OpenSource Community Manager Sourcefire ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Joel Esler skrev den 23-09-2012 17:59: So maybe we are confused about what you are talking about, or perhaps you are. is default reply template in Apple Mail to blame ? just becurse its common it not the same as its common good idear dont post my email with Apple Mail respect that i dont do it ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Sat, 22 Sep 2012 14:50:10 +0100 (BST) G.W. Haywood somebl...@somewhere.or.other wrote: PS Please don't mail somebody's email address to the whole world. It's in the list headers, it's already been made public on the list and in the archives. -- Brian Morrison I am not young enough to know everything Oscar Wilde ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Brian Morrison skrev den 2012-09-22 16:52: On Sat, 22 Sep 2012 14:50:10 +0100 (BST) G.W. Haywood somebl...@somewhere.or.other wrote: PS Please don't mail somebody's email address to the whole world. It's in the list headers, it's already been made public on the list and in the archives. bots dont read headers, so i think its valid to not post senders email address if one dont do itself, it only one to make it fail into a spamtrap if you post your own i will reply with it non hidded ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Sat, 22 Sep 2012 17:02:40 +0200 Benny Pedersen x wrote: if you post your own i will reply with it non hidded Be my guest, my email address has been public for many years without problems. -- Brian Morrison I am not young enough to know everything Oscar Wilde ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV® : ClamAV Stats, we need more of them, we need your help
On 9/20/12 9:12 AM, Bowie Bailey bowie_bai...@buc.com wrote: On 9/18/2012 6:24 PM, Joel Esler wrote: http://blog.clamav.net/2012/09/clamav-stats-we-need-more-of-them-we.html ClamAV Stats, we need more of them, we need your help We've been working pretty hard behind the scenes over here on ClamAV, its backend infrastructure, and moving the codebase as well as its detection up the ladder. In order for us to get some accurate statistics about what you all are seeing out there, in the field, we need as many people as possible to opt-in to some statistics gathering features that we have built into the code base. If you've ever browsed around ClamAV.net, I'm sure you've probably bumped into this page: http://www.clamav.net/lang/en/download/cvd/malware-stats/ at some point. These are statistics that are provided by you all, the users of ClamAV, collected and correlated on our backend systems here. It allows us to see trends across signatures and allows us to check in on what you are seeing in the actual real world. We need more people to opt-in to this feature. We are looking at growing the detection rate and feature set of ClamAV's detection functionality, and this type of data will allow us to see where we need to pinpoint resources. If you can participate in the program, please go here: http://www.clamav.net/lang/en/faq/faq-cctts/stats-howto/ Follow the instructions above and you should be good to go! Thanks! I made the changes listed in the howto and restarted clamd and freshclam. How can I tell if it's working? I don't see anything in the freshclam logs indicating that it is submitting the statistics. I have the following entry at the end of my freshclam.log session: SubmitDetectionStats: Not enough recent data for submission -Al- -- Al Varnell Mountain View, CA ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hi there, On Fri, 21 Sep 2012, Benny Pedersen wrote: Den 2012-09-20 12:42, G.W. Haywood skrev: option which disables the bytecode interpreter. ... it can be disabled in freshclam.conf No, that disables loading bytecode. The interpreter is still there. so this is a problem ? Yes. without signatures it does nothing imho No. Without signatures you *suppose* it does nothing. In the same way, a compiler is supposed to do nothing. Why is there no compiler on my firewall? Because my firewall does not need one. If a compiler is not there it is *impossible* for it to do anything, and that statement does not rely on your opinion. This is how you need to think if you think about security. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Fri, 21 Sep 2012 11:31:59 +0100 (BST) G.W. Haywood g...@jubileegroup.co.uk wrote: If a compiler is not there it is *impossible* for it to do anything, and that statement does not rely on your opinion. It isn't Ken Thompson's opinion, it isn't necessary for a compiler to exist for malicious acts to be possible. The source code doesn't even have to contain the exploit. http://cm.bell-labs.com/who/ken/trust.html -- Brian Morrison ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV® : ClamAV Stats, we need more of them, we need your help
On 9/21/2012 4:35 AM, Al Varnell wrote: On 9/20/12 9:12 AM, Bowie Bailey bowie_bai...@buc.com wrote: On 9/18/2012 6:24 PM, Joel Esler wrote: http://blog.clamav.net/2012/09/clamav-stats-we-need-more-of-them-we.html ClamAV Stats, we need more of them, we need your help We've been working pretty hard behind the scenes over here on ClamAV, its backend infrastructure, and moving the codebase as well as its detection up the ladder. In order for us to get some accurate statistics about what you all are seeing out there, in the field, we need as many people as possible to opt-in to some statistics gathering features that we have built into the code base. If you've ever browsed around ClamAV.net, I'm sure you've probably bumped into this page: http://www.clamav.net/lang/en/download/cvd/malware-stats/ at some point. These are statistics that are provided by you all, the users of ClamAV, collected and correlated on our backend systems here. It allows us to see trends across signatures and allows us to check in on what you are seeing in the actual real world. We need more people to opt-in to this feature. We are looking at growing the detection rate and feature set of ClamAV's detection functionality, and this type of data will allow us to see where we need to pinpoint resources. If you can participate in the program, please go here: http://www.clamav.net/lang/en/faq/faq-cctts/stats-howto/ Follow the instructions above and you should be good to go! Thanks! I made the changes listed in the howto and restarted clamd and freshclam. How can I tell if it's working? I don't see anything in the freshclam logs indicating that it is submitting the statistics. I have the following entry at the end of my freshclam.log session: SubmitDetectionStats: Not enough recent data for submission I see it now after restarting again. I thought I had restarted freshclam after making the change, but I guess not... -- Bowie ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV® : ClamAV Stats, we need more of them, we need your help
Now that I have the submission working, I took a look at the personal stats page (www.stats.clamav.net). I see a graph of some data here, but I'm not sure how to read it. There is a bar chart with four bars. The numbers on the bars are 5, 1, 4, 2. When I hover over the bars, I get 19, 21, 22, 23. The period option is set to 1 day. How do I interpret this? There is absolutely no explanation of the chart on the page. I would almost think the bars represent different days, but I've had the submission running for less than 24 hours at this point. -- Bowie ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
As pedantic as this argument is, I understand both sides of the argument. We have a bug in the system now, and we'll start triaging what it would take to make that happen. Thanks. On Fri, Sep 21, 2012 at 6:39 AM, Brian Morrison b...@fenrir.org.uk wrote: On Fri, 21 Sep 2012 11:31:59 +0100 (BST) G.W. Haywood g...@jubileegroup.co.uk wrote: If a compiler is not there it is *impossible* for it to do anything, and that statement does not rely on your opinion. It isn't Ken Thompson's opinion, it isn't necessary for a compiler to exist for malicious acts to be possible. The source code doesn't even have to contain the exploit. http://cm.bell-labs.com/who/ken/trust.html -- Brian Morrison ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml -- Joel Esler Senior Research Engineer, VRT OpenSource Community Manager Sourcefire ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hi there, On Thu, 20 Sep 2012, Joel Esler wrote: On Sep 19, 2012, at 7:21 AM, G.W. Haywood g...@jubileegroup.co.uk wrote: On Wed, 19 Sep 2012, Joel Esler wrote: ... I'm unhappy with the bytecode interpreter ... Okay, have you opened a feature request bug in our bugzilla tracking system so we can get it tagged for a release? Bug 5824. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hi there, On Thu, 20 Sep 2012, Benny Pedersen wrote: Den 2012-09-19 13:21, G.W. Haywood skrev: option which disables the bytecode interpreter. ... it can be disabled in freshclam.conf No, that disables loading bytecode. The interpreter is still there. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Den 2012-09-20 12:42, G.W. Haywood skrev: option which disables the bytecode interpreter. ... it can be disabled in freshclam.conf No, that disables loading bytecode. The interpreter is still there. so this is a problem ? without signatures it does nothing imho ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV®: ClamAV Stats, we need more of them, we need your help
On 9/18/2012 6:24 PM, Joel Esler wrote: http://blog.clamav.net/2012/09/clamav-stats-we-need-more-of-them-we.html ClamAV Stats, we need more of them, we need your help We've been working pretty hard behind the scenes over here on ClamAV, its backend infrastructure, and moving the codebase as well as its detection up the ladder. In order for us to get some accurate statistics about what you all are seeing out there, in the field, we need as many people as possible to opt-in to some statistics gathering features that we have built into the code base. If you've ever browsed around ClamAV.net, I'm sure you've probably bumped into this page: http://www.clamav.net/lang/en/download/cvd/malware-stats/ at some point. These are statistics that are provided by you all, the users of ClamAV, collected and correlated on our backend systems here. It allows us to see trends across signatures and allows us to check in on what you are seeing in the actual real world. We need more people to opt-in to this feature. We are looking at growing the detection rate and feature set of ClamAV's detection functionality, and this type of data will allow us to see where we need to pinpoint resources. If you can participate in the program, please go here: http://www.clamav.net/lang/en/faq/faq-cctts/stats-howto/ Follow the instructions above and you should be good to go! Thanks! I made the changes listed in the howto and restarted clamd and freshclam. How can I tell if it's working? I don't see anything in the freshclam logs indicating that it is submitting the statistics. -- Bowie ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
[clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Hi there, On Wed, 19 Sep 2012, Joel Esler wrote: In order for us to get some accurate statistics about what you all are seeing out there, in the field, we need as many people as possible to opt-in to some statistics gathering features that we have built into the code base. I'd be happy to opt into anything like this which might help, but I'm unhappy with the bytecode interpreter so I'm stuck with an old version of ClamAV. Viruses don't concern me - I don't use Windows machines - so I believe that ClamAV itself is a bigger danger to my systems than any malicious software(*). But the third party scam and phishing databases still do a useful job with the old version of ClamAV that I run. I'd be happy to get up to date and let you have some *interesting* statistics if you could just see your way to including a compile-time option which disables the bytecode interpreter. Mr. Skoll and I asked about this over two years ago: http://www.gossamer-threads.com/lists/clamav/devel/46683 Incidentally my mail servers don't have browsers installed. You might like to think about that next time you post a link to a download page. (*) Experience has supported this view although it has to be said that things do seem to be improving, for which recognition is due. :) xc -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
Den 2012-09-19 13:21, G.W. Haywood skrev: I'd be happy to get up to date and let you have some *interesting* statistics if you could just see your way to including a compile-time option which disables the bytecode interpreter. Mr. Skoll and I asked about this over two years ago: it can be disabled in freshclam.conf so freshclam do not fetch the bytecode.cvd but yes it would be nice to see something in ./configure :) i have not tested it so it might already be there ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] ClamAV?: ClamAV Stats, we need more of them, we need your help
On Sep 19, 2012, at 7:21 AM, G.W. Haywood g...@jubileegroup.co.uk wrote: Hi there, On Wed, 19 Sep 2012, Joel Esler wrote: In order for us to get some accurate statistics about what you all are seeing out there, in the field, we need as many people as possible to opt-in to some statistics gathering features that we have built into the code base. I'd be happy to opt into anything like this which might help, but I'm unhappy with the bytecode interpreter so I'm stuck with an old version of ClamAV. Okay, have you opened a feature request bug in our bugzilla tracking system so we can get it tagged for a release? -- Joel Esler Senior Research Engineer, VRT OpenSource Community Manager Sourcefire ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
[clamav-users] ClamAV®: ClamAV Stats, we need more of them, we need your help
http://blog.clamav.net/2012/09/clamav-stats-we-need-more-of-them-we.html ClamAV Stats, we need more of them, we need your help We've been working pretty hard behind the scenes over here on ClamAV, its backend infrastructure, and moving the codebase as well as its detection up the ladder. In order for us to get some accurate statistics about what you all are seeing out there, in the field, we need as many people as possible to opt-in to some statistics gathering features that we have built into the code base. If you've ever browsed around ClamAV.net, I'm sure you've probably bumped into this page: http://www.clamav.net/lang/en/download/cvd/malware-stats/ at some point. These are statistics that are provided by you all, the users of ClamAV, collected and correlated on our backend systems here. It allows us to see trends across signatures and allows us to check in on what you are seeing in the actual real world. We need more people to opt-in to this feature. We are looking at growing the detection rate and feature set of ClamAV's detection functionality, and this type of data will allow us to see where we need to pinpoint resources. If you can participate in the program, please go here: http://www.clamav.net/lang/en/faq/faq-cctts/stats-howto/ Follow the instructions above and you should be good to go! Thanks! ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml