[clamav-users] Clarification required on DisableCertCheck configuration option.
Dear List, I am seeing a new option: DisableCertCheck in clamd.conf in 0.98. And in configuration file, it is mentioned that, by default, the signature chain is checked with database. Is this database part of main.cvd or something else, which gets downloaded with freshclam? -- Regards Anant -- Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. -- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Clarification required on DisableCertCheck configuration option.
On Wed, Sep 25, 2013 at 7:10 AM, ANANT S ATHAVALE a...@isac.gov.in wrote: Dear List, I am seeing a new option: DisableCertCheck in clamd.conf in 0.98. And in configuration file, it is mentioned that, by default, the signature chain is checked with database. Is this database part of main.cvd or something else, which gets downloaded with freshclam? -- Regards Anant Hey Anant, Though the feature exists in ClamAV 0.98, we are currently not shipping an authenticode certificate database. We plan to in the future. Enabling the DisableCertCheck flag will prevent all certificates from being loaded by any published CVD, turning the Authenticode checks off. We are in the process of deciding in which CVD the authenticode certificates will go. Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
Re: [clamav-users] Clarification required on DisableCertCheck configuration option.
- Message from Shawn Webb sw...@sourcefire.com - Date: Wed, 25 Sep 2013 13:48:17 -0400 From: Shawn Webb sw...@sourcefire.com Reply-To: ClamAV users ML clamav-users@lists.clamav.net Subject: Re: [clamav-users] Clarification required on DisableCertCheck configuration option. To: ClamAV users ML clamav-users@lists.clamav.net On Wed, Sep 25, 2013 at 7:10 AM, ANANT S ATHAVALE a...@isac.gov.in wrote: Dear List, I am seeing a new option: DisableCertCheck in clamd.conf in 0.98. And in configuration file, it is mentioned that, by default, the signature chain is checked with database. Is this database part of main.cvd or something else, which gets downloaded with freshclam? -- Regards Anant Hey Anant, Though the feature exists in ClamAV 0.98, we are currently not shipping an authenticode certificate database. We plan to in the future. Enabling the DisableCertCheck flag will prevent all certificates from being loaded by any published CVD, turning the Authenticode checks off. We are in the process of deciding in which CVD the authenticode certificates will go. Thanks, Shawn ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faqhttp://www.clamav.net/support/ml - End message from Shawn Webb sw...@sourcefire.com - Thank you. -- Regards Anant -- Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. -- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml