Re: [clamav-users] Untit Testing
Hi there, On Wed, 8 Feb 2012, Dave Reynolds wrote: As to why I would install ClamAV, it is an IA requirement that we scan for viruses on remote file transfers that go thru this system and there aren't too many options that will run under IRIX. IA = "Inspection Authority"? Does the IA know what it is that it's inspecting? Does the virus scanning engine need to reside on the trusted system? -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] Untit Testing
On 2012-2-7 18:27 , Reynolds, David C. wrote: > Thanks for the quick replies. I was able to run those tests. > > As to why I would install ClamAV, it is an IA requirement that we scan for > viruses on remote file transfers that go thru this system and there aren't > too many options that will run under IRIX. I haven't got any experience with IRIX, but I do wonder: why are you using tits for testing purposes? That seems inappropriate. Everyone else uses canaries! The tits scare too easily and will fly at the slightest sound. Canaries are more reliable. And if there's a virus in range, they just die :) PS ;-) -- Jan-Pieter Cornet SSL is only keeping your connection safe from hackers, crooks and three letter agencies by the least secured, least likely to refuse money from strangers, and least bullying-proof of several hundred companies worldwide. signature.asc Description: OpenPGP digital signature ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] Untit Testing
Thanks for the quick replies. I was able to run those tests. As to why I would install ClamAV, it is an IA requirement that we scan for viruses on remote file transfers that go thru this system and there aren't too many options that will run under IRIX. --Dave Reynolds From: clamav-users-boun...@lists.clamav.net on behalf of G.W. Haywood Sent: Tue 2/7/2012 3:55 AM To: clamav-users@lists.clamav.net Subject: Re: [clamav-users] Untit Testing B0;261;0cHi there, On Tue, 7 Feb 2012, Reynolds, David C. wrote: > I've recently installed .97.3 on an SGI Origin 3000 running TRIX > ... > This is a totally Trusted Irix environment. If it's a trusted environment, why would you put ClamAV on it? ClamAV is certainly less than totally trustworthy. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net <http://wiki.clamav.net/> http://www.clamav.net/support/ml ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] Untit Testing
B0;261;0cHi there, On Tue, 7 Feb 2012, Reynolds, David C. wrote: I've recently installed .97.3 on an SGI Origin 3000 running TRIX ... This is a totally Trusted Irix environment. If it's a trusted environment, why would you put ClamAV on it? ClamAV is certainly less than totally trustworthy. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] Untit Testing
On Mon, Feb 6, 2012 at 8:39 PM, Reynolds, David C. wrote: > I've recently installed .97.3 on an SGI Origin 3000 running TRIX v6.5.28 > using gcc 3.2.1. (I did need to make some source file modifications). I was > able to run clamscan against a directory seemingly without error. > > However, I would like to run some tests which would indicate catching an > infected file without actually putting an infected file on our system. This > is a totally Trusted Irix environment. > > I've had problems trying to build the check package as recommended in the > ClamAV documentation in this IRIXS environment. Any suggestions as to how > run some unit tests that would indicate that an infected file would actually > be found? Use eicar, the test virus: http://eicar.org/86-0-Intended-use.html /peter ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] Untit Testing
On Mon, 2012-02-06 at 11:39 -0800, Reynolds, David C. wrote: > I've recently installed .97.3 on an SGI Origin 3000 running TRIX > v6.5.28 using gcc 3.2.1. (I did need to make some source file > modifications). I was able to run clamscan against a directory > seemingly without error. > > However, I would like to run some tests which would indicate > catching an infected file without actually putting an infected > file on our system. This is a totally Trusted Irix environment. > > I've had problems trying to build the check package as > recommended in the ClamAV documentation in this IRIXS environment. > Any suggestions as to how run some unit tests that would indicate > that an infected file would actually be found? You could use the Eicar test file. It's not a virus and meant to check if a/your virusscanner is working. http://www.eicar.org/86-0-Intended-use.html -- Rob ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] Untit Testing
On Mon, 6 Feb 2012 11:39:32 -0800 Reynolds, David C. wrote: > I've recently installed .97.3 on an SGI Origin 3000 running TRIX v6.5.28 > using gcc 3.2.1. (I did need to make some source file modifications). I was > able to run clamscan against a directory seemingly without error. > > However, I would like to run some tests which would indicate catching an > infected file without actually putting an infected file on our system. This > is a totally Trusted Irix environment. > > I've had problems trying to build the check package as recommended in the > ClamAV documentation in this IRIXS environment. Any suggestions as to how > run some unit tests that would indicate that an infected file would actually > be found? You can scan files in the "test" directory of the ClamAV package (they're created when you compile it) and/or grab the Eicar test files from www.eicar.org Regards, -- oo. Tomasz Kojm (\/)\. http://www.ClamAV.net/gpg/tkojm.gpg \..._ 0DCA5A08407D5288279DB43454822DC8985A444B //\ /\ Mon Feb 6 21:02:31 CET 2012 ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
Re: [clamav-users] Untit Testing
On 02/06/2012 09:39 PM, Reynolds, David C. wrote: > I've recently installed .97.3 on an SGI Origin 3000 running TRIX v6.5.28 > using gcc 3.2.1. Thats a weird version number. GCC 3.3, 3.4 was working I think, I don't think I ever used gcc 3.2.1, it might be buggy or might not be. > (I did need to make some source file modifications). I was able to run > clamscan against a directory seemingly without error. > > However, I would like to run some tests which would indicate catching an > infected file without actually putting an infected file on our system. This > is a totally Trusted Irix environment. > > I've had problems trying to build the check package as recommended in the > ClamAV documentation in this IRIXS environment. Any suggestions as to how > run some unit tests that would indicate that an infected file would actually > be found? > You can scan the files in test/, or contrib/testfiles. Those are not actual viruses, just the ClamAV-Test-File. Best regards, --Edwin ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
[clamav-users] Untit Testing
I've recently installed .97.3 on an SGI Origin 3000 running TRIX v6.5.28 using gcc 3.2.1. (I did need to make some source file modifications). I was able to run clamscan against a directory seemingly without error. However, I would like to run some tests which would indicate catching an infected file without actually putting an infected file on our system. This is a totally Trusted Irix environment. I've had problems trying to build the check package as recommended in the ClamAV documentation in this IRIXS environment. Any suggestions as to how run some unit tests that would indicate that an infected file would actually be found? --Dave Reynolds __ ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml