Bug#1037250: ITP: fangfrisch -- Update and verify unofficial Clam Anti-Virus signatures
* Paul Wise: > I wonder if there is any tool that generates and/or contains the > appropriate ClamAV configs for popular unofficial signatures, > rather than manually downloading those signatures themselves. What do you mean by "manually downloading"? Fangfrisch is meant to be invoked by a scheduler like cron, verifies the integrity of downloads, avoids unnecessary downloads altogether, renames signature files if so desired by the user -- all without user interaction. Also, downloads (i.e. URL-based access) are handled using the Requests library [1], possibly the most popular Python library available for this purpose? > Perhaps Fangfrisch should become such a tool? I am unsure what exactly you are suggesting. Do you propose I remove existing functionality, proven robust? Functionality which freshclam does not offer as of June 2023? -Ralph [1] https://requests.readthedocs.io/en/latest/
Bug#1037250: ITP: fangfrisch -- Update and verify unofficial Clam Anti-Virus signatures
On Sat, 2023-06-10 at 09:50 -0400, Scott Kitterman wrote: > It does, but I think Fangfrisch is still a useful thing to have in Debian. I wonder if there is any tool that generates and/or contains the appropriate ClamAV configs for popular unofficial signatures, rather than manually downloading those signatures themselves. Perhaps Fangfrisch should become such a tool? Or is ClamAV upstream interested in such a tool/config? -- bye, pabs https://wiki.debian.org/PaulWise signature.asc Description: This is a digitally signed message part
Bug#1037250: ITP: fangfrisch -- Update and verify unofficial Clam Anti-Virus signatures
On Saturday, June 10, 2023 2:49:29 AM EDT Paul Wise wrote: > On Fri, 2023-06-09 at 12:46 +0200, Gürkan Myczko wrote: > >Description : Update and verify unofficial Clam Anti-Virus > > signatures This is a sibling of the Clam Anti-Virus freshclam utility. It > > allows downloading virus definition files that are not official ClamAV > > canon, e.g. from Sanesecurity, URLhaus and others. > > I was under the impression that ClamAV itself now has options to > download unofficial signatures, is that the case or was that removed? It does, but I think Fangfrisch is still a useful thing to have in Debian. Scott K signature.asc Description: This is a digitally signed message part.
Bug#1037250: ITP: fangfrisch -- Update and verify unofficial Clam Anti-Virus signatures
* Paul Wise: > I was under the impression that ClamAV itself now has options > to download unofficial signatures, is that the case or was that > removed? Not to toot my own horn, but Fangfrisch is more flexible than freshclam, both in terms of retrieving signature files and configuration. It also supports several signature providers out of the box [1], and Gentoo Linux recommends using it as well [2]. I have been using Fangfrisch for both myself and for my customers' production servers for years without a hitch, and I'd be happy to answer any additional questions you might have. -Ralph [1] https://rseichter.github.io/fangfrisch/#_default_providers [2] https://wiki.gentoo.org/wiki/ClamAV_Unofficial_Signatures
Bug#1037250: ITP: fangfrisch -- Update and verify unofficial Clam Anti-Virus signatures
On Fri, 2023-06-09 at 12:46 +0200, Gürkan Myczko wrote: > Description : Update and verify unofficial Clam Anti-Virus signatures > This is a sibling of the Clam Anti-Virus freshclam utility. It allows > downloading virus definition files that are not official ClamAV canon, > e.g. from Sanesecurity, URLhaus and others. I was under the impression that ClamAV itself now has options to download unofficial signatures, is that the case or was that removed? -- bye, pabs https://wiki.debian.org/PaulWise signature.asc Description: This is a digitally signed message part
Bug#1037250: ITP: fangfrisch -- Update and verify unofficial Clam Anti-Virus signatures
Package: wnpp Severity: wishlist Owner: Gürkan Myczko X-Debbugs-Cc: debian-de...@lists.debian.org, maeg...@ee.ethz.ch, car...@debian.org * Package name: fangfrisch Version : 1.6.1 Upstream Authors: Ralph Seichter URL : https://github.com/rseichter/fangfrisch * License : GPL-3-or-later Description : Update and verify unofficial Clam Anti-Virus signatures This is a sibling of the Clam Anti-Virus freshclam utility. It allows downloading virus definition files that are not official ClamAV canon, e.g. from Sanesecurity, URLhaus and others. Fangfrisch was designed with security in mind, to be run by an unprivileged user only.