On Wednesday 28 July 2004 9:33 pm, Bruno Lellis wrote:
> Hello,
> I've read some emails that says that clamav scan file with password for a
> long time. But I put a password in eicar zip and test with 'clamscan
> eicar.zip' and clamav does not detect virus, only if no password-protected
> zip is d
as said earlier: blah blah blah
do you have ANY idea how many people are being sent these OFF_TOPIC ramblings?
if you all can't/won't kill this thread, please at least have the courtesy to identify
is as OFF_TOPIC with a different/changed Subject:
richard
-- On Wednesday, July 28, 2004 12:15 PM -
- Original Message -
From: "Dan O'Brien" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, July 28, 2004 8:27 PM
Subject: [Clamav-users] Freshclam not respecting CHECKS?
> I've got "Checks 12" in my freshclam.conf file, but FreshClam's log shows
> it checking every hour... I
I've got "Checks 12" in my freshclam.conf file, but FreshClam's log shows
it checking every hour... I know it *used* to check every 2 hours (24
hours / 12 checks = 2 hours apart), but it's been a while since I looked
that carefully at that particular log, so it could have been as far back
as 0
Hello zen,
Wednesday, July 28, 2004, 5:44:39 PM, you wrote:
> Hello clamav-users,
> i just stumble in to problem here,
> try to build clamav on FreeBSD 4.10STABLE
> but receive these error msg:
> cd . && /bin/sh /usr/local/src/clamav-devel-20040728/missing --run au
Krzysztof Snopek wrote:
The ChangeLog document for clamav 0.75 says:
* clamav-milter: Added --dont-wait and --advisory options ,
at Jun 29 there is:
* clamav-milter:Support --timeout option
and earlier template files for clamav-milter are mentioned. But
clamav-milter man page (0.75.tar.gz)
I'm running clamav with Exim + Exiscan, and since upgrading to 0.75 it's
restarted almost every five minutes (with a 600 seconds refresh).
Most of the time I get this:
[virus scan output...]
Wed Jul 28 16:04:00 2004 -> +++ Started at Wed Jul 28 16:04:00 2004
Wed Jul 28 16:04:00 2004 -> clamd daem
I am running
FreeBSD 4.6
ClamAV version devel-20040728
clamav-milter version 0.75b
Sendmail 8.12.3p3
I was using clamav-0.70-rc for a long time because it was stable and
never crashed. However, it started missing a lot of newer viruses so I
upgraded to the version above.
Clamd is giving a
I like virii - it sounds important and like something
that can be on the ER equivalent for geeks...
Perhaps, but if you were to actually pluralize it using Latin rules, the
result would be 'viri.'
bla bla bla. While I appreciate the proper use of the English language,
would someone care to cha
Hello,
I've read some emails that says that clamav scan file with password for a
long time. But I put a password in eicar zip and test with 'clamscan
eicar.zip' and clamav does not detect virus, only if no password-protected
zip is detected!
I am using Postfix 2.0 + Clamav 0.75 + Amavisd.
What sh
Steven Stern wrote:
On Wed, 28 Jul 2004 10:15:53 -0500, "Vernon A. Fort"
<[EMAIL PROTECTED]> wrote:
I'm tring to understand the Build time string in the sigtoo -i daily.cvd
file:
Build time: 27 Jul 2004 15-12 +0200
specifically with the 15-12 +0200. I want to convert this to Central
time
Hello,
I've read some emails that says that clamav scan file with password for a
long time. But I put a password in eicar zip and test with 'clamscan
eicar.zip' and clamav does not detect virus, only if no password-protected
zip is detected!
I am using Postfix 2.0 + Clamav 0.75 + Amavisd.
What sh
Hi,
we two problems with clamav 0.74+0.75.
1. freshclam , startet from a cronjob, does freeze from time to time.
ist just freezes on a RECV() Call
2. most important:
we get this since we updated to 0.75 i.e.
Wed Jul 28 20:11:15 2004 -> +++ Started at Wed Jul 28 20:11:15 2004
Wed Jul 28 20:11:15
> From: Jim Maul [mailto:[EMAIL PROTECTED]
> Quoting Shayne Lebrun <[EMAIL PROTECTED]>:
>
> >> I like virii - it sounds important and like something
> >> that can be on the ER equivalent for geeks...
> >
> > Perhaps, but if you were to actually pluralize it using
> Latin rules, the
> > result wou
--- Shayne Lebrun <[EMAIL PROTECTED]> wrote:
> > Quoting Shayne Lebrun <[EMAIL PROTECTED]>:
> >
> > >> I like virii - it sounds important and like
> something
> > >> that can be on the ER equivalent for geeks...
> > >
> > > Perhaps, but if you were to actually pluralize
> it using Latin rules, th
On Wed, 2004-07-28 at 17:51, Denis De Messemacker wrote:
> It means the signature was done at 3:12 pm (15:12) , in a GMT+2 zone.
> So 1:12pm GMT.
>
> Assuming Central Standard Time USA is GMT-5 in summer, it makes 8:12 am.
>
Perhaps there would be some sense in timestamping the signature
databas
> Quoting Shayne Lebrun <[EMAIL PROTECTED]>:
>
> >> I like virii - it sounds important and like something
> >> that can be on the ER equivalent for geeks...
> >
> > Perhaps, but if you were to actually pluralize it using Latin rules, the
> > result would be 'viri.'
> >
> >
>
> Wouldnt that be plura
On Wed, 28 Jul 2004, Roger Meyer wrote:
> Hello all,
>
> I have a problem regarding the reporting of 'potential virus'es found. I am
> running qmail with qmail-scanner utilizing spamassassin 2.63 and clamav 0.75
> (despite it is beeing reported 0.71 (?)). ClamAV receives about 10 mails a
> day whe
I seem to remember that when I first started using ClamAV, the clamav.log
file mostly contained information about viruses being found and was
otherwise sparse. However, now my clamav.log file has Postfix, CRON, and
spamd entries, and I don't find anything about clamav activity. A log
snippet look
On Wed, 28 Jul 2004 09:02:40 +0100 in [EMAIL PROTECTED]
Trog <[EMAIL PROTECTED]> wrote:
> > Actually, on further investigation of the failed freshclam strace,
> > there is no call to libresolv.so at all.
>
> strace doesn'yt show calls to libraries, only system calls.
OK, but once I got it wor
Quoting Shayne Lebrun <[EMAIL PROTECTED]>:
I like virii - it sounds important and like something
that can be on the ER equivalent for geeks...
Perhaps, but if you were to actually pluralize it using Latin rules, the
result would be 'viri.'
Wouldnt that be plural of man?
Jim
---
On Tue, 27 Jul 2004 15:16:38 -0700
"zbuckholz" <[EMAIL PROTECTED]> wrote:
> But please still enlighten me, if the email attachment is zipped and
> is password protected how does clamav detect it? Does clamav have most
Oh, this is a military secret :-)
--
oo. Tomasz Kojm <[EMA
On Wed, 28 Jul 2004, Nigel Horne wrote:
> On Wednesday 28 Jul 2004 10:38, Andrzej Kukula wrote:
>
> > Neither Miriam-Webster nor Cambridge list plural form of 'virus'. But
> > there's simple rule to make plurals in English: append 's' to a noun, and if
> > the noun ends in 's', then append 'es'. Or
On Wed, 2004-07-28 at 17:15, Vernon A. Fort wrote:
> I'm tring to understand the Build time string in the sigtoo -i daily.cvd
> file:
>
> Build time: 27 Jul 2004 15-12 +0200
>
> specifically with the 15-12 +0200. I want to convert this to Central
> time (US), any pointers.
>
> Vernon
>
On Wed, 28 Jul 2004 10:15:53 -0500, "Vernon A. Fort"
<[EMAIL PROTECTED]> wrote:
>I'm tring to understand the Build time string in the sigtoo -i daily.cvd
>file:
>
>Build time: 27 Jul 2004 15-12 +0200
>
>specifically with the 15-12 +0200. I want to convert this to Central
>time (US), any po
There's exception to that rule like datum - data, man - men, mouse -
mice. Greetings,
JC
Why you tend to complicate things? Isn't it just 'viruses'?
Regards,
Andrzej Kukula
I'm not trying to complicate anything. I just say that there's
exceptions in the English rule you said. I've see
> I like virii - it sounds important and like something
> that can be on the ER equivalent for geeks...
Perhaps, but if you were to actually pluralize it using Latin rules, the
result would be 'viri.'
---
This SF.Net email is sponsored by BEA
-5 right now... -6 when daylight saving time ends
- Original Message -
From: "Tomasz Papszun" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, July 28, 2004 10:44 AM
Subject: Re: [Clamav-users] Sigtool Build Time
> On Wed, 28 Jul 2004 at 10:15:53 -0500, Vernon A. Fort wrote
Quoting "Vernon A. Fort" <[EMAIL PROTECTED]>:
I'm tring to understand the Build time string in the sigtoo -i daily.cvd
file:
Build time: 27 Jul 2004 15-12 +0200
specifically with the 15-12 +0200. I want to convert this to Central
time (US), any pointers.
Vernon
well im not sure what the 15-1
> I suppose one could assume, judging by the lack of any plural listed,
> (except in American references, but they do have a knack for
"altering"
> English spelling), that this one may be put down to personal
preference
> :-)
>
> Matt
>
An interesting article about the subject:
http://en.wikip
Like 'boxen'
;)
On Wednesday 28 July 2004 15:03, ©hris mckeever wrote:
> > Why you tend to complicate things? Isn't it just
> > 'viruses'?
> >
> > Regards,
> > Andrzej Kukula
> > \
>
> I like virii - it sounds important and like something
> that can be on the ER equivalent for geeks...
>
>
>
>
>
>
Hi, I'm trying to get clamav to compile under Tru64 4.0F using the native
cc compiler. I run the configure, and the first element it tries to
compile has this problem:
bash# make
No suffix list.
make all-recursive
No suffix list.
Making all in libclamav
source='matcher.c' object='matcher.lo' lib
On July 28, 2004 08:20 am, KriÅtof Petr wrote:
> Me Its wrote:
> >I am looking forward to implement tcp/ip filtering for my firewall,
> >the only solution that I found on the net is using a patched squid
> >which can work with clamav.
> >I am looking for a better solution like implemented Trend Vi
On Wed, 28 Jul 2004 at 10:15:53 -0500, Vernon A. Fort wrote:
> I'm tring to understand the Build time string in the sigtoo -i daily.cvd
> file:
>
>Build time: 27 Jul 2004 15-12 +0200
>
> specifically with the 15-12 +0200. >
It means 15:12 GMT+2
> I want to convert this to Central time (U
>
> > Neither Miriam-Webster nor Cambridge list plural form of 'virus'. But
> > there's simple rule to make plurals in English: append 's' to a noun,
> > and if the noun ends in 's', then append 'es'. Or I'm missing
> > something.
>
> I promised myself I wouldn't get involved in this seriously O
Hello all,
I have a problem regarding the reporting of 'potential virus'es found. I am
running qmail with qmail-scanner utilizing spamassassin 2.63 and clamav 0.75
(despite it is beeing reported 0.71 (?)). ClamAV receives about 10 mails a
day where it says (excerpt from the logfile):
Wed, 28 Jul
sarky wrote:
Hello all
How do i load clamd before the service clamav-milter start in RH?
Sorted out the service but i can not figure out in which init file i should
put clamd, rc.local starts after i think.
You should use 'chkconfig' command to manipulate SysV init like services.
Example:
chkconf
Me Its wrote:
Hi all
I am looking forward to implement tcp/ip filtering for my firewall,
the only solution that I found on the net is using a patched squid
which can work with clamav.
I am looking for a better solution like implemented Trend Virus Wall.
Some of the future version of clamav wi
I'm tring to understand the Build time string in the sigtoo -i daily.cvd
file:
Build time: 27 Jul 2004 15-12 +0200
specifically with the 15-12 +0200. I want to convert this to Central
time (US), any pointers.
Vernon
---
This SF.Net email
>
> Why you tend to complicate things? Isn't it just
> 'viruses'?
>
> Regards,
> Andrzej Kukula
> \
I like virii - it sounds important and like something
that can be on the ER equivalent for geeks...
>
>
>
>
---
> This SF.Net email is spo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Usha wrote:
| ./clamd
| ERROR: Database initialization error.
| It will be helpfull if u tell me what im missing here with.
This is because you haven't run freshclam first, or it cannot find the
db. Check your logfiles /var/log/clamav/clamd.log
| Also
Julio Canto
>
> > Neither Miriam-Webster nor Cambridge list plural form of 'virus'.
> But > there's simple rule to make plurals in
> English: append 's' to a noun,
> and if
> > the noun ends in 's', then append 'es'. Or I'm missing something.
>
> There's exception to that rule like datum - da
Paul Bijnens wrote:
A.R.S. KA9QLQ Alvin Koffman wrote:
Hay Paul would you mind terribly to answer a couple questions about
your perl script off list? If so email me at [EMAIL PROTECTED] if
not no prob.
Did you receive my answer? Or is everything solved?
I replied but it bounced. Anyway after
>
> Hello clamav-users,
>
> i just stumble in to problem here,
> try to build clamav on FreeBSD 4.10STABLE
> but receive these error msg:
>
> cd . && /bin/sh /usr/local/src/clamav-devel-20040728/missing
> --run autoheader
> configure.in:20: err
Dear List,
Im using the anti-virus package - clamav-0.65, that i can't start clamd
that it gives the following err:
./clamd
ERROR: Database initialization error.
It will be helpfull if u tell me what im missing here with.
Also im encountering DB test failure with spam
filter(Mail-SpamAss
On Wed, 2004-07-28 at 14:47, Scott Ryan wrote:
> I have upgraded to latest snapshot, but I am still seeing zipped My.Doom.m
> viruses coming through.
> When I run clamdscan on the zip file that get's through, clamav identifies it
> as My.Doom.m
>
> Is there something i am missing here?
>
Poss
On Wednesday 28 Jul 2004 10:38, Andrzej Kukula wrote:
> Neither Miriam-Webster nor Cambridge list plural form of 'virus'. But
> there's simple rule to make plurals in English: append 's' to a noun, and if
> the noun ends in 's', then append 'es'. Or I'm missing something.
I promised myself I woul
I have upgraded to latest snapshot, but I am still seeing zipped My.Doom.m
viruses coming through.
When I run clamdscan on the zip file that get's through, clamav identifies it
as My.Doom.m
Is there something i am missing here?
On Wednesday 28 July 2004 09:18, Mike Brodbelt wrote:
> Trog wrote
I am seeing MyDoom.m coming through, but when i run clamscan or clamdscan on
the directory where i save the zip, clamav identifies it as MyDoom.m
If I unzip it there is a message.cmd file which is executable and not broken
binary rubbish.
The worrying thing is, my mail server has identified 450
Upgrade autoconf.
I had to do that just now.
On Wednesday 28 July 2004 10:44, zen wrote:
> Hello clamav-users,
>
> i just stumble in to problem here,
> try to build clamav on FreeBSD 4.10STABLE
> but receive these error msg:
>
> cd . && /bin/sh /usr/local/src/
What about sheep ?
On Wednesday 28 July 2004 09:38, Andrzej Kukula wrote:
> Matt:
> > > On Tue, 2004-07-27 at 13:28, Kevin Spicer wrote:
> > > > On Tue, 2004-07-27 at 16:26, Scott Ryan wrote:
> > > > > I have not submitted any virii (correct word?)
> > > >
> > > > viruses
> > >
> > > Yup.
> > >
>
> Neither Miriam-Webster nor Cambridge list plural form of 'virus'. But
> there's simple rule to make plurals in English: append 's' to a noun,
and if
> the noun ends in 's', then append 'es'. Or I'm missing something.
There's exception to that rule like datum - data, man - men, mouse - mice.
Gre
On Wed, 2004-07-28 at 11:31, Thomas Lamy wrote:
> > So it seems that clamav 0.75 + latest signature files are not
> > catching all
> >
> Yes - submit them (from your quarantine directory) on http://www.clamav.net/
>
Don't submit them if they are binary fragments that are not executable,
th
Hello clamav-users,
i just stumble in to problem here,
try to build clamav on FreeBSD 4.10STABLE
but receive these error msg:
cd . && /bin/sh /usr/local/src/clamav-devel-20040728/missing --run autoheader
configure.in:20: error: Autoconf version 2.58 or higher is required
acloca
On Wed, 28 Jul 2004 16:09:29 +0800
Wilson Mak <[EMAIL PROTECTED]> wrote:
> P.S softlimit is 1500 where I used it in Clam0.6. It's worked
> perfectly OK before.
Please increase it or switch to clamav-devel.
--
oo. Tomasz Kojm <[EMAIL PROTECTED]>
(\/)\.
Jona Tallieu wrote:
Hi all,
we use CLAMAV 0.75 on a OSX 10.3 server together with a McAfee
scanner.
First in line is the clamav, next is the mcafee virex scanner.
In the clamdscan logs I can see that clam catches Mydoom.M viruses:
Wed Jul 28 10:25:33 2004 -> /tmp/cgpavIOQyTk: Worm.Mydoom.M FOUND
We
Jona Tallieu wrote:
But in the virex logs it shows clamav is not catching all:
1452225.msg/text.zip
Found the W32/[EMAIL PROTECTED] virus !!!
So it seems that clamav 0.75 + latest signature files are not
catching all
Any ideas? Thanks!
There are version of mydoom that contain a only a p
A.R.S. KA9QLQ Alvin Koffman wrote:
Hay Paul would you mind terribly to answer a couple questions about your
perl script off list? If so email me at [EMAIL PROTECTED] if not no prob.
Did you receive my answer? Or is everything solved?
--
Paul Bijnens, XplanationTel +3
Hi,
I am using clamav on solaris 9 and aix 5.2. Compilataion of
clamav-0.75 fails on aix 5.2 with the message
clamav-milter.c: In function `clamfi_connect':
clamav-milter.c:1531: warning: passing arg 3 of `gethostbyname_r' from
incompatible pointer type
clamav-milter.c:1531: error: too many arg
On Wed, 2004-07-28 at 06:51, Michael Brennen wrote:
> On Tue, 27 Jul 2004, Matt wrote:
>
> > > On Tue, 2004-07-27 at 13:28, Kevin Spicer wrote:
> > > > On Tue, 2004-07-27 at 16:26, Scott Ryan wrote:
> > > > > I have not submitted any virii (correct word?)
> > > >
> > > > viruses
> I'm no Latin sch
Matt:
> > On Tue, 2004-07-27 at 13:28, Kevin Spicer wrote:
> > > On Tue, 2004-07-27 at 16:26, Scott Ryan wrote:
> > > > I have not submitted any virii (correct word?)
> > >
> > > viruses
> >
> > Yup.
> >
> > http://www.topology.org/lang/virus.html
> >
> > Cheers,
> >
> > Mike
>
> I know th
L. Clayton Parker wrote:
Before I download clamAV, could someone tell me if it is possible to
call clamd from an email client using a "pipe to shell command" filter?
I want to us it in conjunction with the Ximian Evolution email client in
conjunction with spamassassin.
Yes, a single hyphen reads st
Trog wrote:
> On Tue, 2004-07-27 at 22:48, Jim wrote:
>
>>The new [EMAIL PROTECTED] zipped versions are getting through my
>>clamav/amavisd-new/spamassassin box.
>>
>>It is stopping and dropping zipped versions of Bagle, but no luck with
>>zipped versions of mydoom.M
>>
>>Any one else expereinci
Dave Ewart wrote:
On Tuesday, 27.07.2004 at 15:27 +0200, Lionel Bouton wrote:
You might want to be more accurate than that : worms using mail for
propagation usually fake the From header, but when clamav detects a
virus using other means of propagation (meaning the From couldn't be
faked by the
Hi all,
we use CLAMAV 0.75 on a OSX 10.3 server together with a McAfee
scanner.
First in line is the clamav, next is the mcafee virex scanner.
In the clamdscan logs I can see that clam catches Mydoom.M viruses:
Wed Jul 28 10:25:33 2004 -> /tmp/cgpavIOQyTk: Worm.Mydoom.M FOUND
Wed Jul 28 10:25:3
Hi all,
I used to use clamav0.6 with qmailscanner 1.2 for more than a year. And
lately I got errors as below, then I try upgrading to clamav-0.75 with
qmail-scanner 1.22. But still can't solve the problem. Got any clues?
LibClamAV Error: readdb(): Malformed pattern line 797 (file
/var/spool/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tuesday, 27.07.2004 at 15:27 +0200, Lionel Bouton wrote:
> Dave Ewart wrote the following on 07/27/2004 02:47 PM :
>
> >Don't notify the sender.
> >
> >You'll just be generating unnecessary mail. In the case of most
> >virus-generated emails, whi
On Wed, 2004-07-28 at 08:49, Brian Morrison wrote:
>
> Now, I don't know whether freshclam itself decides to call the nscd UNIX
> socket or whether the resolver library does it
The resolver library does it.
>
> Actually, on further investigation of the failed freshclam strace, there
> is no ca
On Tue, 2004-07-27 at 21:45, Jim Maul wrote:
> > Well, we upgraded to 0.75.. And since last sunday out of
> > 2171 viruses there've been 64 Mydoom variants. Including
> > Mydoom.M, J, etc..
> >
> >
>
> Indeed, but i am running 0.74 which i thought was "unable" to catch these.
>
0.74 is able to
On Tue, 2004-07-27 at 22:48, Jim wrote:
> The new [EMAIL PROTECTED] zipped versions are getting through my
> clamav/amavisd-new/spamassassin box.
>
> It is stopping and dropping zipped versions of Bagle, but no luck with
> zipped versions of mydoom.M
>
> Any one else expereincing this?
The onl
Freshclam has decided to fail to get a lookup on database.clamav.net
again, failing with:
Jul 28 08:29:09 ickx freshclam[19291]: ClamAV update process started at
Wed Jul 28 08:29:09 2004
Jul 28 08:29:10 ickx freshclam[19291]: ERROR: Can't get information
about database.clamav.net host.
Jul 28 08
71 matches
Mail list logo
