On 2008-09-05 00:49, Markus Egg wrote:
Original-Nachricht
Datum: Thu, 04 Sep 2008 23:30:54 +0200
Von: Markus Egg [EMAIL PROTECTED]
An: ClamAV users ML clamav-users@lists.clamav.net
Betreff: Re: [Clamav-users] bzip2 1.0.5 and clamav 0.94
Noel Jones wrote:
There was an update for main about an hour ago. I expect
the database servers are swamped with folks[1] trying to
download the whole ~35M main.cvd
[...]
[1]I presume this is mostly folks with very old clam versions
that don't support incremental updates. Hopefully they
This is of course not quite on-topic for this list, but I did hit
the problem in relation with ClamAV, and my other searches have
come up blank, so please bear with me:
On a pretty recent CentOS 5.2 installation with working daily
automatic updates, ClamAV 0.94's ./configure complains thusly:
Hi there -
I am having major problems trying to run the freshclam script on a system with
the 0.94 release.
The problems that I am seeing are either being unable to get either an
incremental or full update.
What's going on, and what do I need to do in order to correct it?
The
Hi,
I tried to sign up to the wiki. I didn't get any email request to verify my
membership, but I did get a welcome email.
I can't log in.
How come a security project thinks it's OK that I should send a password in
the clear?
And why do I even need a password to search the wiki?!
--
Ian
Hi,
I'm looking for some documentation on PUAs, but can only find a very terse
list of the categories, at http://www.clamav.net/support/pua:
RC
NetTool
Packed
PwTool
RAT
Script
Server
Spy
Tool
But what do any of these categories mean? What sort of applications are
listed?
--
Ian Eiloart
IT
At 01:11 05-09-2008, Tilman Schmidt wrote:
But even a manual yum update finds nothing to update. I cannot
imagine Redhat/CentOS neglecting to provide a patch for that
Why not? :-)
The response was that this issue can only result in a crash of the
bunzip2 process, which we do not consider to
clamav-users,
I am trying to find out if clamav has successfully been compiled on
Solaris 2.5.1 and functions properly.
Or if there is a document that says it is not supported, can't be done, or
shouldn't be done.
So far I don't see anything under Solaris 8.
Bill C.
I'm getting this in my log reports...
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.94-exp Recommended version: 0.94
I just upgraded to 0.94, doing the usual make uninstall in the 93.3
directory and then compiling and installing the 0.94.
Why am I getting the outdated
On Fri, 05 Sep 2008 08:26:41 -0700
Kevin W. Gagel [EMAIL PROTECTED] wrote:
I'm getting this in my log reports...
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.94-exp Recommended version: 0.94
I just upgraded to 0.94, doing the usual make uninstall in the 93.3
SM wrote:
At 01:11 05-09-2008, Tilman Schmidt wrote:
But even a manual yum update finds nothing to update. I cannot
imagine Redhat/CentOS neglecting to provide a patch for that
Why not? :-)
The response was that this issue can only result in a crash of the
bunzip2 process, which
Hello,
I'm looking through the docs and I cannot find info on new config items:
HeuristicScanPrecedence
ScanPartialMessages
StructuredDataDetection
Can someone point me in the right direction so I can figure out how to set
these?
Thanks,
Ken
___
On 2008-09-05 17:11, SM wrote:
At 01:11 05-09-2008, Tilman Schmidt wrote:
But even a manual yum update finds nothing to update. I cannot
imagine Redhat/CentOS neglecting to provide a patch for that
Why not? :-)
The response was that this issue can only result in a crash of the
bunzip2
On 2008-09-05 18:33, [EMAIL PROTECTED] wrote:
Hello,
I'm looking through the docs and I cannot find info on new config items:
HeuristicScanPrecedence
ScanPartialMessages
StructuredDataDetection
Can someone point me in the right direction so I can figure out how to set
these?
Hi,
Actually I sent them a service ticket about
updating bzip2 to version 1.0.5. Below is what I
got recently from RedHat support:
---
| Case Information |
---
Case Title : bzip2 should be updated to version 1.0.5
Case
clamd freshclam signature counts now *match* after changing
/etc/freshclam.conf setting to CompressDatabase off . Thank you! :D
- Original Message -
From: Noel Jones [EMAIL PROTECTED]
To: ClamAV users ML clamav-users@lists.clamav.net
Subject: Re: [Clamav-users] Freshclam to ClamAV
On Fri, 5 Sep 2008, Ian Eiloart wrote:
Hi,
I'm looking for some documentation on PUAs, but can only find a very terse
list of the categories, at http://www.clamav.net/support/pua:
RC
NetTool
Packed
PwTool
RAT
Script
Server
Spy
Tool
But what do any of these categories mean? What
Oscar Usifer wrote:
clamd freshclam signature counts now *match* after changing
/etc/freshclam.conf setting to CompressDatabase off . Thank you! :D
Well, it then seems there is a problem with CompressDatabase,
at least on your platform.
Now might be a good time to open a bugreport on
Filed as Bugzilla Bug 1170
- Original Message -
From: Noel Jones [EMAIL PROTECTED]
To: ClamAV users ML clamav-users@lists.clamav.net
Subject: Re: [Clamav-users] RESOLVED (was Re: Freshclam to ClamAV sig parity
count mismatch
Date: Fri, 05 Sep 2008 14:10:13 -0500
Oscar Usifer
My clamstats script has quit working again. It correctly reports the number of
sigs in the database however it doesn't seem to be picking up on the found
virus's. Here is the line(s) I believe that pertain to this:
} elsif (($virus) = ($log =~ /^stream(?: \d+)?: (.+) FOUND/ )) {
I 'think' the
} elsif (($virus) = ($log =~ /^stream(?: \d+)?: (.+) FOUND/ )) {
I 'think' the issue is that the ip and port have been added to the log:
Fri Sep 5 03:31:14 2008 - stream([EMAIL PROTECTED]):
Email.Scam4.Gen668.Sanesecurity.07050106.UNOFFICIAL FOUND
I 'assume' that is the port number after
On Friday 05 September 2008 6:14 pm, Dave M wrote:
} elsif (($virus) = ($log =~ /^stream(?: \d+)?: (.+) FOUND/ )) {
I 'think' the issue is that the ip and port have been added to the log:
Fri Sep 5 03:31:14 2008 - stream([EMAIL PROTECTED]):
I've been seeing this quite a lot since I upgraded to .94 yesterday. The
entire log snip can be seen here:
http://pastebin.com/m2e56e3bf
but it starts out like this and continues.
Fri Sep 5 17:25:11 2008 - Retrieving
http://db.us.clamav.net/daily-8169.cdiff
Fri Sep 5 17:25:11 2008 -
On Fri, Sep 5, 2008 at 7:34 PM, Chris [EMAIL PROTECTED] wrote:
On Friday 05 September 2008 6:14 pm, Dave M wrote:
} elsif (($virus) = ($log =~ /^stream(?: \d+)?: (.+) FOUND/ )) {
I 'think' the issue is that the ip and port have been added to the log:
Fri Sep 5 03:31:14 2008 -
On Fri, 2008-09-05 at 19:47 -0500, Chris wrote:
I've been seeing this quite a lot since I upgraded to .94 yesterday. The
entire log snip can be seen here:
http://pastebin.com/m2e56e3bf
but it starts out like this and continues.
Fri Sep 5 17:25:11 2008 - Retrieving
25 matches
Mail list logo
