[clamav-users] unsubscribe

unsubscribe -Original Message- From: clamav-users [mailto:clamav-users-boun...@lists.clamav.net] On Behalf Of Brad Scalio Sent: 12 October 2016 00:52 To: ClamAV users ML Subject: [clamav-users] One final clamd Frage When a clamscan is ran from cmdline or via cron is the virus signature d

Re: [clamav-users] unsubscribe

On Wed, October 12, 2016 8:40 am, Van Dalsen, Herbie wrote: > unsubscribe > Here you go... List-Unsubscribe: http://lists.clamav.net/cgi-bin/mailman/options/clamav-users or mailto:clamav-users-requ...@lists.clamav.net?subject=unsubscribe -- Cheers, Steve Twitter: @sanesecurity ___

Re: [clamav-users] Win.Trojan.Agent-1760811 FP with ssh-agent

Sorry for all the confusion. My testing earlier today was in error. OpenSSH version 7.2_p2 is in fact included with macOS Sierra 10.12 and includes the ssh-agent process which tests as infected with Win.Trojan.Agent-1760811 and is therefore a False Positive. I have submitted it to the web site

Re: [clamav-users] One final clamd Frage

* Brad Scalio : > When a clamscan is ran from cmdline or via cron is the virus signature > database checked before scanning commences It is loaded, thus the long startup time. > in a fashion that if we aren't using clamdscan then is there a need for > clamd to run, No. clamdscan together with c

Re: [clamav-users] One final clamd Frage

So if we are using only clamscan from a cronjob and freshclamd to update the VSD then no need to startup clamd correct? On Oct 12, 2016 5:35 AM, "Ralf Hildebrandt" wrote: > * Brad Scalio : > > When a clamscan is ran from cmdline or via cron is the virus signature > > database checked before scan

[clamav-users] Multiple logfiles for clamscan

Is there a way to log-to-syslog for clamscan runs? We pass the --log argument to write to an organizational defined log location for parsing for remote monitoring scripts but we also need to forward to arcsight collectors the scans for central management. I know clamd and freshclam log by default

Re: [clamav-users] Multiple logfiles for clamscan

Hi there, I tried to unsubscribe, but it did not work, what is the procedure for unsubscribing, I am going on leave, and don't want my mailbox to fill up... -Original Message- From: clamav-users [mailto:clamav-users-boun...@lists.clamav.net] On Behalf Of Brad Scalio Sent: 12 October 2016

Re: [clamav-users] Unsubscribe

Go to http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users and at the very bottom enter your e-mail address. -Al- On Wed, Oct 12, 2016 at 03:41 AM, Van Dalsen, Herbie wrote: > > Hi there, I tried to unsubscribe, but it did not work, what is the procedure > for unsubscribing, I am goin

Re: [clamav-users] Multiple logfiles for clamscan

On 10/12/16 12:25, Brad Scalio wrote: > Is there a way to log-to-syslog for clamscan runs? We pass the --log > argument to write to an organizational defined log location for parsing for > remote monitoring scripts but we also need to forward to arcsight > collectors the scans for central manageme

Re: [clamav-users] One final clamd Frage

On 12.10.16 06:15, Brad Scalio wrote: So if we are using only clamscan from a cronjob and freshclamd to update the VSD then no need to startup clamd correct? correct, but don't blame clamscan long signature loading time (and thus for long run time) On Oct 12, 2016 5:35 AM, "Ralf Hildebrandt"

Re: [clamav-users] One final clamd Frage

Am 12.10.2016 um 12:15 schrieb Brad Scalio: So if we are using only clamscan from a cronjob and freshclamd to update the VSD then no need to startup clamd correct? it's easy: if you don't use it you don't need it to start if you use clamscan and nothing else you don't use it On Oct 12, 2016

Re: [clamav-users] Unsubscribe

Am 12.10.2016 um 13:09 schrieb Al Varnell: Go to http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users and at the very bottom enter your e-mail address. no need to visit any webpage, just send the unsubscribe mail to the correct address and for *no single list on this planet* it's t

Re: [clamav-users] Encrypted Word doc/phishing attack

Hi Joel, On Wed, Oct 5, 2016 at 2:38 PM, Joel Esler (jesler) wrote: > >> On Oct 5, 2016, at 1:54 PM, Alex wrote: >> >> Hi, >> >>> Are you submitting these files to ClamAV? >>> >>> http://www.clamav.net/reports/malware >> >> Not always, primarily because the response time has been too long. >> I'

Re: [clamav-users] One final clamd Frage

Yes got it, many thanks for the replies -- gotta admit it's always a pleasure to post questions here as I know I will get a response, and sometimes some well deserved sarcasm. On Wed, Oct 12, 2016 at 8:14 AM, Reindl Harald wrote: > > > Am 12.10.2016 um 12:15 schrieb Brad Scalio: > >> So if we

Re: [clamav-users] Win.Trojan.Agent-1760811 FP with ssh-agent

I’ve dropped this sig. Thanks Al. Joel Esler jes...@cisco.com On Oct 12, 2016, at 4:07 AM, Al Varnell mailto:alvarn...@mac.com>> wrote: Sorry for all the confusion. My testing earlier today was in error. OpenSSH version 7.2_p2 is in fact included with macOS Sierra

Re: [clamav-users] Encrypted Word doc/phishing attack

Alex, I’ll follow up off list to verify what email you submitted them under. Joel Esler jes...@cisco.com On Oct 12, 2016, at 8:21 AM, Alex mailto:mysqlstud...@gmail.com>> wrote: Hi Joel, On Wed, Oct 5, 2016 at 2:38 PM, Joel Esler (jesler) mailto:jes...@cisco.com>>

Re: [clamav-users] Multiple logfiles for clamscan

On Wednesday 12 October 2016 06:41:39 Van Dalsen, Herbie wrote: > Hi there, I tried to unsubscribe, but it did not work, what is the > procedure for unsubscribing, I am going on leave, and don't want my > mailbox to fill up... > As with 99.9% of mailing list software, you must reply to the confi

Re: [clamav-users] unsubscribe

Unsubscribe Sent from my iPhone > On Oct 12, 2016, at 1:10 PM, Van Dalsen, Herbie > wrote: > > unsubscribe > > -Original Message- > From: clamav-users [mailto:clamav-users-boun...@lists.clamav.net] On Behalf > Of Brad Scalio > Sent: 12 October 2016 00:52 > To: ClamAV users ML > Subje

Re: [clamav-users] unsubscribe

Am 12.10.2016 um 16:40 schrieb james henrydoss: Unsubscribe are you kidding or why the hell did you not read the answers to that foolish "unsubscribe" post you are quoting? how did guys like you manage to subscribe without holding hand? List-Unsubscribe:

[clamav-users] Java.Malware.Agent-1756221 false positive still detected

We’ve got the netty-all.jar that is the subject of a recent false positive and subsequent fix: https://www.clamxav.com/BB/viewtopic.php?f=1&t=4761&sid=b5e35899ad6c2e6a132aa87031dc504c However, despite updating our definitions via freshclam, this is still hitting on that file. Has anyone else ex

Re: [clamav-users] Java.Malware.Agent-1756221 false positive still detected

Hi Andy, As this is more closely related to ClamXav rather than ClamAV, this request should be directed to ClamXav's support team at https://www.clamxav.com/contactus rather than here. Regards Mark > On 12 Oct 2016, at 4:27 pm, Andy Keller wrote: > > We’ve got the netty-all.jar that is the s

Re: [clamav-users] Java.Malware.Agent-1756221 false positive still detected

Will do, thanks. Sorry for the clutter. -- Andy Keller Cloud Security Manager | CISSP, CCSK, Security+ | Decision Lens andykel...@decisionlens.com o: (703) 399-3186 c: (419) 356-3419 On 10/12/16, 11:33 AM, "clamav-users on behalf of Mark Allan" wrote: Hi A

Re: [clamav-users] Java.Malware.Agent-1756221 false positive still detected

Signature has been dropped. Thank you. -- joel esler |Talos: manager|jes...@cisco.com On Oct 12, 2016, at 11:44 AM, Andy Keller mailto:andykel...@decisionlens.com>> wrote: Will do, thanks. Sorry for the clutter. -- Andy Keller Cloud Security Manager | CISSP, CCSK,

Re: [clamav-users] unsubscribe

On 12/10/16 16:57, Reindl Harald wrote: > > are you kidding or why the hell did you not read the answers to that > foolish "unsubscribe" post you are quoting? how did guys like you manage > to subscribe without holding hand? > >> permanenttsb.ie Bankers. Very worrying ;-) signature.asc

Re: [clamav-users] unsubscribe

Am 13.10.2016 um 01:13 schrieb John Crisp: On 12/10/16 16:57, Reindl Harald wrote: are you kidding or why the hell did you not read the answers to that foolish "unsubscribe" post you are quoting? how did guys like you manage to subscribe without holding hand? permanenttsb.ie Bankers

Re: [clamav-users] Multiple logfiles for clamscan

Thanks Vlad for the suggestion ... Tried it today and it's a good solution for the functionality we need. ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml