Re: [clamav-users] update report

Interesting. Can you give us a -debug? Sent from my iPhone > On Jun 30, 2018, at 20:22, Gene Heskett wrote: > > I'm still logging this about every other freshclam run: > > Sat Jun 30 18:49:53 2018 -> nonblock_connect: connect(): fd=4 errno=101: > Network is unreachable > Sat Jun 30 18:49:53

Re: [clamav-users] Is there any documentation on what signatures mean?

Who needs to add a link to what, and what would you like to see? Sent from my iPhone > On Jun 29, 2018, at 19:11, Nikita Yerenkov-Scott > wrote: > > Is there any chance that they will add a way of people giving a > description of why they think that it is malware? _

Re: [clamav-users] VirusDB Updates Broken?

:1::6810:b98a (due to previous errors) > Ignoring mirror 2400:cb00:2048:1::6810:bb8a (due to previous errors) > ERROR: Can't download daily.cvd from database.clamav.net > Giving up on database.clamav.net... > > -Original Message- > From: clamav-users

Re: [clamav-users] Mirror Load + ClamAV Updates

n I just leave it. Adolf Belka Sent from my Desktop Computer On 27/06/18 23:57, Joel Esler (jesler) wrote: Following up to this email from yesterday. We've been adjusting over the past 24 hours for different zones throughout the world. Any feedback? -- Joel Esler Sr. Manager Open Source, D

Re: [clamav-users] OT: DMARC

es, if you would be able to fix that > with *your* DNS records DKIM would be useless at all > > Am 28.06.2018 um 18:49 schrieb Joel Esler (jesler): >> Mailman is used, and Mailman will break dkim if not properly configured in >> DNS. We are working with our operations t

Re: [clamav-users] OT: DMARC

Mailman is used, and Mailman will break dkim if not properly configured in DNS. We are working with our operations team to create and correct the DNS entries needed. Sent from my iPad > On Jun 28, 2018, at 12:40 PM, Benny Pedersen wrote: > > > > On 28. jun. 2018 18.11.18 Dianne Skoll wrot

Re: [clamav-users] Mirror Load + ClamAV Updates

Following up to this email from yesterday. We've been adjusting over the past 24 hours for different zones throughout the world. Any feedback? -- Joel Esler Sr. Manager Open Source, Design, Web, and Education Talos Group http://www.talosintelligence.com On Jun 26, 2018, at 5:17 PM,

Re: [clamav-users] Tweet by ClamAV - Cloudflare

ipt disabled (my default way > of browsing). > > > On Wed, 27 Jun 2018 15:02:25 + > "Joel Esler (jesler)" wrote: > >> It's a little deceiving at that scale, the dark green dot in that >> area is actually San Diego. >> >> [cid:F8F422B

Re: [clamav-users] Tweet by ClamAV - Cloudflare

uldn't they have had really good service to begin with? On Wed, 27 Jun 2018 14:25:47 + "Joel Esler (jesler)" mailto:jes...@cisco.com>> wrote: I generally wouldn’t copy a Tweet over to the mailing list, but I though you all might like to see this. — Joel ClamAV (‪@clamav‬

[clamav-users] Tweet by ClamAV - Cloudflare

I generally wouldn’t copy a Tweet over to the mailing list, but I though you all might like to see this. — Joel ClamAV (‪@clamav‬) 6/27/18, 10:13 Improvements since we've moved the update infrastructure to ‪@Cl

Re: [clamav-users] VirusDB Updates Broken?

iPhone > On Jun 27, 2018, at 06:40, Steve Basford > wrote: > > >> On Wed, June 27, 2018 11:32 am, Joel Esler (jesler) wrote: >> Just fixed it. >> >> > Thanks Joel... all working now... > > main.cld is up to date (version: 58, sigs: 4566249, f-l

Re: [clamav-users] VirusDB Updates Broken?

Just fixed it. Sent from my iPhone > On Jun 27, 2018, at 04:54, Michael Da Cova wrote: > > same here getting errors with the gb sites > > >> On 27/06/18 09:45, Steve Basford wrote: >>> On Wed, June 27, 2018 2:42 am, Joel Esler (jesler) wrote: >>> Db.

Re: [clamav-users] VirusDB Updates Broken?

Okay, that should be fixed. Sent from my iPhone > On Jun 27, 2018, at 04:46, Steve Basford > wrote: > > >> On Wed, June 27, 2018 2:42 am, Joel Esler (jesler) wrote: >> Db.us<http://Db.us> should be good on both now. >> > >> Worked perfectly

Re: [clamav-users] VirusDB Updates Broken?

26, 2018 at 05:40 PM, Joel Esler (jesler) wrote: I just purged db.us<http://db.us/>’s cache. Can you try? Sent from my iPhone On Jun 26, 2018, at 20:24, Paul Kosinski mailto:clamav-us...@iment.com>> wrote: Joel, Sorry to have been somewhat cryptic: I assumed the context of the

Re: [clamav-users] VirusDB Updates Broken?

allegedly "not synchronized". > > The result of all this confusion is that the last time I got a > daily.cvd via freshclam was before CloudFlare: > > Monday 25 June 2018 at 09:06:26 > Database updated (6556585 signatures) from db.us.clamav.net (IP: > 200.236.31.1)

[clamav-users] Mirror Load + ClamAV Updates

seeking feedback about the stability of this, or if any updates are failing. (I have seen the thread that is currently on-going). If you having problems downloading from the ClamAV mirror infrastructure, please delete your mirrors.dat file and start over. -- Joel Esler Sr. Manager Open Source

Re: [clamav-users] VirusDB Updates Broken?

ided. >> >> On Tue, Jun 26, 2018, at 06:41, Robin Bourne wrote: >>> Joel, >>> >>> I'm now getting "WARNING: Mirror 104.16.188.138 is not >>> synchronized." when using the CDN. Could it be related to the >>> changes ma

Re: [clamav-users] VirusDB Updates Broken?

Al, Thanks. We are aware. Looking into it. Sent from my iPhone > On Jun 24, 2018, at 23:12, Al Varnell wrote: > > Yes, but all but one was empty. > > Sent from my iPad > > -Al- > >> On Jun 24, 2018, at 19:42, Paul Kosinski wrote: >> >> I've gotten several daily.cvd updates in that per

Re: [clamav-users] clamav list spf problem

> On Jun 21, 2018, at 3:54 AM, Tilman Schmidt wrote: > >> Am 20.06.2018 um 19:14 schrieb Andrew McGlashan: >> >> This is an opportunity to fix things, such an opportunity should not >> lost, especially if it helps more people to understand the problems with >> having too liberal SPF rules (defe

Re: [clamav-users] Server inside DMZ - No internet access - Howto update definitions

Plus the diff files, if you are using freshclam. We much prefer that you download using freshclam, so that diff Cvds are available. Saves on bandwidth. Sent from my iPhone On Jun 19, 2018, at 07:45, SCOTT PACKARD wrote: >> Is there a way that I can copy the files from another server inte

Re: [clamav-users] Mirrors not responding?

Oh sorry, dB.gb. Very interesting. Thank you for the follow up Sent from my iPhone > On May 20, 2018, at 11:06, Joel Esler (jesler) wrote: > > What zone? > > Sent from my iPhone > >> On May 20, 2018, at 08:34, Brian Morrison wrote: >> >> On Sat, 19 Ma

Re: [clamav-users] Mirrors not responding?

What zone? Sent from my iPhone > On May 20, 2018, at 08:34, Brian Morrison wrote: > > On Sat, 19 May 2018 12:23:29 +0000 > "Joel Esler (jesler)" wrote: > >> Try removing your mirrors.dat. > > Fixed itself overnight before I did that, but thanks for th

Re: [clamav-users] DNS entry of db.jp.clamav.net disappeared?

Sorry for my lack of response. We went to fix it, and I didn’t acknowledge your email. Sent from my iPhone > On May 20, 2018, at 03:06, Yasuhiro KIMURA wrote: > > From: Al Varnell > Subject: Re: [clamav-users] DNS entry of db.jp.clamav.net disappeared? > Date: Sat, 19 May 2018 03:15:09 -07

[clamav-users] Db.cn was moved to CDN last night, and more CDN stuff

We are letting the traffic settle back down after the transfer of dB.cn. What we have discovered are there a ton of ClamAV installations that have not been able to update in a long time or are pointed at a dead mirror in the zone. When we transfer a zone to Cloudflare, (our CDN provider, p

Re: [clamav-users] Mirrors not responding?

Try removing your mirrors.dat. Sent from my iPhone > On May 19, 2018, at 05:45, Brian Morrison wrote: > > On Fri, 18 May 2018 15:18:06 +0000 > "Joel Esler (jesler)" wrote: > >> db.gb was overlooked in the move of db.uk<http://db.uk> to our CDN >>

Re: [clamav-users] Attachments

This should be fixed. On May 15, 2018, at 8:13 AM, Groach via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: From: Groach mailto:groachmail-stopspammin...@yahoo.com>> Subject: Re: [clamav-users] Attachments Date: May 15, 2018 at 8:13:53 AM EDT To: ClamAV users ML mailto:clamav-us

Re: [clamav-users] Test Message

A J1M 1Z7 > > > >"What's going on around here?" - RS > >Having a technology issue? > >Visit https://octopus.ubishops.ca to place a ticket directly > into our ITS work order system. This is the best way to get your

Re: [clamav-users] Test Message

ilto:clamav-users-boun...@lists.clamav.net>> on behalf of "Joel Esler (jesler) via clamav-users" mailto:clamav-users@lists.clamav.net>> Reply-To: ClamAV users ML mailto:clamav-users@lists.clamav.net>> Date: Friday, May 18, 2018 at 3:01 PM To: ClamAV users ML mailt

[clamav-users] Test Message

--- Begin Message --- I made some alterations to this clamav-users list. Hopefully that stops the errors that people seem to be having? -- Joel Esler Sr. Manager Open Source, Design, Web, and Education Talos Group http://www.talosintelligence.com --- End Message

Re: [clamav-users] Mirrors not responding?

--- Begin Message --- db.gb was overlooked in the move of db.uk to our CDN for freshclam. We just moved db.gb over to our CDN. Problem should clear itself up shortly. On May 18, 2018, at 10:45 AM, Brian Morrison via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Fr

Re: [clamav-users] clamsubmit error code 500

--- Begin Message --- One of the backend systems that handles the submissions was on the fritz. I kicked it. Should be okay now. -- Joel Esler Sr. Manager Open Source, Design, Web, and Education Talos Group http://www.talosintelligence.com On May 15, 2018, at 10:16 AM, Arnaud Jacques via

Re: [clamav-users] clamsubmit error

--- Begin Message --- We may be able to provide you a better way to do this, if you have a massive amount? > On May 11, 2018, at 9:20 AM, Arnaud Jacques > wrote: > > Hello Jesler, > > >> Is that you sending us all those submissions?! Fantastic amount! > > Yes it is me. > Is it too much sam

Re: [clamav-users] how long i will get up-to-date AV signatures for version 0.99.2

0.99.2 is still supported, and will remain supported officially until we ship 0.101.0, according to our EOL guidelines. But I will also tell you that we keep testing older versions for awhile, right up until they break. I think we test as far back as 0.97ish, I'd have to check to be sure. >

Re: [clamav-users] clamsubmit error

Arnaud, Is that you sending us all those submissions?! Fantastic amount! > On May 9, 2018, at 10:07 AM, Arnaud Jacques > wrote: > > Hello, > >> clamsubmit with ClamAV 0.100.0 should work fine. I am surprised to see that >> error. We fixed code in the near vicinity to that error statement

Re: [clamav-users] clamsubmit error

On May 9, 2018, at 3:43 PM, Benny Pedersen mailto:m...@junc.eu>> wrote: Micah Snyder (micasnyd) skrev den 2018-05-09 19:39: The web interface, however, can do both http and https. if users can do 2 things, most will do incorrect way turning off ssl is not a good option to any problem We wil

Re: [clamav-users] Is it legal to use ClamAV on a Windows Server in a SMB environment?

ClamAV's license is GPLv2. I don't see why it wouldn't be legal to do so. On May 9, 2018, at 2:11 PM, Allen Morrow mailto:allen.mor...@withrossgroup.com>> wrote: Is it legal to use ClamAV on a Windows Server in a SMB environment? [cid:image001.jpg@01D327DB.1656BA60] ALLEN MORROW 405.264.2264

Re: [clamav-users] fp Img.Malware.Agent-6499558-0

Whoops, that’s an old link https://www.clamav.net/reports/fp Sent from my iPhone On May 6, 2018, at 21:24, Joel Esler (jesler) mailto:jes...@cisco.com>> wrote: Dear Benny, You should submit a false positive report. The false positive submission form can be found here: http://www.clam

Re: [clamav-users] fp Img.Malware.Agent-6499558-0

Dear Benny, You should submit a false positive report. The false positive submission form can be found here: http://www.clamav.net/lang/en/sendvirus/submit-fp/ Sent from my iPhone > On May 6, 2018, at 20:55, Benny Pedersen wrote: > > https://www.virustotal.com/file/074fe51b41596a05f5c04ba14c

Re: [clamav-users] clamsubmit error

Files that come in via the website, for the most part, are processed automatically. There is a lot of automation going on with web submissions. > On May 5, 2018, at 4:29 PM, Benny Pedersen wrote: > > Joel Esler (jesler) skrev den 2018-05-05 19:56: >> for I in `ls -l /tmp/file

Re: [clamav-users] clamsubmit error

Are you using a current version of clamsubmit? > On May 5, 2018, at 3:21 PM, Walter H. wrote: > > On 05.05.2018 07:38, Arnaud Jacques wrote: >> Hello, >> >> Wanted to send some files to ClamAV using clamsubmit, got this error : >> >> invalid cfduid and/or session id values provided by clamav.n

Re: [clamav-users] clamsubmit error

for I in `ls -l /tmp/files/malicious` do clamsubmit $I; done > On May 5, 2018, at 8:30 AM, Benny Pedersen wrote: > > Arnaud Jacques skrev den 2018-05-05 07:38: > >> I did : >> clamsubmit -e webmas...@securiteinfo.com -N Arnaud Jacques -n myfile > > space is new arg ? > > clamsubmit -e webmas.

Re: [clamav-users] clamsubmit error

I like this idea. > On May 5, 2018, at 8:30 AM, Benny Pedersen wrote: > > Arnaud Jacques skrev den 2018-05-05 07:38: > >> I did : >> clamsubmit -e webmas...@securiteinfo.com -N Arnaud Jacques -n myfile > > space is new arg ? > > clamsubmit -e webmas...@securiteinfo.com -N "Arnaud Jacques" -n

Re: [clamav-users] Malwarepatrol false positives

That shouldn’t be part of the official ruleset. Sent from my iPhone > On Apr 28, 2018, at 17:32, Alex wrote: > > Hi, > > So I decided to check which MBL hits there were today, and it seems > they're now blocking https://bit.ly > > $ sigtool --find-sigs MBL_6913896 |sigtool --decode-sigs > V

[clamav-users] ClamAV® blog: ClamAV 0.100.0 has been released!

https://blog.clamav.net/2018/04/clamav-01000-has-been-released.html ClamAV 0.100.0 has been released! Join us as we welcome ClamAV 0.100.0 to the family officially. You can grab it, as always, from the downloads page on ClamAV.net. ClamAV 0.100.0 is a featur

[clamav-users] ClamAV® blog: ClamAV Mirror improvements

ty of downloads. You may see mirrors fall out of rotation, and new ones inserted. This is intentional. If there are any questions, or issues, please address them on the ClamAV-Mirrors list. Thank you for your patience. -- Joel Esler Manager Open Source, Design, Web, and Education Talos Group

Re: [clamav-users] [clamav-virusdb] Signatures Published daily - 24446

It was replaced with better detection. On Apr 3, 2018, at 8:26 AM, Al Varnell mailto:alvarn...@mac.com>> wrote: * Osx.Malware.Agent-6453877-0 Not sure why you would drop this as it's clearly part of the OSX.Coldroot RAT VT:

Re: [clamav-users] Errors connecting to mirrors

Inline’ Sent from my iPad > On Mar 28, 2018, at 5:34 PM, Alex wrote: > > Is there a known current problem? Not that I am aware of. Please file a mirror error ticket at bugzilla.clamav.net and I’ll get someone to investigate it? > Is there a site where we can go to > check mirror status? Not

Re: [clamav-users] Errors connecting to mirrors

Please file errors here: https://bugzilla.clamav.net/enter_bug.cgi?product=Mirror%20Issues With Mirrors? Thanks. -- Joel Esler Manager Open Source, Design, Web, and Education Talos Group http://www.talosintelligence.com On Mar 23, 2018, at 1:41 PM, G.W. Haywood mailto:cla

[clamav-users] ClamAV® blog: ClamAV 0.100.0-rc has been posted!

http://blog.clamav.net/2018/03/clamav-01000-rc-has-been-posted.html ClamAV 0.100.0-rc has been posted! ClamAV 0.100.0 is a feature release (candidate) which includes many code submissions from the ClamAV community. As always, it can be downloaded from our downloads site on clamav.net

Re: [clamav-users] Signatures once again 2 days old

We have a new cvd building now. We do have an alert system, but the alert system, for some reason didn’t email us the alert. We’re looking into that. Sent from my iPhone > On Mar 18, 2018, at 12:07, Andy Schmidt wrote: > > This has become a regular occurrence - but since no one else has me

Re: [clamav-users] ClamAV? blog: ClamAV 0.99.4 has been released!

Okay, let's call an end to this thread, I'll handle it differently. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Mar 8, 2018, at 1:15 PM, G.W. Haywood mailto:cla...@jubileegroup.co.uk>> wrote: Hi Joel, On Thu, 8 Mar 2018, Joel Esler

Re: [clamav-users] ClamAV(R) blog: ClamAV 0.99.4 has been released!

s and suggestions unless this is a warm and welcoming community. That's what it needs to be. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Mar 8, 2018, at 4:08 AM, Tilman Schmidt mailto:tschm...@cardtech.de>> wrote: What definitely isn't f

Re: [clamav-users] ClamAV(R) blog: ClamAV 0.99.4 has been released!

Which is perfectly fine. The mailing lists are the correct place for people to ask for help. Should people read the archives? Yes. Should people read FAQs? Yes. But largely, they won't. So we need to help our community. -- Joel Esler | Talos: Manager | jes...@cisco.com<ma

Re: [clamav-users] ClamAV® blog: ClamAV 0.99.4 has been released!

Can you show us the warning you are receiving? -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Mar 7, 2018, at 12:05 PM, Brian Fluet-Denver Equip of Chlt mailto:d...@dec-clt.com>> wrote: I just subscribed to the list in the hopes of understandi

Re: [clamav-users] Blank Signature Updates

Thank you Al. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Mar 4, 2018, at 12:51 AM, Al Varnell mailto:alvarn...@mac.com>> wrote: Seems to be working again with 24361 this evening. -Al- On Sat, Mar 03, 2018 at 02:21 AM, Al Varnell wrote: All

Re: [clamav-users] ClamAV® blog: ClamAV 0.99.4 has been released!

Understood. Sent from my iPhone > On Mar 2, 2018, at 03:28, lukn wrote: > >> On 02.03.2018 09:21, Al Varnell wrote: >> They just need to update DNS with updated version when they come in. Not a >> big deal. It only results in display of the warning. Should not impact >> operations in any w

[clamav-users] ClamAV® blog: ClamAV 0.99.4 has been released!

. Thank you to the following ClamAV community members for your code submissions and bug reports! Alberto Garcia Bernhard Vogel Francisco Oca Hanno Böck Jeffrey Yasskin Keith Jones mtowalski Suleman Ali yongji.oy xrym Stay tuned for the upcoming 0.100.0 release candidate! -- Joel Esler

[clamav-users] test

Feel free to ignore this. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> ___ clamav-users mailing list clamav-users@lists.clamav.net http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us b

Re: [clamav-users] Possible FP on Doc.Dropper.Agent-6447876-0?

It is possible, using a service we have here: https://talosintelligence.com/sha_searches <https://talosintelligence.com/sha_searches> To look up some additional details about files, if interested. SHA256 required. -- Joel Esler | Talos: Manager | jes...@cisco.com <mailto:jes...@

Re: [clamav-users] Commercial License

ered certain things.. It's an idea. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Feb 14, 2018, at 10:25 AM, McRoy, Jeffrey (GE Healthcare) mailto:jeffrey.mc...@ge.com>> wrote: Hi Everyone, I’ve heard of some malware scanners that have c

Re: [clamav-users] Please guide me

As the community manager for both Immunet and ClamAV, Al is correct. Sent from my iPhone > On Feb 14, 2018, at 02:11, Al Varnell wrote: > > Again, I'll point out that Immunet comes from > the same developer as does ClamAV, so not 3rd party at all. > > I don't

[clamav-users] Failing Mirrors (or other Mirror issues)

All -- We are looking for bugs for failing mirrors or any issues with mirrors, just to get them all in once place, it would be fantastic if you see failing mirrors, to throw us a ticket here: https://bugzilla.clamav.net/enter_bug.cgi?product=Mirror%20Issues Thank you. -- Joel Esler | Talos

Re: [clamav-users] submitting phish samples - stripped

Generally speaking, it's better for us to have as much detail as possible. Samples that you submit through the website (either one) are not shared with partners (unless you check the "share with partners" checkbox) -- Joel Esler | Talos: Manager | jes...@cisco.com<mailt

Re: [clamav-users] submitting phish samples - stripped

sers to use. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Feb 8, 2018, at 3:52 AM, Matus UHLAR - fantomas mailto:uh...@fantomas.sk>> wrote: Hello, when submitting phish samples, should I use the same form as for malware? (https://www.clamav.ne

[clamav-users] ClamAV® blog: ClamAV 0.100.0 beta has been released!

gt; or via bugzilla<https://bugzilla.clamav.net/> -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> ___ clamav-users mailing list clamav-users@lists.clamav.net http://lists.clamav.net/cgi-bin/mailman/listin

Re: [clamav-users] Daily version 24256

Understood the concern. But managing the evil in between an old version of the cvd being used in perpetuity because someone found the link on a clamav-users archive, or working with freshclam to stay current... it's a hard road. -- Joel Esler | Talos: Manager | jes...@cisco.com<ma

Re: [clamav-users] Daily version 24256

This shouldn't be necessary, we're way past that on Daily.cvd files now, and the issue has been corrected. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Jan 30, 2018, at 8:56 AM, Paul Kosinski mailto:clamav-us...@iment.com>> wrote:

Re: [clamav-users] GPG key where? (was: Re: GPG signature problem with clamav-0.99.2.tar.gz)

That's the correct one, thank you Scott. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Jan 29, 2018, at 6:13 PM, SCOTT PACKARD mailto:scott.pack...@raytheon.com>> wrote: https://talosintelligence.com/about click on box "Talos PGP P

Re: [clamav-users] ClamAV® blog: ClamAV 0.99.3 has been released!

There are outside issues that prevented us from announcing the CVEs at that time. It's not because we were trying to hide something. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Jan 26, 2018, at 2:39 PM, Andreas Schulze mailto:andreas.schu.

[clamav-users] ClamAV® blog: Update on the recent "File Descriptors" issue in ClamAV

this issue from reocurring. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> ___ clamav-users mailing list clamav-users@lists.clamav.net http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build

Re: [clamav-users] How the bad signature happened - conjecture (was Re: URGENT: Clamd is wedged on multiple installations)

Reio, Thanks, I was just about to send this out. A new daily.cvd is now shipping. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Jan 26, 2018, at 12:35 PM, Reio Remma mailto:r...@mrstuudio.ee>> wrote: Hello! News from the front: daily

Re: [clamav-users] How the bad signature happened - conjecture (was Re: URGENT: Clamd is wedged on multiple installations)

other people to see this action on the list. So while we regret the issue that this signature caused (and we will fix, not only the signature, but the code itself in an upcoming release), I am super proud of the community that came together and solved the problem. -- Joel Esler | Talos: Manager

Re: [clamav-users] Max Open File Descriptors issue found this morning

r side and are currently building a new daily -- Joel Esler Manager Open Source, Design, Web, and Education Talos Group http://www.talosintelligence.com. ___ clamav-users mailing list clamav-users@lists.clamav.net http://lists.clamav.net/cgi-bin/mailma

[clamav-users] Max Open File Descriptors issue found this morning

loops which f**g idiot is responsible for that? Unfortunately Reindl, from what you reported, and your eloquent description, I'm not sure what the issue is. I'm not seeing that issue on my side. Am 26.01.2018 um 15:40 schrieb Joel Esler (jesler): As previously mentioned, if you downlo

Re: [clamav-users] ClamAV® blog: ClamAV 0.99.3 has been released!

On Jan 26, 2018, at 9:49 AM, Reindl Harald mailto:h.rei...@thelounge.net>> wrote: Am 26.01.2018 um 15:40 schrieb Joel Esler (jesler): As previously mentioned, if you downloaded the beta version of ClamAV 0.99.3, you will need to completely uninstall it and do a fresh install wi

[clamav-users] ClamAV® blog: ClamAV 0.99.3 has been released!

can download the latest copy of ClamAV from our website ClamAV.net/downloads<http://www.clamav.net/downloads> Please continue the discussion on our mailing lists at http://www.clamav.net/contact#ml -- Joel Esler | Talos: Manager | jes...@cisco.com<ma

Re: [clamav-users] Announcement missing

You're right. That's my fault. I'll correct that here in a second after I read through all the emails in my ClamAV folder. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Jan 26, 2018, at 8:22 AM, Andreas Schulze mailto:andreas.schu...@

[clamav-users] ClamAV® blog: ClamAV Version number adjustment

ion this change will cause, but we feel this will impact the least number of community members, while allowing us flexibility to quickly address critical bugs or security issues, without undue issues with other work underway. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes..

Re: [clamav-users] Whither ClamAV 0.99.2.1 ?

Mark, Yes. I apologize for that. I put out the blog post, but then we retracted it as we are looking into any issues caused by the version numbering we are planning on using. We've been made aware of a couple issues, and are working through them now. -- Joel Esler | Talos: Manager

Re: [clamav-users] Unable to upload a false positive.

We know about this issue and are currently working on fixing the issue. Please bear with us. It’s a specific corner case that some people are running into. For instance, are you uploading the file before you file out the form? Sent from my iPad > On Jan 17, 2018, at 3:53 PM, Ramos Alexiou

[clamav-users] ClamAV® blog: ClamAV List Server Upgrade

a notification via the lists, blog, Twitter, and Facebook when the server is back up. Thanks for your patience during our maintenance! -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> ___ clamav-users mailin

Re: [clamav-users] Recommended workstation usage?

You may want to add “ELF….” To your count. Perhaps even “OSX….” -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Dec 20, 2017, at 7:02 AM, Maarten Broekman mailto:maarten.broek...@gmail.com>> wrote: There are far more than 31 signatures that have t

Re: [clamav-users] ClamAV(R) blog: ClamAV 0.99.3 beta2 has been released!

Thanks Steve and Tom. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Dec 19, 2017, at 11:33 AM, Steven Morgan mailto:smor...@sourcefire.com>> wrote: https://bugzilla.clamav.net/show_bug.cgi?id=12000 is the ticket. Steve On Tue, Dec 19, 2017

Re: [clamav-users] ClamAV® blog: ClamAV 0.99.3 beta2 has been released!

Can you please open a ticket in bugzilla.clamav.net<http://bugzilla.clamav.net>? -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Dec 19, 2017, at 7:29 AM, Andreas Schulze mailto:andreas.schu...@datev.de>> wrote: Am 18.12.2017 um 18:06

[clamav-users] ClamAV® blog: ClamAV 0.99.3 beta2 has been released!

ng beta2 for further testing while we resolve our small list of > known issues in the background as we are prepping for "General Availability". > If you have the ability to download and use beta2 on your network, please > do. Thanks! -- Joel Esler | Talos: Manager | jes...@c

Re: [clamav-users] Cannot send virus sample through https://www.clamav.net/reports/malware

I’ve adjusted some settings. Please try again. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Dec 11, 2017, at 9:02 AM, Matteo Italia mailto:mat...@mitalia.net>> wrote: Hello Joel, I receive a page containing this information: Sorry, y

Re: [clamav-users] Cannot send virus sample through https://www.clamav.net/reports/malware

What is the error you are receiving from Cloudflare? I need some details. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Dec 11, 2017, at 3:48 AM, Matteo Italia mailto:mat...@mitalia.net>> wrote: Hello, I'm trying to submit a virus sampl

Re: [clamav-users] ClamAV - Open Source License

On Nov 29, 2017, at 1:21 PM, Peggy Anstett mailto:peggy.anst...@relativity.com>> wrote: Thanks Kevin! In the code itself there are about 10 different license files (Apache, BSD, etc) with no explanation as to whether they apply to certain parts of the library. Hence the confusion The parts

Re: [clamav-users] Virus Malvare not detected

Doc.Dropper.Agent is automated. Sounds like someone submitted the file to Clamav.net<http://Clamav.net> or one my other automated systems that produces detection. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Nov 15, 2017, at 7:09 PM

Re: [clamav-users] Virus Malvare not detected

Please submit malware samples to ClamAV.net Sent from my iPhone On Nov 14, 2017, at 6:36 AM, Emanuel mailto:emanuel.gonza...@donweb.com>> wrote: Hello, I received two docs files in a email with the Subject "Invoice". The attachment is a malware virus, clamav not detected th

Re: [clamav-users] FreshClam - DNS issues since October 31st

Bill, We have taken some recent steps to resolve these issues. Please let us know if they persist. Sent from my iPhone On Nov 13, 2017, at 5:37 PM, Bill Maidment mailto:b...@maidment.me>> wrote: I'm still getting a mixed bag of results on db.AU Sometimes it works and other times I get the fo

Re: [clamav-users] Freshclam Fails

Looks like your machine can’t contact database.clamav.net Sent from my iPhone On Nov 9, 2017, at 11:24 PM, Krishnakumar Nair mailto:krnair...@gmail.com>> wrote: Hi Guys, any idea on this, clamav running in aix box. WARNING: Can't get information about database.cla

Re: [clamav-users] FreshClam - DNS issues since October 31st

The team working on these issues is seeing these emails, so it’s good that you are writing in, if you are still experiencing issues. Sent from my iPad On Nov 8, 2017, at 9:05 AM, Simon Mousey Smith mailto:simonsmith5...@gmail.com>> wrote: Maybe not every day but every week maybe? Has the issu

Re: [clamav-users] fail updates

It would be helpful, if, starting now, deleting mirrors.dat and *then* telling us about failing mirrors…. Cause…. We’ve done many changes in the past month, it would be good to start from a clean slate. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On

Re: [clamav-users] update mirror trouble?

If you have list of mirrors that are broken, it would be helpful to have that list, and what is broken about them. About a month ago, we went through a removed a “ton”* of broken ones. *ton means "a lot”. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com&g

Re: [clamav-users] update mirror trouble?

This should be resolving itself as we speak. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Nov 6, 2017, at 4:47 AM, Simon Mousey Smith mailto:simonsmith5...@gmail.com>> wrote: Hi, Same here still having problems but slightly different C

Re: [clamav-users] freshclam broken

This should be resolving itself as we speak. We found a lingering error to some mirrors and it should be fixed. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Nov 5, 2017, at 11:49 PM, Gene Heskett mailto:ghesk...@shentel.net>> wrote: On

Re: [clamav-users] freshclam broken

bear with us. I will provide another status update later in the day, and again, I apologize for not sending out a note to the users list. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Nov 3, 2017, at 8:54 AM, Reindl Harald mailto:h.rei...@theloun

Re: [clamav-users] FreshClam Mirrors - daily.cld stuck at version: 24010, safebrowsing cdiff missing.

we’ve ran into a few speed bumps. We should have everything back up and running in the next hour or so, so please bear with us. I will provide another status update later in the day, and again, I apologize for not sending out a note to the users list. -- Joel Esler | Talos: Manager | jes

[clamav-users] Mirror Sync Outage for ClamAV updates

mirrors, this means that currently, ClamAV AV updates are currently not available. Our operations team is currently working on the issue, and we will provide updates as needed. -- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.

<    1   2   3   4   5   6   7   8   9   10   >