Specifically, "misunderstanding" configuration options have led to
interesting & publicly undisclosed discoveries useful to pen testers.
:-)
--
Sincerely,
Nathan Gibbs
On 9/28/2017 17:45, Mickey Sola wrote:
> That's because you've gotten to the heart of the matter.
>
>
Clamav Common Execution Environment patch set.
CCEE is a patch set to the ClamAV source that does the following:
1. Implements fixes for bugs 1754 and 2727.
2. Adds additional functionality to the software.
http://www.cmpublishers.com/oss/#ccee
Enjoy:-)
--
Sincerely,
Nathan Gibbs
Christ
,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
isn't broken.
;-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http
to scan files by
date?
clamscan itself isn't that smart, but if you are using unix, find could
feed a list of things to clamscan.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
:
#!/bin/sh
/usr/bin/logger -t clamd -p local1.alert $CLAM_VIRUSEVENT_FILENAME:
$CLAM_VIRUSEVENT_VIRUSNAME FOUND
External events to syslog, now that is a cool idea.
Both for CLUES CCEE.
Thanks, I'll look into it.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
}|[.[:digit:]]{7,15})
Perfect it isn't, but its better than what was there, which was nothing.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help
IP address it is about to try, reading what follows
the try will usually tell you if it worked or not.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
Log messages for bug 2727 attempts in freshclam cleaned up.
http://www.cmpublishers.com/oss/#ccee
Enjoy:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
good point.
They could get it if they really needed it.
Asking the user base for it is kind of sad.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help
logs show successful update sources in the last line, but not when there
is no update.
Which log messages need the IP?
I'm testing the next CCEE patch set, so I could possibly slip those
changes in before release.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
, a mirror
would be an option, but not right now.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit
required either.
CLAM BAKE!
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
are already running local mirror configurations
to do this, but obviously it isn't enough.
The global infrastructure is still stressed.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
On 9/7/2011 7:13 AM, Luca Gibelli wrote:
If anyone can provide a CVD mirror in US, please contact me directly.
We definitely need more capacity in the db.us.clamav.net RR.
If I had the bandwidth, I would.
When I have the bandwidth, I intend to.
--
Sincerely,
Nathan Gibbs
Systems
: 110pop3
Open TCP Port: 143imap
Open TCP Port: 221fln-spx
Bad Sysadmin, no coffee!
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
old.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http
On 7/29/2011 11:41 AM, Török Edwin wrote:
On 07/29/2011 06:36 PM, Nathan Gibbs wrote:
Stable is still at 0.97
Isn't stable at 0.97.1? (via stable-updates):
http://packages.qa.debian.org/c/clamav/news/20110704T135601Z.html
Candidate: 0.97.1+dfsg-1~squeeze1
Version table:
0.97.1
On 7/29/2011 12:31 PM, Török Edwin wrote:
On 07/29/2011 07:30 PM, Nathan Gibbs wrote:
maybe it hasn't come over to i686 land yet.
Here is what I am seeing on my hosts.
0.97+dfsg-2~squeeze1
It will get here eventually.
:-)
Do you have squeeze/updates
Got that
and squeeze-updates
Don't
On 7/27/2011 12:27 AM, Gianluigi Tiesi wrote:
On 27/07/2011 3.50, Nathan Gibbs wrote:
No (at least atm). With the server signing code you could create
your own key, setup a server infrastructure with signing,
distribute your cvd files
That would be cool, I'd like to try that.
, and finally
On 7/26/2011 2:03 PM, Jim Preston wrote:
On 07/25/2011 12:36 PM, Nathan Gibbs wrote:
Because as covered on the devel list, us lowly users can't be allowed to
sign our own sigs.
:-)
Is this or is this not open source software?
I like the idea of having the sigs checked by ClamAV first
see a reason to join.
Now I would like to build my sig into a signed cvd. Signed by my own
key. Just to see how it all works.
Any chance you guys would be interested in open sourcing the code to the
signing server?
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
On 7/26/2011 5:40 PM, Beppe Di Maio wrote:
On Mon, Jul 25, 2011 at 9:36 PM, Nathan Gibbs nat...@cmpublishers.com wrote:
Good QA, accountability, distribution, how convenient.
Now what if I want to produce and sign my own cvd's for my own use, and
not hand them to you first.
I guess
On 7/26/2011 8:31 PM, Chuck Swiger wrote:
On Jul 26, 2011, at 4:53 PM, Nathan Gibbs wrote:
As I stated previously. Open source the signing methodology and /
or code. This is an open source project, Right?
ClamAV is primarily under the GPLv2 license, yes, and various
components like bzip
On 7/26/2011 8:59 PM, Gianluigi Tiesi wrote:
On 27/07/2011 2.17, Nathan Gibbs wrote:
On 7/26/2011 5:40 PM, Beppe Di Maio wrote:
On Mon, Jul 25, 2011 at 9:36 PM, Nathan Gibbs nat...@cmpublishers.com
wrote:
Good QA, accountability, distribution, how convenient.
Now what if I want to produce
On 7/25/2011 12:35 PM, Luca Gibelli wrote:
Hello,
The ClamAV project is launching a new service called Third Party web
interface. It will allow selected individuals/organizations to publish
ClamAV Virus Databases (CVD) through the ClamAV mirror network.
Possibly in answer to this thread
,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
A tool for enumerating, stress testing, and/or shutting down instances
of the Clam Antivirus service on a network.
Download Freely.
Enjoy thoroughly.
Use Responsibly.
http://www.cmpublishers.com/oss/#clambake
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
http://www.cmpublishers.com/oss/#clues
Enjoy.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit
Does clamd have any form of network access control?
For instance limiting what IP's can connect.
I vaguely remember something about tcpwrappers, but that was several
versions ago.
Thanks.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
On 7/22/2011 5:46 PM, Chuck Swiger wrote:
On Jul 22, 2011, at 2:39 PM, Nathan Gibbs wrote:
Does clamd have any form of network access control? For instance
limiting what IP's can connect.
By default, you're either using a local Unix domain socket associated
with a path like /var/run/clamav
On 7/22/2011 8:11 PM, Chuck Swiger wrote:
On Jul 22, 2011, at 4:51 PM, Nathan Gibbs wrote:
On 7/22/2011 5:46 PM, Chuck Swiger wrote:
On Jul 22, 2011, at 2:39 PM, Nathan Gibbs wrote:
Does clamd have any form of network access control? For
instance limiting what IP's can connect.
By default
Log says
daily.cvd version from DNS: 13331
Followed by a failure to download.
http://www.clamav.net says
daily.cvd ver. 13328 released on 18 Jul 2011 05:14 :0400 (sig count: 155190)
Anyone else seeing this issue?
Thanks.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
?
There is a cache in front of the website, which is causing the lag
between the website and the actual daily.cvd release. I lowered the
expire timeout to 1h.
That explains why the versions didn't match.
:-)
Thanks.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
On 7/19/2011 11:55 AM, Nathan Gibbs wrote:
On 7/19/2011 11:20 AM, Luca Gibelli wrote:
Hello Nathan,
Log says
daily.cvd version from DNS: 13331
Followed by a failure to download.
I wanted to be sure it wasn't a global issue.
It may be a local issue here.
I am testing a new CCEE patch
.
Yeah, You'd get all twitterpated explaining the business case for it,
then they'd get all twittery and confused.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
!
I hear you there matey.
They won't put my patches in their trunk, so I keep them in mine.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help
corrupted db file, etc. So it should still be more
effective than wget.
Regards,
Agreed
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help
from the local mirror.
The only issue we have is the mirror getting behind every once in a
while, not much of a big deal.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
://www.cmpublishers.com/oss/#ccee
Enjoy:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http
. I do value his input especially when I get annoyed with the
Clamav Team.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build
was done in this release.
However, I don't have the hardware to do much in the line of testing.
Could somebody make sure that our 0.97.x enhancements work as expected?
http://www.cmpublishers.com/oss/#ccee
Enjoy:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
* aCaB wrote:
On 04/16/11 16:48, Nathan Gibbs wrote:
Do you mean something like.
cat daily.cvd | sigtool -mdb daily.mdb
That won't work. If you want to use an official db you should you
sigtool --unpack.
Alternatively you can forge your own custom db. E.g.:
acab@1337ness:/tmp$ echo
this.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net
don't know where the sig comes from, an FP
submitted to the wrong place would eventually get to the right place.
I'm glad someone is thinking about the right way to do this.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description
the
response is? Buy support for an open source product? Are you crazy?
They would do it for an inferior commercial product too.
Thats the funny / sad part.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital
see it being used in the higher level programs, so there is no example
to learn from.
As I've said before, I am not a c or c++ coder.
btw.
I did find cl_countsigs while looking through libclamav.
That'll make the next CCEE patchset simpler.
Thanks,
--
Sincerely,
Nathan Gibbs
Systems
* aCaB wrote:
On 04/16/11 06:14, Nathan Gibbs wrote:
Is there some test data that will cause clamd to to emit the .UNOFFICIAL
output without loading any 3rd party DB's
Just load any db file in non cvd/cld format.
-aCaB
Do you mean something like.
cat daily.cvd | sigtool -mdb
* Török Edwin wrote:
On 2011-04-16 17:06, Nathan Gibbs wrote:
I'm guessing that clcb_post_scan can be used to ambush the virus name
soon after it escapes from libclamav.
It allows you to get a callback
Whatever that is.
:-)
for every file we scan (including archive members), and see
one, now if I can just catch it.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http
the .UNOFFICIAL
output without loading any 3rd party DB's
Thanks.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide
.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net
* Dennis Peterson wrote:
It's Unix - you're allowed to think.
Awesome statement,
:-D
That made my day, Dennis.
Thanks.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
___
Help us build
a sample script file for VirusAction that I can modify
it to meet my needs ? Thank you for your assistance.
shameless plug
Clamav Unified Event System (CLUES)
http://www.cmpublishers.com/oss
/shameless plug
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http
://www.cmpublishers.com/oss/ccee-0.97.0.1.tar.gz
Enjoy :-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
://www.cmpublishers.com/oss/ccee-0.97.tar.gz
Enjoy :-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http
these numbers based on signature files in the DataDictionary
directory?
Do you mean sig counts per DB in the DB directory?
The next release of CCEE will have that capability.
However, life has been getting in the way of that project lately.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
to that idea.
If someone implements it, I'll consider adding it to CLUES and or CCEE.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build
somewhat to be
desired.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http
* Török Edwin wrote:
On 2011-02-28 18:29, Nathan Gibbs wrote:
* Török Edwin wrote:
but apparently people running 0.95 care more about clamd working than
actually detecting malware.
0.95 working equals more protection than 0.95 not working.
Fair enough.
Would it be OK with you if 0.95
* Jerry wrote:
On Mon, 28 Feb 2011 11:29:17 -0500 Nathan Gibbs nat...@cmpublishers.com
articulated:
A flag day now and then (0.94.x DB issue) is OK, but not as a regularly
scheduled event. Whats the point of putting the latest Clamav on a system
when the Dev team is going to break
Clamav Common Execution Environment patch set
http://www.cmpublishers.com/oss/ccee-0.96.5.tar.gz
Enjoy :-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
* Michael Orlitzky wrote:
On 10/26/2010 01:18 PM, Nathan Gibbs wrote:
Clamav Common Execution Environment patch set
http://www.cmpublishers.com/oss/ccee-0.96.4.tar.gz
Clamav Unified Event System
Upgrade to work with the above patch set, also backward compatible with stock
ClamAV
http
++ chainsaw?
Evil laugh...
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http
with ClamAV is backwards compatibility.
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http
* Nathan Gibbs wrote:
Clamav Common Execution Environment patch set
Added additional logging to the clamd freshclam patch.
Now when LogVerbose = Yes
All three should produce similar output.
http://www.cmpublishers.com/oss/ccee-0.96.4.1.tar.gz
Enjoy.
--
The only compatibility with ClamAV
* Luca Gibelli wrote:
Hello Nathan,
Now if it was designed to work with freshclam and clamav-milter also, and had
a conf file to tell it exactly what procs to worry about, maybe.
we'd have to rename it first :)
Clamswd
Clam System Watch Dog
Again my 2 cents
:-)
--
Sincerely,
Nathan
.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
coding disasters.
:-)
Second question, is it possible to configure ClamAV as an 'AV-Proxy Web'
? To verify if a virus/malware is present on the website ?
HAVP
http://www.server-side.de/
I don't know much about it, but it might be what you want.
--
Sincerely,
Nathan Gibbs
Systems
* Dennis Peterson wrote:
On 9/21/10 9:55 PM, Nathan Gibbs wrote:
Now will the REAL C CODERS PLEASE STAND UP! Do it right and show me how
its done. Better yet, just do it right the first time, and I won't say a
thing.
Got your ECR submitted? Has change board seen it, approved
* Nathan Gibbs wrote:
In Conclusion
I can think of at least three more CLmaAV events that it would be nice to be
notified on.
However, I feel that it is important to decide how to do one common task
before covering new ground.
Final opinion about how to do the common task.
Use execle
* Nathan Gibbs wrote:
In Conclusion
I can think of at least three more CLmaAV events that it would be nice to be
notified on.
However, I feel that it is important to decide how to do one common task
before covering new ground.
Final opinion about how to do the common task.
Use execle
* Dennis Peterson wrote:
On 9/22/10 6:58 AM, Nathan Gibbs wrote:
Those guys could do this better than me any day of the week. They
could code
circles around me, but so far they won't. what does that tell you?
They have higher priorities.
Obviously, which leaves me with the choice.
1
to be all that much either.
I waited 6 months for one of them to do it, then took half a day to bang it
out myself, and it doesn't completely work. One of them could have done it in
a couple of hours and it would have worked.
Why should I not be disgusted?
:-)
--
Sincerely,
Nathan Gibbs
Systems
* aCaB wrote:
Nathan Gibbs wrote:
Here is my working test implementation for the milter
http://www.cmpublishers.com/oss/clamfi.c
Hi Nathan,
awsome spirit!
I'd love to say awesome code too but I haven't had a chance to look at
it yet.
You probably won't say that even after you looked
or a feature?
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http
to be
notified on.
However, I feel that it is important to decide how to do one common task
before covering new ground.
Final opinion about how to do the common task.
Use execle to call the script directly, and hand it a common Environment.
Do this for all external events.
--
Sincerely,
Nathan Gibbs
* Bowie Bailey wrote:
On 9/15/2010 12:47 PM, Török Edwin wrote:
On Tue, 14 Sep 2010 19:41:59 -0400
Nathan Gibbs nat...@cmpublishers.com wrote:
A script to handle all external events in a ClamAV installation.
Well, almost, there is a wrapper for the messed up VirusAction also.
http
A script to handle all external events in a ClamAV installation.
Well, almost, there is a wrapper for the messed up VirusAction also.
http://www.cmpublishers.com/oss/
Enjoy.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
-option value
VirusAction /usr/local/sbin/virusaction -option value
Any ideas?
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build
* Nathan Gibbs wrote:
How can I get the clamav-milter to call a virusaction scipt that accepts a cmd
line argument?
SNIP
Any ideas?
OK, I have a few.
It doesn't appear that clamav-milter allows additional args to be passed to
the virusaction script. Other external event scripts, like
out?
:-(
Sorry folks.
Chris, could you send me your code?
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV
* Nathan Gibbs wrote:
However, I'll look into what would be required to port it to nagios.
This may be what you need.
http://exchange.nagios.org/directory/Plugins/Anti%252DVirus/ClamAV/ClamAV-check-plugin/details
It can't query remote systems like clamd.monitor, but it can check DB
.
And as a follow-up, the VirusEvent will run a console app.
I am grateful for the help, thank you!
Thats what we're here for.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
plug
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net
.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
* aCaB wrote:
So there's nothing to ARGH about... yet! :)
Bug 2045 RESOLVED/WONTFIX.
Now can I ARGH ?
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
* Jason Englander wrote:
On Fri, 14 May 2010, Nathan Gibbs wrote:
I would like the option to use the https protocol with freshclam in a
local
mirror setup.
Sorry to reply to a month-old post. I skimmed the thread, minus the
bickering,
:-)
and if there's a later follow-up, I have
* aCaB wrote:
Nathan Gibbs wrote:
Pointless idiotic raving.
Nathan,
After a release, when we see see the bug flow stopping or calming down
slightly all bugs (except those already clearly evaluated) are moved to
unplanned.
Shortly after (in this case tomorrow), unplanned bugs are re
* Török Edwin wrote:
I opened #2045.
So much for that, as it is now unplanned.
ARGH!!!
Thats all I'm going to say about that.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
with mon, but could be run from cron to watch your
installation.
/shameless-plug
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build
the good guys
build it first.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
* Török Edwin wrote:
On 05/24/2010 05:28 AM, Nathan Gibbs wrote:
2.
Store an array of pointers to sigs needed to do a partial scan.
Hand the engine the list on partial scans.
That might be the more elegant solution.
It might be possible to do this for the MD5 signatures, not the NDB
* Török Edwin wrote:
On 2010-05-24 22:00, Nathan Gibbs wrote:
OK, so an AC trie gets built and used until a DB reload.
Am I understanding correctly?
Yes.
Man, that does make it complicated.
H'mm, That might work.
The corner cases being the NBD sigs, right?
The IDB sigs, removal
the same thing a few months back.
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http
* Török Edwin wrote:
On 2010-05-24 23:37, Nathan Gibbs wrote:
Here is about as far as my feature req would get.
Leverage a checksum/hashing algorithm partial DB's to speed up scheduled
system scans.
See, I told you I didn't know what I was talking about. Your entry is better.
:-)
I
,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
* Török Edwin wrote:
On 05/23/2010 02:46 AM, Nathan Gibbs wrote:
I've wondered about a similar idea for speeding up file scanning.
Especially in regards to daily system scans,
After an initial scan, record a file's name, checksum, and time scanned.
On rescan,
If a file's checksum hasn't
doing full system
scans more frequently than signature updates?
however some initial tests have showed improved performance for nearly any
kind of scan (system, mails, home, etc.)
Yes, the scans do go faster on a 0.96 installation.
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
in the DB, I assume. )
}
Although, I'm known for coming up with hair brained ideas, so this one might
go to /dev/null
:-)
--
Sincerely,
Nathan Gibbs
Systems Administrator
Christ Media
http://www.cmpublishers.com
signature.asc
Description: OpenPGP digital signature
1 - 100 of 134 matches
Mail list logo
