We are more than willing to work with any 3rd party signature house to
incorporate the detection into the official DB.
--
Joel Esler
Manager, Talos Group
On Jan 29, 2016, at 5:53 PM, Benny Pedersen mailto:m...@junc.eu>>
wrote:
On 2016-01-29 23:28, Al Varnell wrote:
Not sure how you would a
Gotcha sorry I thought I found a previous post to such but indeed I was
wrong.
Many thanks for the information.
On Jan 29, 2016 17:53, "Benny Pedersen" wrote:
> On 2016-01-29 23:28, Al Varnell wrote:
>
>> Not sure how you would arrive at that conclusion. SaneSecurity is not
>> affiliated with Ci
On 2016-01-29 23:28, Al Varnell wrote:
Not sure how you would arrive at that conclusion. SaneSecurity is not
affiliated with Cisco/SourceFire/ClamAV.
sadly true :(
hopefully all 3dr party sigs will be sourcefire signed oneday
until then gpg works
__
Not sure how you would arrive at that conclusion. SaneSecurity is not
affiliated with Cisco/SourceFire/ClamAV.
Sent from Janet's iPad
-Al-
On Jan 29, 2016, at 2:12 PM, Brad Scalio wrote:
> I think I answered my own question, Sansecurity.
>
> On Fri, Jan 29, 2016 at 4:41 PM, Brad Scalio wrote
I think I answered my own question, Sansecurity.
On Fri, Jan 29, 2016 at 4:41 PM, Brad Scalio wrote:
> Thanks Steve that does help, who's the CA or at least the certs aren't
> self-signed correct?
>
> On Fri, Jan 29, 2016, 14:42 Steven Morgan wrote:
>
>> Brad,
>>
>> The official ClamAV virus da
Thanks Steve that does help, who's the CA or at least the certs aren't
self-signed correct?
On Fri, Jan 29, 2016, 14:42 Steven Morgan wrote:
> Brad,
>
> The official ClamAV virus database is digitally signed before posting to
> the ClamAV mirrors. The CVD signature is checked before database loa
Brad,
The official ClamAV virus database is digitally signed before posting to
the ClamAV mirrors. The CVD signature is checked before database load time.
Virus names of signatures from non-signed databases are appended with
".UNOFFICIAL".
Hope this helps,
Steve
On Thu, Jan 28, 2016 at 5:29 PM,
On 2016-01-29 09:27, Steve Basford wrote:
As Sanesecurity have been doing this for 10 years this year, hopefully
the GPG key can be trusted ;)
will extradatabasee ever be used in freshclam :(
will unofficial ever go away :(
thanks for the github link btw, seems i can finaly stay with
clamav
Thanks for the quick replies and information, this helps greatly and is
much appreciated!
On Jan 29, 2016 03:28, "Steve Basford"
wrote:
>
> On Thu, January 28, 2016 10:29 pm, Brad Scalio wrote:
> > Is there any integrity or authenticity checks within freshclam when it
> > connects to the clamAV s
On Thu, January 28, 2016 10:29 pm, Brad Scalio wrote:
> Is there any integrity or authenticity checks within freshclam when it
> connects to the clamAV servers to download the virus signature databases?
Hi Brad,
Just to cover 3rd Party (.UNOFFICIAL) signatures.
Signatures produced by Sanesecuri
See the config file for freshclam. It will pull sigs from where ever you
specify. The default is to use the ClamAV signature server farm and are known to
the ClamAv team. Checksums are examined.
Others will have to speak to the credentials expected of those volunteers who
make up the server fa
Is there any integrity or authenticity checks within freshclam when it
connects to the clamAV servers to download the virus signature databases?
Also is there any non-repudiation of the servers hosting the virus
signature databases, that is who gets to be a host and is there any
procedures to ens
12 matches
Mail list logo