Daniel L. Miller wrote: > I didn't THINK those signatures would change that much . . . . The definitions are updated several times a day! The newest update scripts are smart about downloading and will only download when there's a new definition. The first update script listed on the site grabs the MSRBL defs too.
When using the SaneSecurity definitions, the type of "viruses" found by ClamAV are not strictly executables anymore. There is a lot of phishing, scams, lotto, images, on and on and on. One thing that is good is that by the nature of the definitions, there is an extremely low chance of false positives, if there is any at all. I have been collecting virus emails in the spam collection folder, as they are more spam than they are malicious attachment usually. Is this a bad idea? Is it any worse than collecting other sorts of spam in the spam collection? Would it better given the very low risk of false positives? ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
