> As a follow-up, if you have been fortunate to the download anything you'll > find that the Sanesecurity signatures have been reduced to a single > signature in an attempt to prevent false positives.
For the ones using those signatures in windows and willing to change the update script, here's the relevant change; just replace the URL array lines with the following ones gsaSigs = Array( "http://download.mirror.msrbl.com/MSRBL-SPAM.ndb|MSRBL-SPAM.ndb", _ "http://download.mirror.msrbl.com/MSRBL-Images.hdb|MSRBL-Images.hdb", _ "http://mirrors.dotsrc.org/clamav-sanesigs/phishtank.ndb.gz|phishtank.nd b.gz", _ "http://clamav.securiteinfo.com/vx.hdb.gz|vx.hdb.gz", _ "http://clamav.securiteinfo.com/securiteinfo.hdb.gz|securiteinfo.hdb.gz" , _ "http://clamav.securiteinfo.com/honeynet.hdb.gz|honeynet.hdb.gz", _ "http://clamav.securiteinfo.com/antispam.ndb.gz|antispam.ndb.gz", _ "http://www.malware.com.br/cgi/submit?action=list_clamav|mbl.db" _ ) also ensure to remove the "phish.ndb", "scam.ndb", "junk.ndb" and "rogue.hdb" sigs from the ClamAV data folder; not doing so, you may face some "strange behaviour" from ClamAV and btw from ASSP I really hope that the SANE signatures will come back again in a while ! ------------------------------------------------------------------------------ SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
