Hello everyone!
Please pardon my relative ClamAV ignorance but I am new to the
community -- with an ardent desire to learn more!
We are currently looking into distributing the excellent ClamXav GUI
to clients on our network. However, that application, that relies on
Freshclam to update the Clamav definitions does not make use of
digital signatures, meaning the definitions are downloaded in a
somehow insecure manner.
As far as I understand, Freshclam downloads definitions only, not
executables. However, I was wondering whether it would be possible to
trick Freshclam into downloading content that would be potentially
dangerous or damaging for the computer or Clamav itself -- through a
corrupt mirror or DNS poisoning, for example? In other words, what
are the risks associated with running Freshclam without digital
signatures support?
In advance, thanks for any help you could provide me with!
Truly yours,
FJ
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
