Dennis Peterson wrote:
Steve Basford wrote:
My extra phishing signatures can be found here:
http://www.sanesecurity.com/clamav/
So, download the phish.ndb and then place into the same directory that
you normally find
daily.cvd and main.cvd. ClamWin, for example, would be
PROGRAMS\clamwin\db.
You could setup wget to download my phish.ndb sigs daily, once you're
happy.
I just went over some logs and found the time tag for the first Phishing
exploit found by your list. Since then there have been 192 found. In the
same time frame the ClamAV list found 854. Not bad for such a new list -
nice work, Steve, and also the ClamAV team.
I'll examine my larger volume servers later today. They're doing > 1
million/week while the one I looked at today is primarily a mail list
server doing only hundreds of (legit) messages/day. Both sites are
running around 70% rejections by grey listing to spam to viruses to
greet pause to surbl. That's a lot of debris.
dp
The follow-up. Steve - your list found over 3,000 Phishing attempts while the
ClamAV list found just over 300. This is since Feb. 2. I didn't expect that.
Thanks, bud!
dp
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
