On 19 Nov 07, at 1524, Dennis Peterson wrote: > > Can we have a reality check, please. When is the last time you > found a virus in /sbin > after a new pattern file has been made available?
True enough. But if we're on reality checks, doing it twice on the grounds that the first time /sbin's contents may or may not be in memory, the second time they will be, shows it takes a couple of seconds. Why not just do it anyway? I take your point as we head out in /usr, but then there's probably more stuff being installed and maintained on an ongoing basis, so the risk is slightly larger. ian mailhost-new# time /usr/local/bin/clamdscan /sbin /sbin: OK ----------- SCAN SUMMARY ----------- Infected files: 0 Time: 1.881 sec (0 m 1 s) real 2.0 user 0.0 sys 0.0 mailhost-new# time /usr/local/bin/clamdscan /sbin /sbin: OK ----------- SCAN SUMMARY ----------- Infected files: 0 Time: 1.257 sec (0 m 1 s) real 1.3 user 0.0 sys 0.0 mailhost-new# _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
