> -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Darren G Pifer > Sent: Fri 08 August 2008 15:09 > To: ClamAV users ML > Subject: Re: [Clamav-users] Clamav phishing sigs > > Chambers, Phil wrote: > > Take a look at > > > > http://iserv.rs-hilter.de/doc/clamav-0.91.2/signatures.pdf > > > I have seen this document but it does not show how to add > signatures to a database OR for clamd to detect the phishing > e-mail. I was able to create the signature (a .hbd file) and > clamscan detects the phishing but clamd does not. Maybe I am > missing something. > > Darren > ODU
It appears that you need to wait until clamd sees that the signature files in the database directory have changed. I think the default is for clamd to check every 3 hours. It will also check if freshclam downloads updates because freshclam tells clamd to check. What I have done is to lift the bit of code from freshclam which notifies clamd and put it into a script called clamdreload.pl. If I put a new signature in my local list I then run that script to make clamd read it. You should see the reload in the clamd log. Phil. -------------------- Phil Chambers Postmaster University of Exeter _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
