Hi, We recently upgraded to clamav0.96. But we are finding that clamav 0.96 is not matching md5 signatures when * is specified as offset. Please find the case below using clamscan tool with 0.96 and 0.95 engines.
Clamav 0.96 _____________ [bram...@test01 ~]$ md5sum ~/test-mail 241bc9959a599b73a89cbc1922571fb0 /home/bramani/test-mail [bram...@test01 ~]$ cat ~/test.hdb 241bc9959a599b73a89cbc1922571fb0:*:TEST1 [bram...@test01 ~]$ /usr/bin/clamscan -d ~/test.hdb ~/test-mail /home/bramani/test-mail: OK ----------- SCAN SUMMARY ----------- Known viruses: 1 Engine version: 0.96 Scanned directories: 0 Scanned files: 1 Infected files: 0 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 0.027 sec (0 m 0 s) Clamav 0.95 ______________ [bram...@test01 ~]$ md5sum /var/tmp/test-mail 241bc9959a599b73a89cbc1922571fb0 /var/tmp/test-mail [bram...@test01 ~]$ cat /var/tmp/test.hdb 241bc9959a599b73a89cbc1922571fb0:*:TEST1 [bram...@test01 ~]$ [bram...@test01 ~]$ /usr/bin/clamscan -d /var/tmp/test.hdb /var/tmp/test-mail /var/tmp/test-mail: TEST1.UNOFFICIAL FOUND ----------- SCAN SUMMARY ----------- Known viruses: 1 Engine version: 0.95.2 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 0.005 sec (0 m 0 s) Please find the OS details below. [bram...@test01 ~]$ uname -a Linux 2.6.9-42.ELsmp #1 SMP x86_64 x86_64 x86_64 GNU/Linux Can you please let me know how to make this work. Thanks in advance, Balaji. _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
