Le lundi 28 novembre 2016, 10:28:03 CET Paul Kosinski a écrit :
> Of course, if anybody is able to find out what the magic filename is,
> they could mount a targeted attack.
Of course, but thanks for the warning.
> How are the PDFs generated? Would it be possible to attach a
> cryptographic signature to asset to their validity? (That would
> probably require an additional step on receipt as well as transmission
> to indicate they were OK in spite of ClamAV's red flag.)
Unfortunately we have no control on those PDF creation.
clamav-users mailing list
Help us build a comprehensive ClamAV guide: