Good evening, all. First off, my thanks to the development team for creating and maintaining this great tool.
This message is being sent out to express my concern over a potential vulnerability that Clamscan doesn't currently seem to address. It is particularly alarming, because, as far as I can tell, ClamAV is the premiere malware scanner available for Linux (or at least for Debian--my personal OS). For those Linux users who may have a substantial amount of old audio and video files in their possession (many of them from their Windows days), what is the suggested solution for retroactive scanning? I know there is a Clamscan module for JPEG files. To me, that seems to constitute a tacit acknowledgement of the possibility that trojans can be disguised within media files. But there isn't any equivalent module for scanning MP3's, MP4's, AVI's, and other such files, is there? I've seen no indication of such. As a stopgap measure for such Linux users, any newly-acquired files could be sent to VirusTotal to be scanned there. But dependence upon a cloud-based service hardly seems ideal to me, especially for those who may have substantial numbers of old files already in possession--mostly music, ponies, and anime that have all been legally acquired over the years. I'm sure there must be some sort of significant hurdle associated with this proposition. Would someone be willing to enlighten me to this end? It seems too common-sense to ignore for frivolous reasons, especially since such a media module would be useful for more than just personal files. Enterprises could benefit as well. Thank you so much for your time. _______________________________________________ clamav-users mailing list [email protected] http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
