Hello Peter,
Out of interest, are there other public, known good extra virus definitions that include these PHP and/or web server specific patterns/signatures ?
https://www.securiteinfo.com/services/anti-spam-anti-virus/improve-detection-rate-of-zero-day-malwares-for-clamav.shtml Specially javascript.ndb. It includes PHP malware detection too.
Also - in case I do get a hold of extra signatures - would I have to merge them into the existing definition set or simply run these in a separate scan ?
You can save the files directly in your clamav database directory (usually /var/lib/clamav/) to merge them with Clamav official signatures.
-- Cordialement / Best regards, Arnaud Jacques Gérant de SecuriteInfo.com Téléphone : +33-(0)3.44.39.76.46 E-mail : [email protected] Site web : https://www.securiteinfo.com Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286 Twitter : @SecuriteInfoCom Securiteinfo.com La Sécurité Informatique - La Sécurité des Informations. 266, rue de Villers 60123 Bonneuil en Valois _______________________________________________ clamav-users mailing list [email protected] http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
