Hi there,
On Thu, 21 Nov 2019, Grscripts via clamav-users wrote:
I am using
clamdscan --verbose --config-file=clamd.conf /spam/*
in clamd.conf I have this
OfficialDatabaseOnly yes
but I receive this
/spam/NEWENQUIRYpdf.zip: Sanesecurity.Foxhole.Zip_exe.UNOFFICIAL FOUND
why OfficialDatabaseOnly yes is fully ignored and the Unofficial Sanesecurity
signatures are still used ?
I'd suggest that you enable debug logging - including for libclamav -
and look for messages which indicate that the unofficial signatures in
the database are being ignored when clamd starts or reloads signatures.
--
73,
Ged.
_______________________________________________
clamav-users mailing list
[email protected]
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
