Hi Kevin, There is currently no way to disable the remote shutdown command. I created an internal ticket for this issue, although I am not sure when it will be scheduled.
In the meantime, we recommend not hosting the TCP socket on a port that is accessible on an untrusted network. Thanks, Andy ________________________________ From: clamav-users <[email protected]> on behalf of Kevin Faber via clamav-users <[email protected]> Sent: Tuesday, July 21, 2020 12:44 PM To: [email protected] <[email protected]> Cc: Kevin Faber <[email protected]> Subject: Re: [clamav-users] Remote Shutdown command Hello, any update on this issue? From: Kevin Faber Sent: Thursday, July 16, 2020 1:30 PM To: [email protected] Subject: Remote Shutdown command Hi, Is there a way to disable the remote shutdown command besides disabled the TCP port? It is being flagged as a security vulnerability. Thanks, Kevin Faber Engineer, Collaboration and Productivity team Team Ventech | HIDS [email protected]<mailto:[email protected]> ___________________________________________________________________________________________________________________________________________________________________________________________________________________ DISCLAIMER: This message (including any attachments) may contain confidential, proprietary, privileged and/or private information. The information is intended to be for the use of the individual or entity designated above. If you are not the intended recipient of this message, please notify the sender immediately, and delete the message and any attachments. Any disclosure, reproduction, distribution or other use of this message or any attachments by an individual or entity other than the intended recipient is prohibited. The security of our clients is a top priority. Therefore, we have put efforts into ensuring that the message is error and virus-free. Unfortunately, full security of the email cannot be ensured as, despite our efforts, the data included in emails could be infected, intercepted, or corrupted. Therefore, the recipient should check the email for threats with proper software, as the sender does not accept liability for any damage inflicted by viewing the content of this email.
_______________________________________________ clamav-users mailing list [email protected] https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
