On 31 August 2023 09:33:24 energynorman--- via clamav-users
<[email protected]> wrote:
..additional, also these were found now by the version 1.2.0
(whitelisting?):
----------- SCAN SUMMARY -----------
Known viruses: 8862874
Engine version: 1.2.0
Scanned directories: 91
Scanned files: 416
Infected files: 0
Data scanned: 84.71 MB
Data read: 39.88 MB (ratio 2.12:1)
Time: 78.263 sec (1 m 18 s)
Start Date: 2023:08:31 05:09:59
End Date: 2023:08:31 05:11:17
/usr/lib/firefox-esr/browser/omni.ja:
Sanesecurity.Foxhole.Zip_fs186.UNOFFICIAL FOUND
Hi.
Sanesecurity signatures are produced by me.
The foxhole signatures are really only for incoming mail.
You can either create a list of signatures to ignore when scanning, in an
ign2 database...
Eg. Create a text file Ignore.ign2
Make the first line
Sanesecurity.Foxhole.Zip_fs186
Put the ignore.ign2 file in the ClamAV database folder and reload ClamAV.
If you want to remove the foxhole sigs completely... Look for foxhole*.* in
the ClamAV database folder or remove from your download script.
Foxhole sigs are really good for lots of reasons... but in your case you
might need to fine tune your setup.
Hope this helps.
Cheers,
Steve
www.sanesecurity.com
Twitter: @sanesecurity
_______________________________________________
Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation
https://docs.clamav.net/#mailing-lists-and-chat
