Your message dated Fri, 10 Apr 2009 17:35:45 +0200 with message-id <[email protected]> and subject line Upstream suggests using --debug has caused the Debian Bug report #512292, regarding Please output position in file when an infection is detected. to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 512292: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=512292 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: clamav Version: 0.94.dfsg.2-1~volatile1 Severity: wishlist Hello! The clamscan reported that it found a virus in my INBOX which is an mbox. /mnt/win_c/Documents and Settings/nil/Application Data\ /Mozilla/Profiles/default/lxpjq1dn.slt/ImapMail\ /exch02.inf.elte.hu/INBOX: Worm.Bagle.AT FOUND Is there any way to locate the infected mail? (Not including "copy half of your emails to another mbox,...".) An output like that would be very useful when using --pos (or similar): /path/to/file: Evildoer.Virus.Dangerous FOUND at position 237452 Thanks, Bye Nil -- Package-specific info: --- configuration --- #Automatically Generated by clamav-base postinst #To reconfigure clamd run #dpkg-reconfigure clamav-base #Please read /usr/share/doc/clamav-base/README.Debian.gz for details LocalSocket /var/run/clamav/clamd.ctl FixStaleSocket true TemporaryDirectory /tmp User clamav AllowSupplementaryGroups true ScanMail true ScanArchive true ArchiveLimitMemoryUsage false ArchiveBlockEncrypted false MaxDirectoryRecursion 15 FollowDirectorySymlinks false FollowFileSymlinks false ReadTimeout 180 MaxThreads 12 MaxConnectionQueueLength 15 StreamMaxLength 10M LogSyslog false LogFacility LOG_LOCAL6 LogClean false LogVerbose false PidFile /var/run/clamav/clamd.pid DatabaseDirectory /var/lib/clamav SelfCheck 3600 Foreground false Debug false ScanPE true ScanOLE2 true ScanHTML true DetectBrokenExecutables false MailFollowURLs false ExitOnOOM false LeaveTemporaryFiles false AlgorithmicDetection true ScanELF true IdleTimeout 30 PhishingSignatures true PhishingScanURLs true PhishingAlwaysBlockSSLMismatch false PhishingAlwaysBlockCloak false DetectPUA false ScanPartialMessages false HeuristicScanPrecedence false StructuredDataDetection false LogFile /var/log/clamav/clamav.log LogTime true LogFileUnlock false LogFileMaxSize 0 # Automatically created by the clamav-freshclam postinst # Comments will get lost when you reconfigure the clamav-freshclam package DatabaseOwner clamav UpdateLogFile /var/log/clamav/freshclam.log LogVerbose false LogSyslog false LogFacility LOG_LOCAL6 LogFileMaxSize 0 LogTime false Foreground false Debug false MaxAttempts 5 DatabaseDirectory /var/lib/clamav/ DNSDatabaseInfo current.cvd.clamav.net AllowSupplementaryGroups false PidFile /var/run/clamav/freshclam.pid ConnectTimeout 30 ReceiveTimeout 30 ScriptedUpdates yes CompressLocalDatabase no DatabaseMirror db.local.clamav.net DatabaseMirror database.clamav.net --- data dir --- összesen 42868 -rw-r--r-- 1 clamav clamav 3233792 2009-01-19 11:41 daily.cld drwxr-xr-x 2 clamav clamav 4096 2008-05-30 15:25 daily.inc -rw-r--r-- 1 clamav clamav 40598016 2008-10-23 02:08 main.cld drwxr-xr-x 2 clamav clamav 4096 2008-04-06 23:17 main.inc -rw------- 1 clamav clamav 312 2009-01-19 11:41 mirrors.dat -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-amd64 Locale: LANG=hu_HU.UTF-8, LC_CTYPE=hu_HU.UTF-8 (charmap=UTF-8) Versions of packages clamav depends on: ii clamav-freshclam 0.94.dfsg.2-1~volatile1 anti-virus utility for Unix - viru ii libbz2-1.0 1.0.3-6 high-quality block-sorting file co ii libc6 2.3.6.ds1-13etch8 GNU C Library: Shared libraries ii libclamav5 0.94.dfsg.2-1~volatile1 anti-virus utility for Unix - libr ii libgmp3c2 2:4.2.1+dfsg-4 Multiprecision arithmetic library ii zlib1g 1:1.2.3-13 compression library - runtime Versions of packages clamav recommends: ii clamav-base 0.94.dfsg.2-1~volatile1 anti-virus utility for Unix - base -- no debconf information
--- End Message ---
--- Begin Message ---Hi! I just noticed the following entry in ClamAV's FAQs: When using clamscan, is there a way to know which message within an mbox is infected? * There are two solutions: Run clamscan --debug, look for Deal with email number xxx Alternatively you can convert the mbox to Maildir format, run clamscan on it and then convert it back to mbox format. There are many tools available which can convert to and from Maildir format: formail, mbox2maildir and maildir2mbox (see http://www.clamav.net/support/faq) I'm therefore closing this bug report. Best, Michael
pgprZapWTvpGp.pgp
Description: PGP signature
--- End Message ---
_______________________________________________ Pkg-clamav-devel mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/pkg-clamav-devel
