Mikolaj Kucharski wrote:
On Thu, Dec 20, 2007 at 07:28:19PM +0100, Marc Balmer wrote:
Helmut Schneider wrote:
Hi,
I successfully compiled clamav-0.92 from ports on 4.2 stable. I'm using it
with postfix and it is running fine for more than 24h now. Attached are
distinfo and Makefile (partially stolen from FreeBSD). The 'patches'
directory can be removed. There is no warranty. I never built a port
before so don't ask any questions. But this solution seems much better
than running 0.90.
you must be on drugs... the patches directory contains a patch to make
filedescriptor passing work.
From changelog looks like this problem was fixed by the vendor. That's all
I've done, readed the changelog, so maybe it's not really fixed.
I submitted my patch to the developers quite some times ago. But I am
not sure if they integrated it.
I made bad experiences with ClamAV developers, the code quality used to
be quite bad and when I talked to them about it, I got arrogant answers,
to say the least.
Their original code for filedescriptor passing just showa that they lack
fundamental understanding on how this has to be done (hint: print("%d",
fd) on the client and fd = atoi(s) on the server is not enough...)
They had a lot of problems in their milter, too, which lead to simple
DoS attacks.
So in general, I don't trust ClamAV to much ;) But it's unfortunately
the only open source virus scanner available, afaik,
Take it easy guys, take it easy..
