below.
Hello chatsiri,
I didn't understand much in your email.
At any rate crtmgr is part of a digital signature verification scheme
which is available on master and whose main application is to avoid
false positives on digitally signed files.
HtH,
-- aCaB
that is memory efficient.
After all we're targeting malware which is on avg 2-300 KB in size.
What is the purpose of fmap/fmap_need_ptr_once?
That's basically an alloc and read.
HtH,
--aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit
mind, sorry.
Just to make sure: what part of the code would need refactoring?
The unz() function.
Cheers,
--aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
On 06/20/11 18:57, Renato Botelho wrote:
[1] http://www.bayofrum.net/~crees/tinderlogs/clamav-0.97.1.log
Can you guys please attach unit_tests/test-suite.log to
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2923
Thanks,
-aCaB
___
http
Alexander N. Telegin wrote:
Wrong. The first point is I'm asking for advice from experienced
[snip]
As per the rules of this mailing list, please do not top post.
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches
a penny to either the software
makers, nor to your poor lawyer.
Do you really expect any sort of help in here?
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
at http://bugs.clamav.net/
If you do so make sure you follow the guidelines available at
http://www.clamav.net/bugs
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
Ibraheem Khan wrote:
Hello Edwin,
Thank you for useful information. I have a question as well:
1) Is PE section MD5 signature created from a particular section like code
or data or it can be any section.
Can be any section.
-acab
___
http
nicolas dumont wrote:
Is there a way in my Makefile or elsewhere to have the libclamunrar
directly called
inside my binary without modifying the call to
lt_dlopenext(libclamunrar_iface) ?
Your Makefile? Where is it?
-aCaB
___
http
, i
can see what's wrong and possibly offer a complete patch.
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
shell/perl mailq -qQ parser, you would probably agree that doing it in
the milter is not the way to go.
Cheers,
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
libmilter does (and kills clamav-milter on TERM).
Please be aware that it may take a few seconds for the process to die.
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
changes.
HtH,
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
Vincent Régnard wrote:
Hi all,
Compiling 0.94.1 within the same environement as I did without trouble
for 0.94, I encounter the following error that stops the compilation
process:
+ make
make all-recursive
make[1]: Entering directory
`/mnt/pitux_data/rpmbuild/RPM/BUILD/clamav-0.94.1'
(which is older and not
compatible). It never triggered before because we were in turn shipping
an outdated libtool as well, but at some point due to problems with
darwin (IIRC) we had to upgrade.
If you can get the reconfigure script to run without --force you should
have no problems.
-aCaB
be greatly appreciated. Thanks!
Hi Matt,
Check http://www.av-test.org/ for a wildlist-based comparison.
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
for pointing it out.
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
Sergey wrote:
Is this the gcc 4.1.0 bug only ? What about 3.4.4 and 3.3.3 ?
Hi Sergey,
no other reports so far, besides 4.1.0 which is b0rked and will likely
be blacklisted starting from the next release.
It's unfortunate that some distro has got it installed by default.
-aCaB
and upgrade to at least
4.1.1.
Please see https://wwws.clamav.net/bugzilla/show_bug.cgi?id=613
If it's not the case, please provide us with a sample.
Thanks,
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla
...
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
and the bastardized NSIS versions once for all.
This will help with your build as well (IIRC you include lzma
decompression for 7zip) which I s'pose may have similar problems.
aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches
of this week.
In the meantime stick to stable, comment out the offending code or
provide me with a patch.
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net
Gianluigi Tiesi wrote:
There is a reason if we (clamwin) changed this, we still prefer to skip
unknown files, and we don't need to care much about html and mail
files, so I've made some tweaks (not only this one) to save some
cpu cycles avoiding scan of unneeded files.
I'm aware that for a
old enough and if you knew what you were doing you'd
probably recall about someone else, back in the dos age, who was feeling
very smart. And you'd also remember about a virus which was only
spreading when scanned by the smart guy's AV.
May Eugene protect your users,
-aCaB
Eugene Crosser wrote:
Sorry if this is already found and/or fixed.
[...]
Anyone interested to verify/investigate this?
Hi Eugene,
It's been already reported.
Just keep an eye to http://bugs.clamav.net if you want to know when it's
fixed.
Regards
testing and FP checking.
Regards,
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
Ian Castle wrote:
The attached patch is meant for discussion rather than inclusion.
Forgot something or was it stripped by mailman?
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
James Courtier-Dutton wrote:
Is this feature currently available in clamav, or will I have to add it
myself?
Hi James,
it's a faq.
sigtool --md5 EVIL.EXE /PATH/TO/YOUR/DB/my_own_database.hdb
-aCaB
___
http://lurker.clamav.net/list/clamav-devel.html
.
The clamav core is somewhat f(seek|read) centric. Therfore adding
support for what you ask would mean adding a further level of
complexity, wrapping most file functions etc.
If you want you can try writing a patch...
Regards,
-aCaB
___
http
James Courtier-Dutton wrote:
How else can I report this?
1) Point your browser to http://www.clamav.net/
2) Click on the submit a sample link
3) Hold on please...
4) Fill in the various fields
5) Hit the submit button
___
at clamav.net and ask
him to consider integrating it.
Cheers,
acab
___
http://lurker.clamav.net/list/clamav-devel.html
Gabor FUNK ha scritto:
http://www.clamav.net/doc/0.72/signatures.pdf
That's the one
I thought I will also make a tutorial on how to get a proper signature
on a virus by using hiew/biew and other tools. Un(?)fortunately, I
started with maltese (http://vil.nai.com/vil/content/v_752.htm).
[no, the
this can be very tricky and painful to implement
but would still be appreciated
Thanks,
acab
Tomasz Kojm ha scritto:
On Thu, 14 Aug 2003 13:12:20 -0400
Bennett Todd [EMAIL PROTECTED] wrote:
For funsies, I decided to play around with adding Eicar to my .sig.
I was unsurprised that clamscan nailed
submission sent via Hotmail is rejected
doesn't mean that the clamav db contains it.
On Fri, 27 Jun 2003, clamav wrote:
if its blocked, it means they're already in the db.
so why submit them?
otherwise zipping them with the password 'virus' is
the suggested method i believe.
aCaB wrote:
I've
34 matches
Mail list logo