Jason Haar wrote:
Eric Scopinho wrote:
But if I do that, some side effects could happen like:
- I'll need free space to store the file.
- The infected packets may get in while I store the next packets to scan.
- I have to download the whole file before send it to the end-user.
How else
Dennis Peterson wrote:
Eric Scopinho said:
But if I do that, some side effects could happen like:
- I'll need free space to store the file.
You're not properly committed and funded to support this activity.
Maybe.
- The infected packets may get in while I store the next packets to
Eric Scopinho wrote:
But if I do that, some side effects could happen like:
- I'll need free space to store the file.
- The infected packets may get in while I store the next packets to scan.
- I have to download the whole file before send it to the end-user.
I'm trying to develop some sort of
Hi,
Short Question:
Probabily this a newbie question, but is there any way to scan a zip
file (or part of it) without unzip it entirely?
Long Question:
I'm doing some tests with libipq (kind of userspace packet filter).
I get network packets, write them in small temp files and scan using
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Eric Scopinho
Long Question:
I'm doing some tests with libipq (kind of userspace packet filter).
I get network packets, write them in small temp files and scan using
cl_scandesc from libclamav, if a
The problem is that I'm using libclamav directly (not clamd), and I
dont't have the entire zip file. While the file is sent over the
network, passing through my firewall, I'm catching the packets, storing
each one and scanning using cl_scandesc from libclamav. Catch it?
Samuel Benzaquen
Eric Scopinho wrote:
The problem is that I'm using libclamav directly (not clamd), and I
dont't have the entire zip file. While the file is sent over the
network, passing through my firewall, I'm catching the packets,
storing each one and scanning using cl_scandesc from libclamav. Catch
it?
But if I do that, some side effects could happen like:
- I'll need free space to store the file.
- The infected packets may get in while I store the next packets to scan.
- I have to download the whole file before send it to the end-user.
I'm trying to develop some sort of firewall+anti-virus
Eric Scopinho wrote:
But if I do that, some side effects could happen like:
- I'll need free space to store the file.
- The infected packets may get in while I store the next packets to scan.
- I have to download the whole file before send it to the end-user.
How else could you catch a
Jason Haar wrote:
However, I think you'll be out of luck. The only network virus
scanners I know of are big beasts - because they effectively have to
inline translate packets back to specific protocols (such as
SMB/CIFS), pull the data content out, then run real AV over the fully
formed files
Eric Scopinho said:
But if I do that, some side effects could happen like:
- I'll need free space to store the file.
You're not properly committed and funded to support this activity.
- The infected packets may get in while I store the next packets to scan.
There is no way on earth you can
11 matches
Mail list logo