Re: [clamav-users] clamsubmit error

2018-05-09 Thread Arnaud Jacques
Hello, clamsubmit with ClamAV 0.100.0 should work fine. I am surprised to see that error. We fixed code in the near vicinity to that error statement shortly before the 0.100 release. I got deeper today : I listened HTTP flow when I use clamsubmit version 0.100.0 : GET /reports/malware HTTP

Re: [clamav-users] clamav-users Digest, Vol 161, Issue 19

2018-05-09 Thread Subramaniam Sankaran
Thanks for your response mate, Hi there, On Thu, 26 Apr 2018, Subramaniam Sankaran wrote: root@kali:~/clamav-0.100.0# make > make: *** No targets specified and no makefile found. Stop. > I suspect you do not have the skills which are needed to install ClamAV safely on your system. ClamAV is,

Re: [clamav-users] safebrowsing.cvd causing clamd to stop functioning

2018-05-09 Thread Reindl Harald
Am 01.05.2018 um 04:40 schrieb Rafael Ferreira: > It seems that the latest safebrowsing.cvd update is causing clamd daemons > with version 0.99 to get into a broken state (100% cpu and rampant memory > growth) no - but hey, who knows what is "the latest" for you May 1 07:25:57 buildserver fr

Re: [clamav-users] Configure Assistance

2018-05-09 Thread Reindl Harald
Am 05.05.2018 um 23:42 schrieb Christopher Tissot: > I'm currently trying to utilize the ./configure command with Debian > Stretch. I keep getting the error towards the end "configure: error: Your > OpenSSL installation is misconfigured or missing." I have looked online, > and I can't seem to

Re: [clamav-users] clamsubmit error

2018-05-09 Thread Micah Snyder (micasnyd)
It should be working again. It appears that the move to force HTTPS redirection broke clamsubmit. As you've noted, clamsubmit has not yet been upgraded to support HTTPS. It's not ideal, and I certainly wish to upgrade clamsubmit so it protects sensitive submissions, and so we can re-enable forc

[clamav-users] Is it legal to use ClamAV on a Windows Server in a SMB environment?

2018-05-09 Thread Allen Morrow
Is it legal to use ClamAV on a Windows Server in a SMB environment? [cid:image001.jpg@01D327DB.1656BA60] ALLEN MORROW 405.264.2264 [p] / 405.265.6707 [UPDATED MOBILE] allen.mor...@withrossgroup.com / withrossgroup.com

Re: [clamav-users] clamsubmit error

2018-05-09 Thread Benny Pedersen
Micah Snyder (micasnyd) skrev den 2018-05-09 19:39: The web interface, however, can do both http and https. if users can do 2 things, most will do incorrect way turning off ssl is not a good option to any problem and this maillists here still breaks dkim from cisco :( ___

[clamav-users] Startup crash on MacOS X - version 0.100.0

2018-05-09 Thread James Brown
I upgraded from 0.99.3 (which worked perfectly) to 0.100.0. Everything seemed to work but today I noticed that it wasn’t actually running. No mention of there being a problem in the logs: Thu May 10 10:01:25 2018 -> +++ Started at Thu May 10 10:01:25 2018 Thu May 10 10:01:25 2018 -> Received 0 f

Re: [clamav-users] Startup crash on MacOS X - version 0.100.0

2018-05-09 Thread Al Varnell
OS X 10.7.5 is very old, but I know it's been done successfully for 10.6.8 by using several work-arounds. Looks like you have PCRE working and assume you got over any OpenSSL hurdles. Might help if you posted the output of sudo clamconf -Al- ClamXAV User On Wed, May 09, 2018 at 05:40 PM, Jam

Re: [clamav-users] Startup crash on MacOS X - version 0.100.0

2018-05-09 Thread James Brown
Thanks for your replay Al. Have just got it working. This was the clue: Application Specific Information: Assertion failed: (sp == 0), function yr_execute_code, file yara_exec.c, line 177.” I deleted all the .yar and .yara files from /usr/local/clamav and it started fine (and is still running)

Re: [clamav-users] Startup crash on MacOS X - version 0.100.0

2018-05-09 Thread Al Varnell
I'm guessing those came from some Unofficial signature database you subscribe to as I've never seen any included in the Official database. -Al- On Wed, May 09, 2018 at 06:46 PM, James Brown wrote: > Thanks for your replay Al. > > Have just got it working. This was the clue: > > Application Spe

Re: [clamav-users] Startup crash on MacOS X - version 0.100.0

2018-05-09 Thread James Brown
Yeah, it was all these: packer.yar winnow_malware.yara CVE-2010-0887.yar maldoc_somerules.yar CVE-2010-0805.yar antidebug_antivm.yar CVE-2010-1297.yar CVE-2013-0074.yar CVE-2013-0422.yar CVE-2015-5119.yar Maldoc_Hidden_PE_file.yar EK_Zeus.yar EK_Sakura.yar EK_ZeroAcces.yar EK_Zerox88.yar EK_Fragus

Re: [clamav-users] Startup crash on MacOS X - version 0.100.0

2018-05-09 Thread Al Varnell
Lots of variables here, but there has to be an actual bug somewhere. A corrupt yara file should just cause it to be ignored with a log entry indicating what's wrong and not crash ClamAV. That's what happens with one of the .yara files I've been using where I get: > LibClamAV Error: yyerror(): /

Re: [clamav-users] Startup crash on MacOS X - version 0.100.0

2018-05-09 Thread James Brown
Yeah, it should just log the error. I put back EMAIL_Cryptowall.yar back in to test and restarted clamd. It didn’t complain about it. The clamav-unofficial-sigs script had since downloaded these yara files: winnow_malwware.yara CVE-2015-5119.yar CVE-2013-0074.yar CVE-2013-0422.yar CVE-2010-0887