Re: [clamav-users] Scanning a large file through HTTP

Seems to me that this behavior, advertising a 4GB limit while silently imposing a 2GB limit and reporting "OK" for anything in between, is a *major* security flaw: ClamAV *must* report that the file was too big to deal with (however worded). Thus I've taken to using clamscan rather than

Re: [clamav-users] vistumbler as false positive

Without knowing the name of the infection I can't provide even a guess as to whether it is or not, but the exact answer to your question is for you to report it by filling out the form found @https://www.clamav.net/reports/fp including the file itself. Sent from my iPad -Al- On Apr 7, 2021,

[clamav-users] vistumbler as false positive

https://raw.github.com/acalcutt/Releases/master/Vistumbler/VistumblerMDB/v10/Vistumbler_v10-7.exe Looks like this is (vistumbler) detected as false positive. How to fix this? Eero ___ clamav-users mailing list clamav-users@lists.clamav.net

Re: [clamav-users] Scanning a large file through HTTP

Hi, Is it 4 GB? Can this size be increased ? You can increase the maximum file size by setting the MaxFileSize option in clamd.conf. ClamAV’s option parser won’t allow you to set a maximum scan size higher than 4GB. In reality, the file size limit is 2GB. Anything larger than that will be

Re: [clamav-users] ClamAV® blog: ClamAV 0.103.2 security patch release

We’ll look into that for a future update. Sent from my  iPhone > On Apr 7, 2021, at 16:58, Arjen de Korte via clamav-users > wrote: > > Citeren "Joel Esler (jesler) via clamav-users" > : > >> It’s available on the webpage. > > I already wrote that I know it is available from the

Re: [clamav-users] ClamAV® blog: ClamAV 0.103.2 security patch release

Citeren "Joel Esler (jesler) via clamav-users" : It’s available on the webpage. I already wrote that I know it is available from the website. I need to update the stored keyring in openSUSE Factory, which needs a backlink to the origin. Rather than downloading

Re: [clamav-users] ClamAV® blog: ClamAV 0.103.2 security patch release

It’s available on the webpage. > On Apr 7, 2021, at 4:29 PM, Arjen de Korte via clamav-users > wrote: > > Citeren "Joel Esler (jesler) via clamav-users" > : > > It seems the package is now signed with a different PGP key. Is there a > location from where I can directly download the public

Re: [clamav-users] ClamAV® blog: ClamAV 0.103.2 security patch release

Citeren "Joel Esler (jesler) via clamav-users" : It seems the package is now signed with a different PGP key. Is there a location from where I can directly download the public key, rather than copying it from the webpage? Best regards, Arjen

Re: [clamav-users] ClamAV® blog: Are you still attempting to download safebrowsing.cvd?

On Apr 7, 2021, at 3:04 PM, Vladislav Kurz via clamav-users mailto:clamav-users@lists.clamav.net>> wrote: Dne středa 7. dubna 2021 19:41:34 CEST, Joel Esler (jesler) via clamav-users napsal(a): https://blog.clamav.net/2021/04/are-you-still-attempting-to-download.html

[clamav-users] Cvdupdate user?

If you are in Switzerland, and using cvdupdate, and have cvdupdate set to check for updates once an hour, please contact me off list. Your UUID is: CVDUPDATE/0.3.0 (3d80e05e-0afa-449b-b289-1de3e9c070f1) Thanks! -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group

Re: [clamav-users] ClamAV® blog: Are you still attempting to download safebrowsing.cvd?

Dne středa 7. dubna 2021 19:41:34 CEST, Joel Esler (jesler) via clamav-users napsal(a): > > https://blog.clamav.net/2021/04/are-you-still-attempting-to-download.html > > > l> > > > > Are you still attempting to download

[clamav-users] ClamAV® blog: ClamAV 0.103.2 security patch release

> > https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html > > > ClamAV 0.103.2 security patch release > > Wednesday, April 7, 2021 > > <>ClamAV 0.103.2 is out now. Users can head over to

[clamav-users] ClamAV® blog: Are you still attempting to download safebrowsing.cvd?

> > https://blog.clamav.net/2021/04/are-you-still-attempting-to-download.html > > > Are you still attempting to download safebrowsing.cvd? > > It has come to our attention that a few of you (about 515,000 of you, to

Re: [clamav-users] Scanning a large file through HTTP

Thanks a lot Paul and Ged for your replies. Perhaps i added too many confusing points in my question :). If i just consider myself as a developer of the HTTP Service for malware scanning. I would just like to know what could be the maximum file size which can be supported by ClamAV ? Is it 4

Re: [clamav-users] Scanning a large file through HTTP

On 07/04/2021 15:38, Saurav Sarkar via clamav-users wrote: We have files like CAD files which can go in GBs and want to send to this malware scanning service. Why are you scanning CAD files? Can your CAD files contain arbitrary executable code which is blindly executed by the CAD software?

Re: [clamav-users] Scanning a large file through HTTP

Hi there, On Wed, 7 Apr 2021, Saurav Sarkar via clamav-users wrote: We are using a HTTP enabled malware scanning service based on Clam AV. Perhaps you will get better answers if you address your questions to the supplier of this service. We have files like CAD files which can go in GBs and

[clamav-users] Scanning a large file through HTTP

Hi All, We are using a HTTP enabled malware scanning service based on Clam AV. The service is made something like this https://github.com/solita/clamav-rest We have files like CAD files which can go in GBs and want to send to this malware scanning service. Is there a possibility to send the

Re: [clamav-users] ClamAV 0.103.1 on RHEL 6.7 x32

Hi there, On Wed, 7 Apr 2021, Sorin Petrut Niculae via clamav-users wrote: A couple of things that I forgot to mentioned: 1. I cannot upgrade the system, I know that this version of rhel is EoL but is impossible to upgrade it due too client policy. Tell the client he's fired? :) 2. Is a

Re: [clamav-users] ClamAV 0.103.1 on RHEL 6.7 x32

Good morning, Thanks to all for your help. A couple of things that I forgot to mentioned: 1. I cannot upgrade the system, I know that this version of rhel is EoL but is impossible to upgrade it due too client policy. 2. Is a offline system, is impossible to connect it to internet due