[clamav-users] False Positives - Heuristics.Phishing.Email.SpoofedDomain

2019-01-08 Thread Ken Campney
Emails from credit card companies I deal with have since 12/10/18 been getting flagged by Heuristics.Phishing.Email.SpoofedDomain. These include Best Buy/Citi Bank (accountsonline.com) and American Express. Sending Domain and IP's have been verified Upgraded to ClamAV version: 101.0 on

Re: [clamav-users] False Positives - Heuristics.Phishing.Email.SpoofedDomain

2019-01-08 Thread Joel Esler (jesler)
Check out http://www.clamav.net/documents/miscellaneous-faq > On Jan 8, 2019, at 2:43 PM, Ken Campney wrote: > > Emails from credit card companies I deal with have since 12/10/18 been > getting flagged by

Re: [clamav-users] [Clamav-devel] ClamAV® blog: ClamAV 0.101.1 Patch has been released

2019-01-08 Thread Alan Stern
If anyone is interested, on my system (Fedora 28) building ClamAV generates a ton of warning messages. Some of them are bogus, but a lot are valid. Things like: Variable may be used uninitialized; Variable defined but not used; Variable set but not used;

Re: [clamav-users] False Positives - Heuristics.Phishing.Email.SpoofedDomain

2019-01-08 Thread Ken Campney
Thanks Joel, Testing confirmed the issue appears to be with the WDB/PDB databases, I'm assuming 101.0 was when they were introduced For now I've changed my scan settings from blackhole (in use since 99.4) to Quarantine. Hopefully as I submit samples, white listings can get added. Thanks

Re: [clamav-users] [Clamav-devel] ClamAV® blog: ClamAV 0.101.1 Patch has been released

2019-01-08 Thread Micah Snyder (micasnyd)
Thanks for bring it up Gary and Scott. I'm sorry to see that slipped us. I put in a ticket to address it for the next patch release. Thank you, Micah Micah Snyder ClamAV Development Talos Cisco Systems, Inc. On Jan 8, 2019, at 1:12 AM, Scott Kitterman mailto:deb...@kitterman.com>> wrote: On

Re: [clamav-users] [Clamav-devel] ClamAV® blog: ClamAV 0.101.1 Patch has been released

2019-01-08 Thread Joel Esler (jesler)
Solaris is definitely not one of the OSs in our build farm. Just FYI. > On Jan 8, 2019, at 1:05 AM, Gary R. Schmidt wrote: > > On 08/01/2019 05:33, Joel Esler (jesler) wrote: >>> >>> https://blog.clamav.net/2019/01/clamav-01011-patch-has-been-released.html >>>