User: Password:
|
|
Subscribe / Log in / New account

Thanks! (ClamAV users: Please enable stats)

Thanks! (ClamAV users: Please enable stats)

Posted May 13, 2010 4:19 UTC (Thu) by ringerc (subscriber, #3071)
Parent article: ClamAV 0.96 adds executable virus signatures and more

ClamAV is an absolutely wonderful tool, and one many just take for granted. Virus definitions "magically" come from ... somewhere ... and the mail / proxy server helps secure the network border.

It's often used indirectly via amavisd-new or similar, so people may not even be aware they're using it.

Personally, I'm extremely grateful that such a tool exists, and very thankful to all those who've helped maintain definitions, write and enhance the engine, build tools, manage the mirrors, host mirrors, maintain the website, and all the endless other work involved. It's a life-saver, as it works so smoothly and with such minimal setup that I never really need to worry about the virus scanning done on the mail server. It "just works".

The only way I find myself really able to give back is by turning on stats reporting. You should too, it's a trivial one-off setup using OpenID credentials you're certain to already have. Setup took me about one minute.

See: http://wiki.clamav.net/bin/view/Main/ClamStats
See: http://www.clamav.net/lang/en/support/faq/faq-cctts/


(Log in to post comments)

Thanks! (ClamAV users: Please enable stats)

Posted May 13, 2010 13:59 UTC (Thu) by dskoll (subscriber, #1630) [Link]

I'm grateful to ClamAV also. But saying It "just works" isn't always correct. The Clam developers deliberately forced older versions to stop working on 2010-04-15, and they accidentally forced versions < 0.96 to stop working on 2010-05-11: http://www.gossamer-threads.com/lists/clamav/users/48283

This latter accident has me really concerned... is signing the bytecode really safe enough?

Thanks! (ClamAV users: Please enable stats)

Posted May 13, 2010 19:13 UTC (Thu) by rahvin (subscriber, #16953) [Link]

The killer for me was I couldn't find a single attempt by Debian to update the package as a security update. They just let it die and recommended everyone install the unstable package. I found it highly unpleasant to install a single unstable package to get my email server running again (I didn't want to disable virus scanning). If killing the signatures database doesn't count as a security update, what does?

Thanks! (ClamAV users: Please enable stats)

Posted May 14, 2010 9:47 UTC (Fri) by TRS-80 (subscriber, #1804) [Link]

An updated clamav package is available in the stable volatile repository, which is a supported Debian service.


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds