Mailinglist Archive: opensuse-bugs (6458 mails)
| < Previous | Next > |
[Bug 270581] New: Clam AV real-time Agent cannot identify test malicious code download
- From: bugzilla_noreply@xxxxxxxxxx
- Date: Wed, 2 May 2007 09:37:57 -0600 (MDT)
- Message-id: <bug-270581-21960@xxxxxxxxxxxxxxxxxxxxxxxxx/>
https://bugzilla.novell.com/show_bug.cgi?id=270581
Summary: Clam AV real-time Agent cannot identify test malicious
code download
Product: openSUSE 10.2
Version: Final
Platform: i386
OS/Version: Other
Status: NEW
Severity: Critical
Priority: P5 - None
Component: Security
AssignedTo: security-team@xxxxxxx
ReportedBy: alpha096@xxxxxxxxxx
QAContact: qa@xxxxxxx
This bug was identified to CLAM AV at
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=443
I am sorry I am unable to add you as CC address.
The statement made in reply
Quote
Not true.
zolw@Wierszokleta:/tmp$ clamscan eicarcom2.zip
eicarcom2.zip: Eicar-Test-Signature FOUND
----------- SCAN SUMMARY -----------
Known viruses: 108083
Engine version: 0.90.1
Scanned directories: 0
Scanned files: 1
Infected files: 1
Data scanned: 0.00 MB
Time: 3.126 sec (0 m 3 s)
Indicates and tests identically, that ClamAV will ONLY fund malicious script
whilst clamscan is performed.
The real-time agent therefore serves no purpose in that it will not, either by
functional design or fault, detect malicious code being downloaded.
As such IF the real-time agent cannot identify malicious code we must provide
GUI scanning options to the user. Especially as a result of advertising
"Anti_virus" Protection on the boxed version.
It would appear that Clamav do NOT want to enter into ANY discussion re- the
real-time agent from the lack of response despite re-opening of bug and
submitting further details.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Summary: Clam AV real-time Agent cannot identify test malicious
code download
Product: openSUSE 10.2
Version: Final
Platform: i386
OS/Version: Other
Status: NEW
Severity: Critical
Priority: P5 - None
Component: Security
AssignedTo: security-team@xxxxxxx
ReportedBy: alpha096@xxxxxxxxxx
QAContact: qa@xxxxxxx
This bug was identified to CLAM AV at
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=443
I am sorry I am unable to add you as CC address.
The statement made in reply
Quote
Not true.
zolw@Wierszokleta:/tmp$ clamscan eicarcom2.zip
eicarcom2.zip: Eicar-Test-Signature FOUND
----------- SCAN SUMMARY -----------
Known viruses: 108083
Engine version: 0.90.1
Scanned directories: 0
Scanned files: 1
Infected files: 1
Data scanned: 0.00 MB
Time: 3.126 sec (0 m 3 s)
Indicates and tests identically, that ClamAV will ONLY fund malicious script
whilst clamscan is performed.
The real-time agent therefore serves no purpose in that it will not, either by
functional design or fault, detect malicious code being downloaded.
As such IF the real-time agent cannot identify malicious code we must provide
GUI scanning options to the user. Especially as a result of advertising
"Anti_virus" Protection on the boxed version.
It would appear that Clamav do NOT want to enter into ANY discussion re- the
real-time agent from the lack of response despite re-opening of bug and
submitting further details.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
| < Previous | Next > |