[sanesecurity] Re: Debian Squeeze clamav testing question
- From: J4K <junk4@xxxxxxxxxxxx>
- To: sanesecurity@xxxxxxxxxxxxx
- Date: Mon, 21 Mar 2011 15:10:52 +0100
On 03/21/2011 02:43 PM, Steve Basford wrote:
>> Hi there,
>>
>> I installed the package on Debian Squeeze. I created a file and put
>> a test virus string in it to verify all was well, but clamscan did not
>> pick it up. A clamscan reload was done. Any ideas?
>>
> Hi,
>
> Copy all this into a single file... that should work...
>
> http://pastebin.com/gu3enQ5j
>
> It's to do with email headers/formatting....
>
> Cheers,
>
> Steve
> Sanesecurity
>
>
Hi Steve,
Sadly no change. I think that I have to add something into Clamav
tha I missed out.
# clamscan scan.txt
LibClamAV Warning:
***********************************************************
LibClamAV Warning: *** This version of the ClamAV engine is
outdated. ***
LibClamAV Warning: *** DON'T PANIC! Read
http://www.clamav.net/support/faq ***
LibClamAV Warning:
***********************************************************
LibClamAV Warning:
***********************************************************
LibClamAV Warning: *** This version of the ClamAV engine is
outdated. ***
LibClamAV Warning: *** DON'T PANIC! Read
http://www.clamav.net/support/faq ***
LibClamAV Warning:
***********************************************************
scan.txt: OK
----------- SCAN SUMMARY -----------
Known viruses: 1076404
Engine version: 0.96.5
Scanned directories: 0
Scanned files: 1
Infected files: 0
Data scanned: 0.00 MB
Data read: 0.00 MB (ratio 0.00:1)
Time: 3.716 sec (0 m 3 s)
# cat scan.txt
Return-Path: <test.test>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_123"
Subject: test
This is a multi-part message in MIME format.
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Dwindows-1252"
http-equiv=3DContent-Type>
body_CHANGEg63uhj2ucyeccrux7d83a4qd5ua5vnlgwjp6b6fmpzpobzjabftehuhraxfbyCHANGEED
</BODY></HTML>
Other related posts:
