On 03/21/2011 03:45 PM, GrayHat wrote: >> Sadly no change. I think that I have to add something into Clamav tha > I missed out. > > Or maybe in "debian", given that the same sigs are working > with all other operating systems... uh... and this btw includes > some stuff coming down from Redmond :D > > Seriously; I suspect something in your setup got (for a reason > or another) screwed, so, *please* - try reinstalling your clamav > package and then, after configuring your "sanesecurity" sigs > script, try running it by hand, possibly using the same user > account which you're using for your scheduled job; that should > possibly help... and, by the way, looking at the clamd logs may > be of help as well > > Hi, The answer is simple. I thought that the package would contain the rules, and then try and download new ones later. It does not. All that had to be done was run the command /usr/sbin/clamav-unofficial-sigs for the updates. Easy. scan.txt: Sanesecurity.TestSig_Type3_Bdy.4.UNOFFICIAL FOUND ----------- SCAN SUMMARY ----------- Known viruses: 1178667 Engine version: 0.96.5 Scanned directories: 0 Scanned files: 1 Infected files: 1 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 4.894 sec (0 m 4 s) Problem solved.