[clamav-users] detection of really old viruses?
Joel Esler (jesler)
jesler at cisco.com
Sun Nov 23 03:18:05 UTC 2014
Al is correct here.
--
Joel Esler
Sent from my iPhone
On Nov 22, 2014, at 9:54 PM, Al Varnell <alvarnell at mac.com<mailto:alvarnell at mac.com>> wrote:
On Sat, Nov 22, 2014 at 06:42PM, Marcel Giannelia wrote:
Most of the virus definitions in the cvd files don't seem to have dates
associated with them (at least that I could see with sigtool), so I
can't tell -- are older definitions ever dropped?
That is, will clamav always be able to detect viruses from, e.g., the
1990s, or are definitions for viruses that old eventually removed from
the database?
AFAIK, definitions exist forever unless they have been found to cause False Positives.
You can normally find the date a definition was added by searching the clamav-virusdb archive:
<http://lurker.clamav.net/list/clamav-virusdb.en.html>
-Al-
--
Al Varnell
Mountain View, CA
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
More information about the clamav-users
mailing list