[clamav-users] Trouble with foxhole
Al Varnell
alvarnell at mac.com
Wed Oct 14 07:24:05 UTC 2015
Just a quick reminder that the foxholedb is unofficial and not something that should normally be discussed in this e-mail list. Steve is kind enough to intercept these request, but they really should be brought to his attention directly <http://sanesecurity.com/contact-us/>.
That being said, I don’t really understand why you shouldn’t be able to find known .exe malware in a .zip archive without any unofficial database assistance. I support OS X and see them detected by Mac users all the time.
-Al-
On Tue, Oct 13, 2015 at 11:23 PM, Hartmann, Jan wrote:
>
> Hi,
> Today we had a lot problems with exe files hidden in zip archives
>
> I tried to add the foxholedb to our clamav, but sadly it didn’t recognize the exe in the zip.
>
>
> clamscan --database=/var/lib/clamav/foxhole_generic.cdb fatuousness\ paging\ policy\ work\ regulations.zip
> fatuousness paging policy work regulations.zip: OK
>
>
> Mit freundlichen Grüßen / Best Regards
>
>
> i. A. Jan Hartmann
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3569 bytes
Desc: not available
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20151014/3efdccc3/attachment.bin>
More information about the clamav-users
mailing list