[clamav-users] Whitelist based on sign *and* filename?
Mathieu D.
mathieud at univ-jfc.fr
Thu Dec 1 10:48:05 UTC 2016
Le lundi 28 novembre 2016, 10:28:03 CET Paul Kosinski a écrit :
> Of course, if anybody is able to find out what the magic filename is,
> they could mount a targeted attack.
Of course, but thanks for the warning.
> How are the PDFs generated? Would it be possible to attach a
> cryptographic signature to asset to their validity? (That would
> probably require an additional step on receipt as well as transmission
> to indicate they were OK in spite of ClamAV's red flag.)
Unfortunately we have no control on those PDF creation.
Bests,
--
Mathieu
More information about the clamav-users
mailing list