[clamav-users] Clamav cannot detect a malware using a signature based on html comment

Steve Basford steveb_clamav at sanesecurity.com
Tue Jan 26 06:05:33 EST 2016


On Tue, January 26, 2016 10:49 am, Arnaud Jacques / SecuriteInfo.com wrote:
> Hello Clamav Team,
>
> I *need* to include the comment tags to avoid false positives. I tried
> several signatures : # cat test.ndb

I've seen the same.... sometimes I've had to end up using type 0, instead
of 3/4/7 which isn't ideal.

Cheers,

Steve
Web : sanesecurity.com
Blog: sanesecurity.blogspot.com
Twitter: @sanesecurity




More information about the clamav-users mailing list