[clamav-users] Freshclam Non-repudiation

Al Varnell alvarnell at mac.com
Fri Jan 29 17:28:49 EST 2016


Not sure how you would arrive at that conclusion. SaneSecurity is not affiliated with Cisco/SourceFire/ClamAV.

Sent from Janet's iPad

-Al-

On Jan 29, 2016, at 2:12 PM, Brad Scalio <scalio at gmail.com> wrote:
> I think I answered my own question, Sansecurity.
> 
> On Fri, Jan 29, 2016 at 4:41 PM, Brad Scalio <scalio at gmail.com> wrote:
> 
>> Thanks Steve that does help, who's the CA or at least the certs aren't
>> self-signed correct?
>> 
>> On Fri, Jan 29, 2016, 14:42 Steven Morgan <smorgan at sourcefire.com> wrote:
>> 
>>> Brad,
>>> 
>>> The official ClamAV virus database is digitally signed before posting to
>>> the ClamAV mirrors. The CVD signature is checked before database load
>>> time.
>>> Virus names of signatures from non-signed databases are appended with
>>> ".UNOFFICIAL".
>>> 
>>> Hope this helps,
>>> Steve
>>> 
>>> On Thu, Jan 28, 2016 at 5:29 PM, Brad Scalio <scalio at gmail.com> wrote:
>>> 
>>>> Is there any integrity or authenticity checks within freshclam when it
>>>> connects to the clamAV servers to download the virus signature
>>> databases?
>>>> 
>>>> Also is there any non-repudiation  of the servers hosting the virus
>>>> signature databases, that is who gets to be a host and is there any
>>>> procedures to ensure those servers hosting the files are secured and the
>>>> files genuine?
>>>> 
>>>> Sorry for ambiguity I'm just looking for anything, I'm not suggesting
>>>> changes if there aren't just need fodder if there are any.
>>>> 
>>>> Thanks!
>>>> _______________________________________________
>>>> Help us build a comprehensive ClamAV guide:
>>>> https://github.com/vrtadmin/clamav-faq
>>>> 
>>>> http://www.clamav.net/contact.html#ml
>>>> 
>>> _______________________________________________
>>> Help us build a comprehensive ClamAV guide:
>>> https://github.com/vrtadmin/clamav-faq
>>> 
>>> http://www.clamav.net/contact.html#ml
>>> 
>> 
> _______________________________________________
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
> 
> http://www.clamav.net/contact.html#ml



More information about the clamav-users mailing list