[clamav-users] Rogue definition Pdf.Exploit.CVE_2018_12798-6633682-0 causing a LOT of FP's
Groach
groachmail-stopspammingme at yahoo.com
Tue Aug 14 21:52:21 UTC 2018
Could you detail how to whitelist the offending rule please? (I fear it will be some time, or never, before this rule gets rectified officially).
On 14 August 2018 22:40:49 BST, lukn <lukn555 at gmail.com> wrote:
>Same here. I agree this rule is causing too many FPs to remain active.
>Therefore I ended up whitelisting this rule.
>
>
>> I now only run in report mode and not delete mode
>
>I don't understand the whish to leave the decision of data destruction
>to a third party software. My system should follow my rules... and
>those
>never include arbitrary data deletion as this can only end in tears.
>Running any antivirus in delete mode is like playing Russian roulette.
>_______________________________________________
>clamav-users mailing list
>clamav-users at lists.clamav.net
>http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
>
>
>Help us build a comprehensive ClamAV guide:
>https://github.com/vrtadmin/clamav-faq
>
>http://www.clamav.net/contact.html#ml
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20180814/5ae97461/attachment.htm>
More information about the clamav-users
mailing list