[clamav-users] ClamAV independent assessment?
David Cantrell
david.m.cantrell at gmail.com
Wed Jul 24 23:35:56 UTC 2019
Yes I'm aware of its open source status that's why I'm asking here. I'm specifically asking if anyone is aware of any independent third party assessments of it from a security vulnerability standpoint. My org is considering it due to a very specific tech requirement but is concerned about the residual risk of installing it. Due to a specific schedule and specific tech issues it is the only real option we have available right now but we don't have time to assess it ourselves at this time, hence my question asking if there are any third party reports available to help us reduce our risk concerns. That's all. Thanks.
On Jul 24, 2019, 16:39 -0500, Joel Esler (jesler) <jesler at cisco.com>, wrote:
> ClamAV is an open source project. Anyone can examine the code at any time and many continually do.
>
> Do you mean in terms of security of the code base or in terms of efficacy. Either way, the answer is the same.
>
> Sent from my iPhone
>
> > On Jul 24, 2019, at 15:00, David Cantrell via clamav-users <clamav-users at lists.clamav.net> wrote:
> >
> > Has ClamAV been independently assessed by a third party?
> >
> > _______________________________________________
> >
> > clamav-users mailing list
> > clamav-users at lists.clamav.net
> > https://lists.clamav.net/mailman/listinfo/clamav-users
> >
> >
> > Help us build a comprehensive ClamAV guide:
> > https://github.com/vrtadmin/clamav-faq
> >
> > http://www.clamav.net/contact.html#ml
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20190724/7be44f2a/attachment.htm>
More information about the clamav-users
mailing list