Joel,
I pretty much disagree with this. 90% or greater of what is sent into http://clamav.net is covered in less than 24 hours, and to
a much greater degree. We don’t aim to cover just the > sample you sent in, we cover all the variants of that sample at the time, if possible.
I
pretty much agree with you there, if it's not you guys getting them right away, it'll be a third party signature, like SecuriteInfo, or SaneSecurity, so I've got no problems.
Hell,
the reason I like ClamAV so much is that it's not a mystery black box, and I can write my own signatures if I need to.
The beauty of open source. Also, it’s free. So there’s that.
I would like to see more third party signature providers distribute through the signed packages so that every user is getting the signatures instead of a few.