|
|
Re: Blocking Broken Archives: msg#00026security.virus.clamav.devel
On Sun, 27 Nov 2005 14:37:44 +0100 "Sander Holthas" <info@xxxxxxxxxxxx> wrote: > I'm currently receiving a lot of Sober.U bounces, but the zip-archives in > which they reside are broken (unexpected end-of-archive). Avast, Norman and > NOD32 still detect Sober-variants in them, but ClamAV and all other scanners > let them through. While harmless, they are a nuisance and the ability to > block them like DetectBrokenExecutables would come in handy here. Does the development version detect the worm in broken archives? -- oo ..... Tomasz Kojm <tkojm@xxxxxxxxxx> (\/)\......... http://www.ClamAV.net/gpg/tkojm.gpg \..........._ 0DCA5A08407D5288279DB43454822DC8985A444B //\ /\ Sun Nov 27 14:39:56 CET 2005
http://lurker.clamav.net/list/clamav-devel.html |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | Blocking Broken Archives: 00026, Sander Holthas |
|---|---|
| Next by Date: | discussion: Oversized.{Zip,RAR} and BLOCKMAX: 00026, Stephen Gran |
| Previous by Thread: | Blocking Broken Archivesi: 00026, Sander Holthas |
| Next by Thread: | discussion: Oversized.{Zip,RAR} and BLOCKMAX: 00026, Stephen Gran |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | FAQ | advertise |
