Mailing List Archive

No!

You must do a complete installation of the new ClamAV package to update the engine. Freshclam only updates signatures.

Sent from my iPad

-Al-

On Mar 11, 2019, at 20:51, Sunhux G via clamav-users <clamav-users@lists.clamav.net> wrote:
> Does freshclam auto-update Clam's engine.


_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

So we have to either use an automated script to check if there's a new
engine & use the script to automatically deinstall & install OR
have to do it manually.

Anyone has such a script to share??

On 3/12/19, Al Varnell via clamav-users <clamav-users@lists.clamav.net> wrote:
> No!
>
> You must do a complete installation of the new ClamAV package to update the
> engine. Freshclam only updates signatures.
>
> Sent from my iPad
>
> -Al-
>
> On Mar 11, 2019, at 20:51, Sunhux G via clamav-users
> <clamav-users@lists.clamav.net> wrote:
>> Does freshclam auto-update Clam's engine.
>
>
> _______________________________________________
>
> clamav-users mailing list
> clamav-users@lists.clamav.net
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Now that you are subscribed to this list you will get an announcement whenever a new version is released or if this list is too noisy for you, just subscribe to clamav- announce <http://www.clamav.net/contact.html#ml>.

No need to uninstall, just download, configure, compile and install new version, or check with your OS vendor to see if they have an update package. If you tell us what platform you are using, someone might be able to help with that.

Sent from my iPad

-Al-

On Mar 11, 2019, at 21:41, Sunhux G via clamav-users <clamav-users@lists.clamav.net> wrote:
> So we have to either use an automated script to check if there's a new
> engine & use the script to automatically deinstall & install OR
> have to do it manually.

Isn't that issue fixed in 0.100.1?

As I recall, 0.101.0 and .1 didn't provide any security fixes, at least not as identified as such.

Scott K

On March 12, 2019 3:51:03 AM UTC, Sunhux G via clamav-users <clamav-users@lists.clamav.net> wrote:
>Does freshclam auto-update Clam's engine.
>
>Recently there's a vulnerability ( https://vuldb.com/?id.121488 ) so
>our
>0.100.1 engine is viewed as outdated in an audit as 0.101.1 addresses
>this
>vulnerability
>
>
>Sun
>
>>
>>

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

> 0.101.0 and .1
I'm uncertain but auditor just pointed out https://vuldb.com/?id.121488
& recommended we upgrade from 0.100.1 to 0.101.1

>what platform you are using, someone might be able to help with that
I'm on Solaris 10 x86 : we disabled compilers as part of our OS hardening;
much appreciated if someone can help me make/compile one for our OS.
So far I can't locate any 0.101.1 for Solaris 10 x86, only for
RHEL/Windows.


On Tue, Mar 12, 2019 at 1:37 PM Scott Kitterman <debian@kitterman.com>
wrote:

> Isn't that issue fixed in 0.100.1?
>
> As I recall, 0.101.0 and .1 didn't provide any security fixes, at least
> not as identified as such.
>
> Scott K
>
> On March 12, 2019 3:51:03 AM UTC, Sunhux G via clamav-users <
> clamav-users@lists.clamav.net> wrote:
> >Does freshclam auto-update Clam's engine.
> >
> >Recently there's a vulnerability ( https://vuldb.com/?id.121488 ) so
> >our
> >0.100.1 engine is viewed as outdated in an audit as 0.101.1 addresses
> >this
> >vulnerability
> >
> >
> >Sun
> >
> >>
> >>
>

On 12.03.19 13:58, Sunhux G via clamav-users wrote:
>I'm on Solaris 10 x86 : we disabled compilers as part of our OS hardening;
>much appreciated if someone can help me make/compile one for our OS.
>So far I can't locate any 0.101.1 for Solaris 10 x86, only for
>RHEL/Windows.

it's strange that you disable compiling from source code as part of
hardening, but you are willing to take code compiled by someone else and run
it locally.

How do you know that the code doesn't contain backdoor?
--
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Holmes, what kind of school did you study to be a detective?
- Elementary, Watson. -- Daffy Duck & Porky Pig

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

On March 12, 2019 11:22:05 AM UTC, Matus UHLAR - fantomas via clamav-users <clamav-users@lists.clamav.net> wrote:
>On 12.03.19 13:58, Sunhux G via clamav-users wrote:
>>I'm on Solaris 10 x86 : we disabled compilers as part of our OS
>hardening;
>>much appreciated if someone can help me make/compile one for our OS.
>>So far I can't locate any 0.101.1 for Solaris 10 x86, only for
>>RHEL/Windows.
>
>it's strange that you disable compiling from source code as part of
>hardening, but you are willing to take code compiled by someone else
>and run
>it locally.
>
>How do you know that the code doesn't contain backdoor?

You are thinking about security. This seems to be about compliance. It's only distantly related.

Scott K

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

On 12/03/2019 23:23, Scott Kitterman via clamav-users wrote:
>
>
> On March 12, 2019 11:22:05 AM UTC, Matus UHLAR - fantomas via clamav-users <clamav-users@lists.clamav.net> wrote:
>> On 12.03.19 13:58, Sunhux G via clamav-users wrote:
>>> I'm on Solaris 10 x86 : we disabled compilers as part of our OS
>> hardening;
>>> much appreciated if someone can help me make/compile one for our OS.
>>> So far I can't locate any 0.101.1 for Solaris 10 x86, only for
>>> RHEL/Windows.
>>
>> it's strange that you disable compiling from source code as part of
>> hardening, but you are willing to take code compiled by someone else
>> and run
>> it locally.
>>
>> How do you know that the code doesn't contain backdoor?
>
> You are thinking about security. This seems to be about compliance. It's only distantly related.
>
True.

Looks more like Standard Auditory Compliance by Incompetence to me (but
I'm a cynical old BOFH, so much of what goes on these days is
thinly-disguised incompetence).

Cheers,
Gary B-)

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

> I'm on Solaris 10 x86 : we disabled compilers as part of our OS hardening;
much appreciated if someone can help me make/compile one for our OS.
So far I can't locate any 0.101.1 for Solaris 10 x86, only for RHEL/Windows.

Well, I'll point you to unixpackages.com.
You pay a subscription fee, they compile packages for you.
Easy to say who the source is from too, for your compliance auditor.
Once you're paid up you can request they build a newer version of ClamAV
(they're on 0.100.2 currently).
They provide just a libgcc package, to keep the whole gcc compiler off the host.
In total, you need 21 packages installed in order to satisfy all the dependencies.


Regards, Scott Packard

> -----Original Message-----
> From: clamav-users <clamav-users-bounces@lists.clamav.net> On Behalf Of Gary R. Schmidt
> Sent: Tuesday, March 12, 2019 5:42 AM
> To: clamav-users@lists.clamav.net
> Subject: [External] Re: [clamav-users] Any way to auto-update Clam engine (freshclam or any other tools)
>
> On 12/03/2019 23:23, Scott Kitterman via clamav-users wrote:
> >
> >
> > On March 12, 2019 11:22:05 AM UTC, Matus UHLAR - fantomas via clamav-users <clamav-users@lists.clamav.net> wrote:
> >> On 12.03.19 13:58, Sunhux G via clamav-users wrote:
> >>> I'm on Solaris 10 x86 : we disabled compilers as part of our OS
> >> hardening;
> >>> much appreciated if someone can help me make/compile one for our OS.
> >>> So far I can't locate any 0.101.1 for Solaris 10 x86, only for
> >>> RHEL/Windows.
> >>
> >> it's strange that you disable compiling from source code as part of
> >> hardening, but you are willing to take code compiled by someone else
> >> and run
> >> it locally.
> >>
> >> How do you know that the code doesn't contain backdoor?
> >
> > You are thinking about security. This seems to be about compliance. It's only distantly related.
> >
> True.
>
> Looks more like Standard Auditory Compliance by Incompetence to me (but
> I'm a cynical old BOFH, so much of what goes on these days is
> thinly-disguised incompetence).


See Gene Spafford's latest blog on RSA conference, for more like-minded thoughts.

_______________________________________________

clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml