Mailing List Archive: [clamav-users] Remote Shutdown command

[clamav-users] Remote Shutdown command

Jul 16, 2020, 11:30 AM

Post #1 of 3 (269 views)

Hi,

Is there a way to disable the remote shutdown command besides disabled the TCP port? It is being flagged as a security vulnerability.

Thanks,

Kevin Faber
Engineer, Collaboration and Productivity team
Team Ventech | HIDS
Kevin.Faber@ventechsolutions.com<mailto:Kevin.Faber@ventechsolutions.com>

___________________________________________________________________________________________________________________________________________________________________________________________________________________ DISCLAIMER: This message (including any attachments) may contain confidential, proprietary, privileged and/or private information. The information is intended to be for the use of the individual or entity designated above. If you are not the intended recipient of this message, please notify the sender immediately, and delete the message and any attachments. Any disclosure, reproduction, distribution or other use of this message or any attachments by an individual or entity other than the intended recipient is prohibited. The security of our clients is a top priority. Therefore, we have put efforts into ensuring that the message is error and virus-free. Unfortunately, full security of the email cannot be ensured as, despite our efforts, the data included in emails could be infected, intercepted, or corrupted. Therefore, the recipient should check the email for threats with proper software, as the sender does not accept liability for any damage inflicted by viewing the content of this email.

Re: [clamav-users] Remote Shutdown command [ In reply to ]

clamav-users at lists

Jul 21, 2020, 9:44 AM

Post #2 of 3 (267 views)

Permalink

Hello, any update on this issue?

From: Kevin Faber
Sent: Thursday, July 16, 2020 1:30 PM
To: clamav-users@lists.clamav.net
Subject: Remote Shutdown command

Hi,

Is there a way to disable the remote shutdown command besides disabled the TCP port? It is being flagged as a security vulnerability.

Thanks,

Kevin Faber
Engineer, Collaboration and Productivity team
Team Ventech | HIDS
Kevin.Faber@ventechsolutions.com<mailto:Kevin.Faber@ventechsolutions.com>

___________________________________________________________________________________________________________________________________________________________________________________________________________________ DISCLAIMER: This message (including any attachments) may contain confidential, proprietary, privileged and/or private information. The information is intended to be for the use of the individual or entity designated above. If you are not the intended recipient of this message, please notify the sender immediately, and delete the message and any attachments. Any disclosure, reproduction, distribution or other use of this message or any attachments by an individual or entity other than the intended recipient is prohibited. The security of our clients is a top priority. Therefore, we have put efforts into ensuring that the message is error and virus-free. Unfortunately, full security of the email cannot be ensured as, despite our efforts, the data included in emails could be infected, intercepted, or corrupted. Therefore, the recipient should check the email for threats with proper software, as the sender does not accept liability for any damage inflicted by viewing the content of this email.

Re: [clamav-users] Remote Shutdown command [ In reply to ]

clamav-users at lists

Jul 22, 2020, 9:15 AM

Post #3 of 3 (267 views)

Permalink

Hi Kevin,

There is currently no way to disable the remote shutdown command. I created an internal ticket for this issue, although I am not sure when it will be scheduled.

In the meantime, we recommend not hosting the TCP socket on a port that is accessible on an untrusted network.

Thanks,
Andy

________________________________
From: clamav-users <clamav-users-bounces@lists.clamav.net> on behalf of Kevin Faber via clamav-users <clamav-users@lists.clamav.net>
Sent: Tuesday, July 21, 2020 12:44 PM
To: clamav-users@lists.clamav.net <clamav-users@lists.clamav.net>
Cc: Kevin Faber <Kevin.Faber@ventechsolutions.com>
Subject: Re: [clamav-users] Remote Shutdown command

Hello, any update on this issue?

From: Kevin Faber
Sent: Thursday, July 16, 2020 1:30 PM
To: clamav-users@lists.clamav.net
Subject: Remote Shutdown command

Hi,

Is there a way to disable the remote shutdown command besides disabled the TCP port? It is being flagged as a security vulnerability.

Thanks,

Kevin Faber

Engineer, Collaboration and Productivity team

Team Ventech | HIDS

Kevin.Faber@ventechsolutions.com<mailto:Kevin.Faber@ventechsolutions.com>

___________________________________________________________________________________________________________________________________________________________________________________________________________________ DISCLAIMER: This message (including any attachments) may contain confidential, proprietary, privileged and/or private information. The information is intended to be for the use of the individual or entity designated above. If you are not the intended recipient of this message, please notify the sender immediately, and delete the message and any attachments. Any disclosure, reproduction, distribution or other use of this message or any attachments by an individual or entity other than the intended recipient is prohibited. The security of our clients is a top priority. Therefore, we have put efforts into ensuring that the message is error and virus-free. Unfortunately, full security of the email cannot be ensured as, despite our efforts, the data included in emails could be infected, intercepted, or corrupted. Therefore, the recipient should check the email for threats with proper software, as the sender does not accept liability for any damage inflicted by viewing the content of this email.