[svs-devel] Logging of virus pattern names
Brought to you by:
renereucher
From: R. R. <ren...@ba...> - 2010-12-14 12:44:27
|
Hi! SVS now also determines the name of any virus pattern when an infection was found by clamdscan. The pattern name is logged together with the infect- warning: Dec 14 13:14:07 linux-l8hr svs_clamav[32056]: {c0bdee73-ea94-4000- ae57-5877ce601a9d}: W: scanner thread 0: infected object found: file = /samba- share/test_file.zip, virus = Trojan.Downloader.Istbar-183 I'm not yet using this information internally (just "output to log and forget about it"), but it's a prerequisite for some planned functionality of the upcoming 'SVS service daemon' (i. e. for the digested virus notifications). The only drawback is that I have to use temporary files to store and retrieve the clamdscan output, which is something I wanted to avoid (but there's no way around it, because using pipes is no real option here). Would be nice if you could update your test-systems with the SVN head revision (rev. 99+) to make sue it's working for others as well :). Anyway, if no show stoppers arise, I'll release SVS 0.1.3 in a few days. Have fun, René -- René Reucher ren...@ba... http://www.batcom-it.net/ Once, adv.: Enough. -- Ambrose Bierce, "The Devil's Dictionary" |