[svs-devel] Logging of virus pattern names

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Hi!

SVS now also determines the name of any virus pattern when an infection was 
found by clamdscan. The pattern name is logged together with the infect-
warning:

Dec 14 13:14:07 linux-l8hr svs_clamav[32056]: {c0bdee73-ea94-4000-
ae57-5877ce601a9d}: W: scanner thread 0: infected object found: file = /samba-
share/test_file.zip, virus = Trojan.Downloader.Istbar-183

I'm not yet using this information internally (just "output to log and forget 
about it"), but it's a prerequisite for some planned functionality of the 
upcoming 'SVS service daemon' (i. e. for the digested virus notifications).

The only drawback is that I have to use temporary files to store and retrieve 
the clamdscan output, which is something I wanted to avoid (but there's no way 
around it, because using pipes is no real option here).

Would be nice if you could update your test-systems with the SVN head revision 
(rev. 99+) to make sue it's working for others as well :).

Anyway, if no show stoppers arise, I'll release SVS 0.1.3 in a few days.

Have fun, René
-- 
René Reucher
ren...@ba...
http://www.batcom-it.net/

Once, adv.:
	Enough.
		-- Ambrose Bierce, "The Devil's Dictionary"