From owner-freebsd-questions@FreeBSD.ORG Wed Mar 10 18:34:56 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5741E16A4CE for ; Wed, 10 Mar 2004 18:34:56 -0800 (PST) Received: from destiny.chrononomicon.com (mail.chrononomicon.com [65.193.73.208]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1291543D2F for ; Wed, 10 Mar 2004 18:34:56 -0800 (PST) (envelope-from bsilver@chrononomicon.com) Received: from [IPv6:::1] (destiny.chrononomicon.com [192.168.1.42]) by destiny.chrononomicon.com (Postfix) with ESMTP id 240571FDFF for ; Wed, 10 Mar 2004 21:34:45 -0500 (EST) Mime-Version: 1.0 (Apple Message framework v612) In-Reply-To: <404FCE46.3010902@theatre.msu.edu> References: <65388515-7301-11D8-8730-000A956D2452@chrononomicon.com> <404FCE46.3010902@theatre.msu.edu> Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Bart Silverstrim Date: Wed, 10 Mar 2004 21:34:44 -0500 To: FreeBSD Questions Mailing List X-Mailer: Apple Mail (2.612) Subject: Re: clamav ports X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Mar 2004 02:34:56 -0000 On Mar 10, 2004, at 9:26 PM, Jonathan T. Sage wrote: > Bart - > > just a thought, but it is possible that the port updated the virus > database to the possibly older version in the distfile. You may want > to run freshclam and see if this clears up the issue. Hopefully thats > all the problem is. > > hope this helps > On a lark, I reran the test (situation: I ssh to my home account that isn't filtered, and send myself two small viruses that some MS user was so kind to have unknowingly sent to me...I'm using Mac to store/send them, so I guess it's nice to be immune when I have to test these things :-) Weird. It caught it this time. And I did run a freshclam, thinking something odd happened to the database. Perhaps clamd just doesn't see the update right away? (there's also a freshclam run from a cron script every four hours or so). I doublechecked and I wasn't imagining things; one virus I sent slipped right through the first time, but this time in an identical test almost five hours later the antivirus on the FreeBSD filter slapped it right down. Not gonna question it though, as long as it's working! Thanks!