From owner-freebsd-security Tue Oct 30 9:47:36 2001 Delivered-To: freebsd-security@freebsd.org Received: from smtp1.sentex.ca (smtp1.sentex.ca [199.212.134.4]) by hub.freebsd.org (Postfix) with ESMTP id A6ED437B408 for ; Tue, 30 Oct 2001 09:47:14 -0800 (PST) Received: from simoeon.sentex.net (pyroxene.sentex.ca [199.212.134.18]) by smtp1.sentex.ca (8.11.6/8.11.6) with ESMTP id f9UHlE476463 for ; Tue, 30 Oct 2001 12:47:14 -0500 (EST) (envelope-from mike@sentex.net) Message-Id: <5.1.0.14.0.20011030124022.04487620@marble.sentex.ca> X-Sender: mdtpop@marble.sentex.ca X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Tue, 30 Oct 2001 12:41:05 -0500 To: freebsd-security@FreeBSD.ORG From: Mike Tancsa Subject: Re: probable virus In-Reply-To: <5.1.0.14.0.20011030115848.0350bec0@marble.sentex.ca> References: <20011031.020107.74732121.ume@mahoroba.org> <5.1.0.14.0.20011030115023.03544ec0@marble.sentex.ca> <20011030165053.8CFBA37B405@hub.freebsd.org> <5.1.0.14.0.20011030115023.03544ec0@marble.sentex.ca> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Just to followup, the daily dat file seems to be working fine. Anyone out there using it on a regular basis, I would be interested in hearing your experiences. ---Mike At 12:02 PM 10/30/01 -0500, Mike Tancsa wrote: >Thanks! I had a look at NAI's site and it seems they know about it and >its in their daily dat file updates. Has anyone used this in conjunction >with the FreeBSD scanner ? We have been using the weekly updates only in >the past. Apart from the UPPERCASE only names inside the .zip file, at >http://download.nai.com/products/mcafee-avert/daily_dats/DAILYDAT.ZIP > > > ---Mike > >At 02:01 AM 10/31/01 +0900, Hajimu UMEMOTO wrote: >> >>>>> On Tue, 30 Oct 2001 11:51:34 -0500 >> >>>>> Mike Tancsa said: >> >> >>mike> This looks virusish... Anyone know which one it is ? The current >>nai dat >>mike> file does not seem to catch it. >> >>Sophos caught it. >>Here is the output of the scanner: >> >> >>> Virus 'W32/Klez' found in file >> /var/log/amavis/amavis-12567923/parts/msg-16493-2.exe >> >>-- >>Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan >>ume@mahoroba.org ume@bisd.hitachi.co.jp ume@{,jp.}FreeBSD.org >>http://www.imasy.org/~ume/ >> >>To Unsubscribe: send mail to majordomo@FreeBSD.org >>with "unsubscribe freebsd-security" in the body of the message > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message