J.R.
2018-11-23 21:30:40 UTC
In my freshclam.conf I have 'CompressLocalDatabase yes' set, yet I
noticed that I have daily.cld & safebrowsing.cld instead of .cvd? I
always thought the .cvd was the compressed version and spent quite a
bit of time trying to find out how to manually compress a .cld file
into a .cvd (note to others: you can't, a .cvd is signed by clamav).
So then I manually downloaded the latest .cvd files just to compare
and realized the file sizes were almost identical. So I'm guessing
freshclam is compressing the file but keeping the extension of .cld
??? If that's the case, perhaps it would be worthwhile to clarify that
point in the .conf file.
Second, bugzilla.clamav.net seems to be having a https certificate
issue, all the browsers (and a website I tested) say it is not
trusted. Basically this is due to the fact it is using an old Thawte
generated cert, which due to Symantec dropping the ball most browsers
no longer will trust these old certs and will issue a warning... You
can read more here, I don't know if Digicert is regenerating them for
free or if they want to charge you for a new one...
https://security.googleblog.com/2017/09/chromes-plan-to-distrust-symantec.html
Just thought someone might want to look into that.
_______________________________________________
clamav-users mailing list
clamav-***@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
noticed that I have daily.cld & safebrowsing.cld instead of .cvd? I
always thought the .cvd was the compressed version and spent quite a
bit of time trying to find out how to manually compress a .cld file
into a .cvd (note to others: you can't, a .cvd is signed by clamav).
So then I manually downloaded the latest .cvd files just to compare
and realized the file sizes were almost identical. So I'm guessing
freshclam is compressing the file but keeping the extension of .cld
??? If that's the case, perhaps it would be worthwhile to clarify that
point in the .conf file.
Second, bugzilla.clamav.net seems to be having a https certificate
issue, all the browsers (and a website I tested) say it is not
trusted. Basically this is due to the fact it is using an old Thawte
generated cert, which due to Symantec dropping the ball most browsers
no longer will trust these old certs and will issue a warning... You
can read more here, I don't know if Digicert is regenerating them for
free or if they want to charge you for a new one...
https://security.googleblog.com/2017/09/chromes-plan-to-distrust-symantec.html
Just thought someone might want to look into that.
_______________________________________________
clamav-users mailing list
clamav-***@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml