ClamAV concerns

To: debian-security@lists.debian.org
Subject: ClamAV concerns
From: Jan Luehr <jluehr@gmx.net>
Date: Fri, 18 Apr 2008 00:06:01 +0200
Message-id: <[🔎] 200804180006.01483.jluehr@gmx.net>

Hello,

we're using ClamAV on our mail server for scanning incomming mail server-side 
on Etch. However, looking back at ClamAV's history (DSA-1320-1, DSA-1366-1, 
DSA-1435-1, DSA-1479, DSA-1549)  makes me feel a little bit uneasy. To be 
honest, ClamAV had more remote exploitable holes than all of other public 
reachable services together. Therefore imho it's difficult to say, whether 
ClamAV protects our network or puts our server at risk.

What Do you think about this? Do you know reasons for ClamAV's unusual high 
number of bugs? Would you abandon ClamAV for server side mail scanning in 
favor of other scanners?

Thanks,
Keep smiling
yanosz

Reply to:

Follow-Ups:
- Re: ClamAV concerns
  - From: "Andrew McGlashan" <andrew.mcglashan@affinityvision.com.au>
- Re: ClamAV concerns
  - From: Martin S <fsydit@forumsyd.net>
- Re: ClamAV concerns
  - From: Johann Spies <jspies@sun.ac.za>

Prev by Date: Re: How to verify package integrity after they have been downloaded?
Next by Date: Re: ClamAV concerns
Previous by thread: Re: cmake vs DEB_BUILD_HARDENING vs 64-bit
Next by thread: Re: ClamAV concerns
Index(es):
- Date
- Thread