Re: Antivirus for CLI

To: debian-user@lists.debian.org
Subject: Re: Antivirus for CLI
From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
Date: Wed, 20 Jun 2012 17:02:12 +0200
Message-id: <[🔎] 1340204532.2803.76.camel@precise>
In-reply-to: <[🔎] jrslaj$8av$4@dough.gmane.org>
References: <[🔎] CAGWVfMk2OeCbRppzLZ6Qf5adfv2RQi3BA6V+WA-=fYfLOVO3yQ@mail.gmail.com> <[🔎] 4FE023EE.4010007@qindel.com> <[🔎] 1340090147.2090.25.camel@precise> <[🔎] CAGWVfMm7zwNe2xPV2=Mda5E8+Jj0xFmA3cYafjqk9VBOLz13Uw@mail.gmail.com> <[🔎] alpine.BSF.2.01.1206190422120.47203@freire1.furyyjbeyq.arg> <[🔎] 1340180427.2461.21.camel@precise> <[🔎] jrslaj$8av$4@dough.gmane.org>

On Wed, 2012-06-20 at 14:05 +0000, Camaleón wrote:
> On Wed, 20 Jun 2012 10:20:27 +0200, Ralf Mardorf wrote:
> 
> > On Tue, 2012-06-19 at 04:26 -0400, Jude DaShiell wrote:
> >> clamav probably will help along with clamav-milter to filter e-mail.
> >> Lastly, nmh installed for everybody to use because you get out of mbox
> >> format with that.  If clamav finds a virus in someone's mbox file and
> >> quarrantines that whole file they just lost all of their email. 
> 
> (...)
> 
> Well, regardless the message format in use (mbox, maildir, nmh...) you 
> can configure (at server level) an imap/pop3 account for every user 
> (e.g., "user+virus@example.com") where to direct the malware that has 
> been detected for that account.
> 
> OTOH I would rather stick to the usual and well-known message formats 
> like maildir or mbox unless I had any specific requirement for not using 
> them.
> 
> > I don't like clamav for several reasons, 
> 
> (...)
> 
> Can you at least list "one"? :-)
> 
> The only drawback I can mention is about its accuracy (when compared to 
> another payware and bloatware anti-malware solutions), but for e-mail 
> scanning or samba it does a nice job mainly because of its perfect 
> integration within a linux environment.
> 
> An AV solution in linux has to be seen as an additional defense for the 
> windows boxes but not the only one, meaning windows users have to have 
> their own anti-malware software properly setup and running, either 
> locally of using a server based deployment.

ClamGUI was buggy as hell, unable to update the database, unable to scan
some files I wanted to scan. The support wasn't interested in bug
reports, feature requests. Perhaps unimportant for CLI, however, even
with an updated database I had much better success using AVIRA's
antivir. AVIRA's CLI, the old and the one some years replaced this old
one, where easier to use and AVIRA was better to setup for my needs. I
manually scanned files and mails I forwarded to Windows users. The AVIRA
support was highly interested in fixing issues, such as e.g. Linux files
that accidentally where marked as virulent, adding new virulent stuff to
the database. In Germany AVIRA for Linux perhaps is more used than in
other countries. IIRC Suse added it to the repositories, I might be
wrong and it was only available by the pacman repository. Anyway, it was
easy to install from the AVIRA download and worked without any issues on
different distros I used. Clam was unreliable here, did easily brake
after upgrades.
YMMV!
Ralf

Reply to:

Follow-Ups:
- Re: Antivirus for CLI
  - From: Camaleón <noelamac@gmail.com>

References:
- Antivirus for CLI
  - From: Muhammad Yousuf Khan <sirtcp@gmail.com>
- Re: Antivirus for CLI
  - From: Alberto Fuentes <alberto.fuentes@qindel.com>
- Re: Antivirus for CLI
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: Antivirus for CLI
  - From: Muhammad Yousuf Khan <sirtcp@gmail.com>
- Re: Antivirus for CLI
  - From: Jude DaShiell <jdashiel@shellworld.net>
- Re: Antivirus for CLI
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: Antivirus for CLI
  - From: Camaleón <noelamac@gmail.com>

Prev by Date: Re: any stable open source ldap software for SSO
Next by Date: Re: netinst on old dell hardware
Previous by thread: Re: Antivirus for CLI
Next by thread: Re: Antivirus for CLI
Index(es):
- Date
- Thread