ClamWin Free Antivirus Forum Index
ClamWin Free Antivirus
Support and Discussion Forums
This topic is locked: you cannot edit posts or make replies.
ROCKNROLLKID


Joined: 23 Sep 2013
Posts: 562
Location: **UNKNOWN**
Reply with quote
@jimimaseye: Linux does get viruses (who says it doesn't). There are just a lot less then Windows. Even Mac has its infections. If you look through the ClamAV database, you will notice at times you will see unix/linux signatures being added. Also, ClamAV is actually cross-platform, but their primary focus is on Linux systems.
View user's profileSend private message
jimimaseye


Joined: 04 Jan 2014
Posts: 93
Reply with quote
CraigJConrad wrote:
I'd be interested in knowing what I did in them that causes them to be marked as harmful. These macros do use Excel objects/services to read the directories, open/read/delete/create files, open/read/update MDBs, etc. Is that what leads to being tagged this way?
You can email Steve at sane and ask. The best thing to do is send an email with your description/concerns, the signature being idetified and with an attachment of some of the GENUINE workbooks (that you have written) to false_positive @t sanesecurity . me.uk More info: http://sanesecurity.co.uk/support/false-positives/
View user's profileSend private message
GuitarBob


Joined: 09 Jul 2006
Posts: 4292
Location: USA
Reply with quote
The Clam signatures were originally designed to detect rapidly-spreading email worms on infected attachments processed on Linux servers, which serve it up to users--who were/are primarily on Windows machines. This original design still stands--there is no consideration as to what effect a signature will have on a Windows system.

If you/I/anyone wants the situation to be better, then it is up to us to change it--somehow! It is/should be readily apparent to all by now. All my/your/our ranting is useless! The time taken could be better used!

Regards,
View user's profileSend private message
jimimaseye


Joined: 04 Jan 2014
Posts: 93
Reply with quote
Quote:
The Clam signatures were originally designed to detect rapidly-spreading email worms on infected attachments processed on Linux servers, which serve it up to users--who were/are primarily on Windows machines. This original design still stands--there is no consideration as to what effect a signature will have on a Windows system.

If you/I/anyone wants the situation to be better, then it is up to us to change it--somehow! It is/should be readily apparent to all by now. All my/your/our ranting is useless! The time taken could be better used!


http://lists.clamav.net/pipermail/clamav-users/2016-February/002349.html

And dont forget to click NEXT MESSAGE (by thread) to continue reading through.

You will find someone not agreeing with your there Bob.
View user's profileSend private message
ROCKNROLLKID


Joined: 23 Sep 2013
Posts: 562
Location: **UNKNOWN**
Reply with quote
Since this topic was about the FPs of ClamAV, which have been resolved, I am going to go ahead and lock this thread.
View user's profileSend private message
Sudden malware or false positives?
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT  
Page 7 of 7  

  
  
 This topic is locked: you cannot edit posts or make replies.