Re: [Clamav-users] [Windows] How does ClamAV compare with closed-source alternatives?

On Wed, May 12, 2010 at 9:01 AM, Alain Zidouemba
<azidouemba@sourcefire.com>wrote:

> > ClamAV can only detect malware, it does not clean or even quarantine
> > anything.
>
> ClamAV does not just detect malware, it can can quarantine it.

Since when? As long as I've been using it, it's been a detection-only
system. The frameworks that use ClamAV (milter, amavisd, etc) handle the
quarantining. All ClamAV does is say "file good" or "file bad".

> > And it's geared toward e-mail, which means the focus of the AV DB will be
> > threats that use e-mail as an attach vector. As such, you won't
> signatures
> > in the DB for things like boot sector viruses, or rootkits, or things
> like
> > that.
>
> The focus of the AV DB is not just threat that use email as an attack
> vector, but rather malware that can make its way to end-users
> machines, regardless of the vector or attack.
>

That could be, although everything I've seen on this list has been that
ClamAV is geared toward e-mail-based malware.

-- Freddie Cash fjwcash@gmail.com _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml

• This message: [ Message body ]
• Next message: Alain Zidouemba: "Re: [Clamav-users] [Windows] How does ClamAV compare with closed-source alternatives?"
• Previous message: Charles Gregory: "Re: [Clamav-users] [clamu] [clamu] [Windows] How does ClamAV compare with closed-source alternatives?"
• In reply to: Alain Zidouemba: "Re: [Clamav-users] [Windows] How does ClamAV compare with closed-source alternatives?"
• Next in thread: Alain Zidouemba: "Re: [Clamav-users] [Windows] How does ClamAV compare with closed-source alternatives?"
• Reply: Alain Zidouemba: "Re: [Clamav-users] [Windows] How does ClamAV compare with closed-source alternatives?"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]