Hello,
Opening this thread to start a discussion about more ClamAV Signatures via DatabaseCustomURL. In another thread https://forum.proxmox.com/threads/clamav-signatures-from-securiteinfo-90-detection-rate.91072/ securiteinfo was mentioned and after testing the paid version our detection rate is as the site says at least 90% but there is still that 10% that goes through.
Anyone has any more quality signatures sources that we can use to improve the detection?
Here are some but they are not really official https://wiki.gentoo.org/wiki/ClamAV_Unofficial_Signatures
As said on the gentoo wiki there are only a few downsides to using freshclam:
Opening this thread to start a discussion about more ClamAV Signatures via DatabaseCustomURL. In another thread https://forum.proxmox.com/threads/clamav-signatures-from-securiteinfo-90-detection-rate.91072/ securiteinfo was mentioned and after testing the paid version our detection rate is as the site says at least 90% but there is still that 10% that goes through.
Anyone has any more quality signatures sources that we can use to improve the detection?
Here are some but they are not really official https://wiki.gentoo.org/wiki/ClamAV_Unofficial_Signatures
As said on the gentoo wiki there are only a few downsides to using freshclam:
- Freshclam can't rename the downloaded file, so if the source file is incorrectly named, freshclam will fail to validate it (because clamav won't know how to read it).
- Freshclam only supports http(s), so you're out of luck if your database is only served over rsync.
