[Pkg-clamav-devel] Bug#635828: clamav-unofficial-sigs: Default si_update_hours leads to requesting host's IP being blacklisted

David North david-dpkgs at dnorth.net
Thu Jul 28 20:21:43 UTC 2011


Package: clamav-unofficial-sigs
Version: 3.6-1
Severity: important


The default update interval for the SecuriteInfo databases is every four hours.

Unfortunately, http://www.securiteinfo.com/services/clamav_unofficial_malwares_signatures.shtml
makes it clear that downloading these databases more than once per day will be considered
abusive and lead to your IP being blacklisted. This has happened to one of my servers.

Please consider changing the default si_update_hours to 24 or greater (it sounds like 48 or
even 72 hours would be plenty often enough).


-- System Information:
Debian Release: 6.0.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-xen-amd64 (SMP w/1 CPU core)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=C (charmap=UTF-8) (ignored: LC_ALL set to en_GB.UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages clamav-unofficial-sigs depends on:
ii  bind9-host [host 1:9.7.3.dfsg-1~squeeze3 Version of 'host' bundled with BIN
ii  clamav           0.97.1+dfsg-1~squeeze1  anti-virus utility for Unix - comm
ii  clamav-daemon    0.97.1+dfsg-1~squeeze1  anti-virus utility for Unix - scan
ii  curl             7.21.0-2                Get a file from an HTTP, HTTPS or 
ii  dnsutils         1:9.7.3.dfsg-1~squeeze3 Clients provided with BIND
ii  gnupg            1.4.10-4                GNU privacy guard - a free PGP rep
ii  rsync            3.0.7-2                 fast remote file copy program (lik

clamav-unofficial-sigs recommends no packages.

clamav-unofficial-sigs suggests no packages.

-- no debconf information





More information about the Pkg-clamav-devel mailing list