Koozali.org: home of the SME Server
Legacy Forums => Experienced User Forum => Topic started by: RM on June 12, 2003, 12:56:51 AM
-
I found this link and it looks like a great replacement for RAV:
http://www.centralcommand.com/purchase_mailarmor.html
I'm going to download an evaluation copy and see if I can put together an interface for it.
-
If you look at dungog.net you will find that Stephen Noble has already built an SME contrib that supports several of the most used (corporate & home) a/v packages around, check it out.
Personally I have used F-Secure for many years and find it to be generally very good.
HTH
-
RM,
What's wrong with ClamAV? Its free too.
Cyrus Bharda
-
Well, I'll tell you what wrong with ClamAV. They haven't updated their virus signatures since October, 2002!!!
What about the bugbear virus? Does it detect it? I seriously doubt it.
Open source antivirus is a BAD, BAD idea. You can't count on hobbists to update the signatures on time. So, what's the point.
ClamAV and OpenAntivirus should NEVER be used on a production system.
-
Point well made :-)
I concede defeat :-)
Cyrus Bharda
-
Cyrus,
I was very excited the first time I saw the ClamAV and OpenAntivirus projects. Once I saw the virus signature dates, I was depressed.
I didn't mean to yell... I just didn't want people to think that the free stuff is just as good as the commercial software.
It really should be, but it's a lot of work keeping the signature up-to-date. Damn lazy hackers... :-)
-
RM,
Hmmm you got me thinking now because I use clamav at home, so I actually went looking for them and found this:
http://clamav.elektrapro.com/
What is Clam AntiVirus ?
Clam AntiVirus is an anti-virus toolkit written from scratch. It is licensed under GNU GPL2 and uses the virus database from OpenAntiVirus, which is an another free anti-virus project. In contrast to OpenAntiVirus (which is written in Java), Clam AntiVirus is written entirely in C and its database is KEPT UP TO DATE. It also detects polymorphic viruses as well.
And this:
http://clamav.elektrapro.com/database/
Note all the files are dated 11-Jun-2003 is that not up to date? Or is that just the date that they were uploaded and I really should be looking at the contents of these files somehow?
Cyrus Bharda
-
The ClamAv db is updated often more than 2-3 times a week, and it is DOES detect Bugbear.
I think you are looking in the wrong place.
If you join the mailing list:
http://clamav.elektrapro.com/ml/
you'll see that it is highly active!
Cheers
Brian
-
Brian,
Yeah That's what I thought, just installed it at home, and was scared by RM's remarks, but now that I have a look at it, it does block bugbear.b I purposly infected a spare laptop and within 10 mins I had clamav catching it on the server.
Still for a production server I would still go with something paid for, then you have someone to sue if everything goes bad.
Cyrus Bharda
-
Well, I appologize to everyone for my earlier remarks. I'm GLAD that I was wrong. Here is where I was looking:
http://www.openantivirus.org/latest.php
This is very good news! If clam has the bugbear signature, then it's definately up to date. Good job Brian and Cyrus!
-
I am using Antivir Mailgate from http://www.hbedv.com. It is a bit hard to get running on 5.6, but once it is up running it works well, and privates can get a free licens file at http://www.hbedv.com/private.
Per
-
"...then you have someone to sue if everything goes bad."
you did not read the eula did you??
they are not responsible for anything!
Not picking on you, just pointing out the fact the the SW industry's privates are way up our @$$
heaven forbid you make an unlicensed copy of their software (that is not guaranteed to do anything at all), then you will really feel it!!
/rant
steve
Cyrus Bharda wrote:
>
> Brian,
>
> Yeah That's what I thought, just installed it at home, and
> was scared by RM's remarks, but now that I have a look at it,
> it does block bugbear.b I purposly infected a spare laptop
> and within 10 mins I had clamav catching it on the server.
>
> Still for a production server I would still go with something
> paid for, then you have someone to sue if everything goes bad.
>
> Cyrus Bharda
-
Emmm Now that RAV is owned by Micr$soft it may be a good time to give ClamAV a good testing with a view for operating live on your server. Can't see M/soft keeping the linux version of RAV for very long.
P J
-
FYI....here is what I received from Raeinternet. Looks like there might be something to replace RAV in the future. I asked him about the M$ acquisition. He seemed really happy (sarcastically said).
>Hi Brad,
>We got screwed. Only a handful of people made out on this (the CEO of GeCAD)
>and left everyone in the dust. Regardless, we already have a number of new
>replacement products ready to go.
-
Just my 3 cents, I've used Clam for a while now, and I have to say it has worked great. It has caught everything we need it to catch, so much so that we have used it on customers servers, and they have all been very pleased with it.
mike
-
If you are interested in a RAV AntiVirus Replacement, please follow this post:
http://myezserver.com/phpBB2/viewtopic.php?t=391
Regards,
Darrell May
Canadian RAV Distributor
-
For my two cents . . .
I would be happy putting the investment my customers make (have made) into RAV into something like CLAM to keep it viable. Given the license the software is developed under then we will never have the MS/RAV situation happen.
So just saying that I for one, as a supporter of SME, and having deployed over 35 RAV for Linux installations (most of which are due or close to renewal) will be happy to (and would rather) put my support behind an open source solution. Maybe we could have one of the project leads from CLAMAV comment in this thread if anyone is familiar with the contacts there?