DansGuardian Anti-Virus, part ii

Well dansguardian is working, and the anti-virus scanner is doing its job.


From: DansGuardian Anti-Virus
Date: Sat, 17 Jul 2004 20:03:31 +1200
To: postmaster at plumtree
Subject: Virus Found by DansGuardian Anti-Virus

Virus : Worm.Sircam
User : -
URL : http://stateless.plumtree.co.nz/~nic/iii
User IP : 192.168.0.1

The only change I need to make in order to get the debian package built with dpkg-buildpackage was removing the reference to -lz in debian/rules.

Although there isn’t much documentation it looks like the newer version 6, is based on libclamav. So probably no external wrapper required. I’m not 100%, due to the lack of good documentation, but hopefully it uses this means the clamav-freshclam will keep the scan updated.

One problem I discovered was accessing this site, via dansguardian with the gzip option set under Options>Reading. Looks like the mime content-type in the header has got mangled. So konqueror asks for gziped html, gets it, but doesn’t realised its been gzipped and doesn’t uncompressed the html stream. I’m not sure if this is a dansguardian problem or a problem with the anti-virus patch.

In due course after some more testing, I’ll probably put the packages I’ve built somewhere like http://debian.ii.net.nz.

1 Comment

  1. Rodrigo Henriquez Said,

    December 4, 2004 @ 1:00 pm

    Hi.

    I was looking information about Dansguardian-virus-script on Debian and I found your blog.

    Did you said that you built a dgav package for Debian?
    Could you explain a little bit more about how do you do that?

    Thanks for your time.

    PS: Very interesting blog. It was added to my bookmarks 😉

    Ro.

RSS feed for comments on this post