[Bug 378627] Re: ClamAV scanner recognizes add-on 'Brief' as Virus
Imre Gergely
gimre at narancs.net
Fri May 22 17:43:43 UTC 2009
I've installed this add-on and scanned the /home/user/... directory with
clamscan. It found nothing. After that I scanned with the command-line
option '--detect-pua=yes', and it did report the .js file as a PUA.
thickbox.js: PUA.Script.Packed-1 FOUND
>From the clamscan manual page:
--detect-pua[=yes/no(*)]
Detect Possibly Unwanted Applications.
It seems clamscan doesn't like something in that javascript file, that's
why it reported it. Maybe the creator of the addon should be notified to
rewrite some of the code which makes clamav report it.
I see in the screenshot that clamtk is being used to scan, and that
'Thorough' option is selected. Without that option, clamtk doesn't
report anything, with the option (which obviusly implies the above
--detect-pua parameter) clamav gets a bit more sensitive about stuff,
that's why it reports the javascript as a _possible_ threat, which
doesn't necesarrily mean it's a virus.
--
ClamAV scanner recognizes add-on 'Brief' as Virus
https://bugs.launchpad.net/bugs/378627
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list