problem with the f-secure wrapper (resolved [quick+dirty])
Dirk Clemens
dc at ftb-net.de
Tue Jun 26 15:10:46 IST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I have resolved the problem:
The new f-secure scanner prints the following header:
==========
# fsav --dumb --archive --action1=none /tmp/test
F-Secure Security Platform version 1.10 build 6192
Copyright (c) 1999-2007 F-Secure Corporation. All Rights Reserved.
....
=========
MailScanner thinks, f-secure has the version 1.10 and uses
the old style report.
my quick and dirty workaround: the following patch:
===================================================================
- --- SweepViruses.pm (revision 585)
+++ SweepViruses.pm (working copy)
@@ -207,7 +207,7 @@
Lock => 'FSecureBusy.lock',
CommonOptions => '--dumb --archive',
DisinfectOptions => '--auto --disinf',
- - ScanOptions => '',
+ ScanOptions => '--action1=none',
InitParser => \&InitFSecureParser,
ProcessOutput => \&ProcessFSecureOutput,
SupportScanning => $S_SUPPORTED,
@@ -1900,7 +1900,8 @@
MailScanner::Log::InfoLog($logout);
# If we are running the new version then there's a totally new parser
here
- - if ($fsecure_Version >= 4.50) {
+ #if ($fsecure_Version >= 4.50) {
+ if (1) {
#./g4UFLJR23090/Keld Jrn Simonsen: Infected: EICAR_Test_File [F-Prot]
#./g4UFLJR23090/Keld Jrn Simonsen: Infected: EICAR-Test-File [AVP]
I need also the changes I have described in the mail before:
> 3.)
> When I insert the line line into the wrapper ...
>
> =====
> Root=$1
> shift
> # the new test line:
> exec $Root/bin/fsav "$@"
> =====
>
Dirk
- --
Dirk Clemens
dc at ftb-volmarstein.de http://ftb-net.de
FTB - Forschungsinstitut Technologie-Behindertenhilfe
Grundschötteler Strasse 40, 58300 Wetter
Telefon: 02335/9681-53 Telefax: 02335/9681-19
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)
iD8DBQFGgR5QlKzI4/keoa0RAma9AJ0d4msjh/7aHq+2R22sgtEpxn8+/wCeIqWy
K2gv7fybjWwyXpOFtNpWWOg=
=hnJN
-----END PGP SIGNATURE-----
More information about the MailScanner
mailing list