Sanesecurity signatures are no longer being updated or distributed

Greg Matthews gmatt at
Tue Dec 16 15:32:29 GMT 2008

Anyone know if Sane Security are submitting signatures direct to ClamAV? 
I understand that many of their signatures would make their way into the 
official Clam updates.

Sounds like a P2P distribution mech may have helped here.


Achim J. Latz wrote:
> In case others are receiving errors from their update scripts [1]:
> "Sanesecurity signatures are no longer being updated or distributed due 
> to extremely high server resource usage, which appears to be from a 
> distributed denial of service attack (DDoS). I've moved server hosts 
> twice (which takes time) and both times have resulted in the site being 
> suspened.
> As many of you know, I produce the signatures and run the site, in my 
> spare time and with Christmas approaching I’m finding my spare time is 
> currently limited.
> Hopefully this won’t be the end of the signatures and I’m hoping that 
> they may return in the New Year.
> May I take this opportunity to thank everyone who has helped this 
> project, either by providing samples, bandwidth, download scripts or 
> donating.
> Thanks and sorry to let you all down.
> Steve
> Sanesecurity"
> [1]

Greg Matthews           01491 692445
Head of UNIX/Linux, iTSS Wallingford

This message (and any attachments) is for the recipient only. NERC
is subject to the Freedom of Information Act 2000 and the contents
of this email and any reply you make may be disclosed by NERC unless
it is exempt from release under the Act. Any material supplied to
NERC may be stored in an electronic records management system.

More information about the MailScanner mailing list