er sponsor for LinuxForum 2006
Fighting Virus with Clam AntiVirus
With Tomasz Kojm and Diego d´Ambra
Clam AntiVirus is a GPL anti-virus toolkit for UNIX, widely used as a server-side e-mail virus scanner. It's known for its quick response time to new threats and a big number of 3rd party applications.
The first part of the talk will introduce the ClamAV package, its design and implementation. We will discuss possible applications and prefered usage and configuration of the package.
In the second part we will present statistics on ClamAV reaction times to new threats and introduce basics of malware analysis and ways to create users own signatures for ClamAV.
Links
Tomasz Kojm
founded the Clam AntiVirus project in 2002 and now
continues its development as the project leader. His main duties
include the project maintenance and the anti-virus engine research and
development. Apart from clams, his hobby is water turtles.
Diego d´Ambra
joined the ClamAV project in 2003 as a virus database
maintainer. His daily involvements with ClamAV consist of analyzing
malware, creating and publishing new signatures. Thanks to his work
ClamAV was able to react almost immediately to many of the biggest
threats, including such outbreaks like Mydoom, Sobig, Sober, Bagle,
and even the latest WMF exploit attacks.