Assets 2
  • eXtremeSHOK.com Maintenance
  • Bug Fix GPG always being disabled, thanks @orlitzky

@extremeshok extremeshok released this Mar 17, 2017 · 7 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Packers/Javascript_exploit_and_obfuscation.yar false posirtive rating increased to HIGH
  • Codeclimate fixes
  • Incremented the config to version 73

@extremeshok extremeshok released this Mar 17, 2017 · 13 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • PGP is now optional and no longer a requirement and pgp support is auto-detected
  • Full support for MacOS / OS X and added clamav install guide
  • Full support for pfSense and added clamav install guide
  • Added os configs for Zimbra and Debian 8 with systemd
  • Much better error messages with possible solutions given
  • Better checking of possible issues
  • Update all SANESECURITY signature databases
  • Support for clamav-devel (clamav compiled from source)
  • Added full proxy support to wget and curl
  • Replace allot of "echo | cut | sed" with bash substitutions
  • Added fallbacks/substitutions for various commands
  • xshok_file_download and xshok_draw_time_remaining functions added to replace redundant code blocks
  • Removed SANESECURITY mbl.ndb as this file is not showing up on the rsync mirrors
  • Allow exit code 23 for rsync
  • Major refactoring : Normalize comments, quotes, functions, conditions
  • Protect various arguments and "POSIX-ize" script integrity
  • Enhanced testing with travis-ci, including clamav 0.99
  • Incremented the config to version 72

@extremeshok extremeshok released this Jul 21, 2016 · 168 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Disable installation when either pkg_mgr or pkg_rm is defined.
  • Minor refactoring
  • Update master.conf with the new Yara-rules project file names
  • Incremented the config to version 69
5.4

@extremeshok extremeshok released this Jul 15, 2016 · 172 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Added Solaris 10 and 11 configs
  • When under Solaris we define our own which function
  • Define grep_bin variable, use gnu grep on sun os
  • Fallback to gpg2 if gpg not found,
  • Added support for csw gnupg on solaris
  • Trap the keyboard interrupt (ctrl+c) and gracefully exit
  • Added CentOS 7 Atomic config @deajan
  • Minor refactoring and removing of unused variables
  • Removed CRDF signatures as per Sanesecurity #124
  • Added more Yara rule project Rules
  • Incremented the config to version 68

@extremeshok extremeshok released this May 23, 2016 · 196 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Bug Fix: Additional Databases not downloading
  • Added sanesecurity_update_hours option to limit updating to once every 2 hours
  • Added additional_update_hours option to limit updating to once every 4 hours
  • Refactor Additional Database File Update code
  • Updated osx config with correct group for homebrew

@extremeshok extremeshok released this May 14, 2016 · 204 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Bug Fix: for GPG Signature test FAILED by @DamianoBianchi
  • Remove unused $GETOPT
  • Refactor clamscan_integrity_test_specific_database_file (--test-database)
  • Refactor gpg_verify_specific_sanesecurity_database_file (--gpg-verify)
  • Big fix: missing $pid_dir
5.3

@extremeshok extremeshok released this May 7, 2016 · 216 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Major change: Updated to use new database structure, now allows all low/medium/high databases to be enabled or disabled.
  • Major change: curl replaced with wget (will fallback to curl is wget is not installed)
  • Major change: script now functions correctly as the clamav user when started under cron
  • Added fallback to curl if wget is not available
  • Added locking (Enable pid file to prevent issues with multiple instances)
  • Added retries to fetching downloads
  • Code refactor: if wget repaced with if $? -ne 0
  • Enhancement: Verify the clam_user and clam_group actually exists on the system
  • Added function : xshok_user_group_exists, to check if a specific user and group exists
  • Bug Fix: setmode only if is root
  • Bug Fix: eval not working on certain systems
  • Bug fix: rsync output not correctly silenced
  • Code refactor: remove legacy .. with $(...)
  • Code refactor: replace [ ... -a ... ] with [ ... ] && [ ... ]
  • Code refactor: replace [ ... -o ... ] with [ ... ] || [ ... ]
  • Code refactor: replace cat "..." with done < ... from loops
  • Code refactor: convert for loops using files to while loops
  • Code refactor: read replaced with read -r
  • Code refactor: added cd ... || exit , to handle a failed cd
  • Code refactor: double quoted all varibles
  • Code refactor: refactor all "ls" iterations to use globs
  • Defined missing uname_bin variable
  • Added function xshok_database
  • Set minimum config required to 65
  • Bump config to 65

@extremeshok extremeshok released this Apr 18, 2016 · 286 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Added --install-all Install and generate the cron, logroate and man files, autodetects the values $oft based on your config files
  • Added functions: xshok_prompt_confirm, xshok_is_file, xshok_is_subdir
  • Replaced Y/N prompts with xshok_prompt_confirm
  • Bug Fix for disabled databases being removed when the remove_disabled_databases is set to NO (default)
  • Added more warnings to remove_script and made it double confirmed
  • Remove_script will only remove work_dir if its a sub directory
  • Remove_script will only remove files if they are files
  • Removed -r switch, --remove-script needs to be used instead of both -r and --remove-script
  • Fixed: remove_script not removing logrotate file, cron file, man file

@extremeshok extremeshok released this Apr 16, 2016 · 304 commits to master since this release

Assets 2
  • eXtremeSHOK.com Maintenance
  • Minor bugfix for Sanesecurity_sigtest.yara Sanesecurity_spam.yara files being removed incorrectly
  • Minor fix: yararulesproject_enabled not yararulesproject_enable