ClamAv Unofficial Signatures

[nicolatiana]

Hi
I've manually added inside /usr/local/etc/clamav-unofficial-sigs.conf two sanesecurity database:
foxhole_generic.cdb
foxhole_filename.cdb
http://sanesecurity.com/foxhole-databases/
They should give some more protection inspecting inside archives. Those db are explained to be low-false-positive risky.

Is it correct to modify conf file or the modification could be lost with updates ?

[shawniverson]

I would make a note as the unofficial sigs are in a bit of flux at this time. I'm hoping we don't have to touch the config, but I'm not sure at this time.