Hi ccc,
ccc wrote:
it seems, havp cannot handle or stop zip viruses.
thats not correct
Code:
GET http://meineipadresse.de/testvirus/eicar.zip HTTP/1.0
Host: meineipadresse.de
HTTP/1.0 403 Virus found by HAVP
Content-Type: text/html
Proxy-Connection: close
Connection: close
<html><head><title>HAVP - Zugriff verweigert</title><style type="text/css"><!--. style1 { color: #00FFFF; font-weight: bold;}--></style></head><body bgcol or=#FFFFFF><table width=700 height=540 border=0 align="center" cellpadding=2 cel lspacing=0><tr bgcolor="#FF6600"> <td height=100 colspan=2 align=center> < font face=arial,helvetica size=6><strong>HAVP - Zugriff verweigert</strong></fon t></td></tr><tr> <td align=center valign=bottom width=150 bgcolor=#000066 > </td> <td width=550 bgcolor=#FFFFFF align=center valign=center> < font face=arial,helvetica color=black size=4> <br> Der Zugr iff auf die Seite wurde <br> <br> verweigert, weil folgender V irus gefunden wurde <br> <br> <br> <fon t color=red> <b>ClamAV: Eicar-Test-Signature<BR>F-Prot: EICAR_Test_File<B R>AVG: EICAR_Test</b> </font></font> <br> <br> <br> </td></tr><tr> <td align=center valign=middle bgcolor=#000066><span cla ss="style1"><font face=arial,helvetica size=2 >XXXX XXXXX XXXXXXX</font ></span> </td> <td bgcolor=#FFFFFF align=center valign=middle><font face=arial, helvetica size=2> Powered by <a href="http://www.server-side.de" target="_blank" >HAVP</a> </font> </td></tr></table></body></html>Connection closed by foreign h ost.
The same result you get when downloading another fileformat, here a tar-file
Code:
GET http://meineipadresse.de/testvirus/eicar.tar HTTP/1.0
host: meineipadresse.de
HTTP/1.0 403 Virus found by HAVP
Content-Type: text/html
Proxy-Connection: close
Connection: close
Regards Severus