On Wed, Aug 02, 2017 at 04:53:20PM +0200, Kamil Paral wrote:
On Wed, Aug 2, 2017 at 2:44 AM, Dan Callaghan
<dcallagh(a)redhat.com> wrote:
[...]
> The other thing is that this idea of "download some data from the
> internet in order to make this package work" is not a good approach. It
> breaks in exactly the scenario I mentioned above, where a freshly
> installed copy of the package is not actually usable. The pciids and
> usbids database used to be like this too (shipping some old version of
> the data, plus a cron job to pull down updates from the internet) but
> nowadays we have the hwdata package which just gets updated with the
> latest definitions once per month. This is a much nicer solution because
> it means you can install a machine using only Fedora packages (or
> a freshly built disk image) and it already has the data it needs,
> without then going back to some random server on the internet.
>
Very much agreed.
>
> So maybe the ClamAV definitions should be treated similarly? In
> a separate package which gets updated on a regular interval to pull in
> the latest data?
>
That would be the best solution here, yes. Could someone please file an RFE
against clamav?
Done:
https://bugzilla.redhat.com/show_bug.cgi?id=1477777
PS: I like the bug number :))
Kind Regards,
--
Róman Joost
Senior Software Engineer, Products & Technologies Operations (Brisbane)
Red Hat