$OpenBSD: patch-clamav-unofficial-sigs_conf,v 1.11 2015/12/08 11:03:29 sthen Exp $
--- clamav-unofficial-sigs.conf.orig	Wed Dec  2 10:56:35 2015
+++ clamav-unofficial-sigs.conf	Mon Dec  7 14:04:52 2015
@@ -24,12 +24,9 @@
 # Set the appropriate ClamD user and group accounts for your system.
 # If you do not want the script to set user and group permissions on
 # files and directories, comment the next two variables.
-clam_user="clam"
-#clam_user="clamav"
+clam_user="_clamav"
+clam_group="_clamav"
 
-clam_group="clam"
-#clam_group="clamav"
-
 # If you do not want the script to change the file mode of all signature
 # database files in the ClamAV working directory to 0644 (-rw-r--r--):
 #
@@ -43,27 +40,26 @@ setmode="yes"
 
 # Set path to ClamAV database files location.  If unsure, check
 # your clamd.conf file for the "DatabaseDirectory" path setting.
-clam_dbs="/var/lib/clamav"
+clam_dbs="/var/db/clamav"
 
 # Set path to clamd.pid file (see clamd.conf for path location).
-clamd_pid="/var/run/clamav/clamd.pid"
-#clamd_pid="/var/run/clamd.pid"
+clamd_pid="/var/run/clamd.pid"
 
 # To enable "ham" (non-spam) directory scanning and removal of
 # signatures that trigger on ham messages, uncomment the following
 # variable and set it to the appropriate ham message directory.
-#ham_dir="/var/lib/clamav-unofficial-sigs/ham-test"
+#ham_dir="/var/db/clamav-unofficial-sigs/ham-test"
 
 # If you would like to reload the clamd databases after an update,
 # change the following variable to "yes".
 reload_dbs="yes"
 
 # Top level working directory, script will attempt to create them.
-work_dir="/var/lib/clamav-unofficial-sigs"   #Top level working directory
+work_dir="/var/db/clamav-unofficial-sigs"   #Top level working directory
 
 # Log update information to '$log_file_path/$log_file_name'.
 enable_logging="yes"
-log_file_path="/var/log/clamav-unofficial-sigs"
+log_file_path="/var/log"
 log_file_name="clamav-unofficial-sigs.log"
 
 
@@ -111,10 +107,10 @@ yararules_update_hours="24"   # Default is 24 hours (1
 # ========================
 # Set to no to disable an entire database.
 sanesecurity_enabled="yes"   # Sanesecurity
-securiteinfo_enabled="yes"   # SecuriteInfo 
+securiteinfo_enabled="no"   # SecuriteInfo, requires signup
 linuxmalwaredetect_enabled="yes"   # Linux Malware Detect
-malwarepatrol_enabled="yes"   # Malware Patrol
-yararules_enabled="no"   # Yara-Rule Project, requires clamAV 0.99+
+malwarepatrol_enabled="no"   # Malware Patrol, requires signup
+yararules_enabled="yes"   # Yara-Rule Project, requires clamAV 0.99+
 
 # ========================
 # Sanesecurity Database(s)
@@ -312,7 +308,7 @@ max_sleep_time="600"   # Default maximum is 600 second
 
 # Set the clamd_restart_opt if the "reload_dbs" variable above is set
 # Command to do a full clamd service stop/start
-clamd_restart_opt="service clamd restart"
+clamd_restart_opt="rcctl restart clamd"
 
 # If running clamd in "LocalSocket" mode (*NOT* in TCP/IP mode), and
 # either "SOcket Cat" (socat) or the "IO::Socket::UNIX" perl module
@@ -332,8 +328,8 @@ clamd_restart_opt="service clamd restart"
 # NOTE: these 2 variables are dependant on the "clamd_socket" variable
 # shown above - if not enabled, then the following 2 variables will be
 # ignored, whether enabled or not.
-#clamd_start="service clamd start"
-#clamd_stop="service clamd stop"
+#clamd_start="rcctl start clamd"
+#clamd_stop="rcctl stop clamd"
 
 # Set rsync connection and data transfer timeout limits in seconds.
 # The defaults settings here are reasonable, only change if you are
@@ -369,7 +365,7 @@ keep_db_backup="no"
 # or the general script comments, change the following variables to
 # "yes".  If all variables are set to "yes", the script will output
 # nothing except error conditions.
-silence_ssl="yes" # Default is "yes" ignore ssl errors and warnings
+silence_ssl="no"	# "yes" disables certificate verification
 curl_silence="no"      # Default is "no" to report curl statistics
 rsync_silence="no"     # Default is "no" to report rsync statistics
 gpg_silence="no"       # Default is "no" to report gpg signature status
