stopping clamav detecting encrypted zip files

Gareth list-mailscanner at
Wed Apr 4 16:09:24 IST 2007

On Wed, 2007-04-04 at 16:05, am.lists wrote:
> On 4/4/07, Gareth <list-mailscanner at> wrote:
> > I use mailscanner to manage the quaranteen.
> > The problem that I am getting is that clamav is detecting encrypted zip
> > files as a virus. The only config file I can find is in
> > /usr/local/clamd.conf which sais that feature is disabled by default and
> > I have the line commented out.
> >
> > Any ideas?
> >
> Yes. It's in /etc/MailScanner.conf (or wherever your MailScanner.conf is)
> # Should encrypted messages be blocked?
> # This is useful if you are wary about your users sending encrypted
> # messages to your competition.
> # This can be a ruleset so you can block encrypted message to certain domains.
> Block Encrypted Messages = no

I have that set to yes which is what I want. Mailscanner detects it as a
encrypted zip and blocks it.
The problem I have is that clamav also detects it as a virus and so I am
unable to release the message using mailwatch as it is classed as
dangerous content.

More information about the MailScanner mailing list