stopping clamav detecting encrypted zip files
Gareth
list-mailscanner at linguaphone.com
Wed Apr 4 16:09:24 IST 2007
On Wed, 2007-04-04 at 16:05, am.lists wrote:
> On 4/4/07, Gareth <list-mailscanner at linguaphone.com> wrote:
> > I use mailscanner to manage the quaranteen.
> > The problem that I am getting is that clamav is detecting encrypted zip
> > files as a virus. The only config file I can find is in
> > /usr/local/clamd.conf which sais that feature is disabled by default and
> > I have the line commented out.
> >
> > Any ideas?
> >
>
> Yes. It's in /etc/MailScanner.conf (or wherever your MailScanner.conf is)
>
> # Should encrypted messages be blocked?
> # This is useful if you are wary about your users sending encrypted
> # messages to your competition.
> # This can be a ruleset so you can block encrypted message to certain domains.
> Block Encrypted Messages = no
I have that set to yes which is what I want. Mailscanner detects it as a
encrypted zip and blocks it.
The problem I have is that clamav also detects it as a virus and so I am
unable to release the message using mailwatch as it is classed as
dangerous content.
More information about the MailScanner
mailing list