Bill, > (08400-01-2) ask_av (Avast! Antivirus daemon): > /var/amavis/tmp/amavis-20060213T104403-08400/parts INFECTED: Win32:Beagle-HZ > [Wrm
> What modification can I make to: > qr/[\t]\[+\]/, qr/[\t]\[L\][\t]/, qr/[\t]\[L\][\t](.+)[^\r\n]/ ], > > in order to cut " [Wrm" from the end of the log output line? This regexp does indeed look fishy. Could you please provide a couple of samples from the log (level 4 or above): egrep 'ask_av .* result: ' /var/log/amavisd.log The [\t] occurrences could just as well be a plain \t and the [^\r\n] eats the last ], and possibly misbehaves on Mac OS X. The \[+ looks suspicious too: matching one or more left brackets. Here is my blind guess at improvement: qr/\t\[.\]/, qr/\t\[L\]\t/, qr/\t\[L\]\t([^[\015\012]+)/ ], Mark ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642 _______________________________________________ AMaViS-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
