Well when I add
DetectPhishing yes
to my config my clamd does not start, somehow it is not recognizing that
option. I am running
/usr/local/sbin/clamd --version
ClamAV 0.88/1304/Sun Feb 26 06:47:28 2006
So I am not sure if I have to configure my clamd in any special way or
something to recognize that option in /usr/local/etc/clamd.conf
Thanks.
Chris
On Sun, 26 Feb 2006, Steve Basford wrote:
I was looking for this but I did not find a lot of info about it this
morning and I was wondering if anyone could give me some help... I would
like to setup my ClamAV with Phishing Signatures but as I said I was unable
to find much info on how to do it. I did find lots of sources with
different signature files but not much about how to set it up to actualy
use
There are phishing signature "built-in" to ClamAV already and normally it's
enabled by default, ie: In clamd.conf, search for this section:
# With this option enabled ClamAV will try to detect phishing attempts.
# Default: yes
#DetectPhishing yes
My extra phishing signatures can be found here:
http://www.sanesecurity.com/clamav/
So, download the phish.ndb and then place into the same directory that you
normally find
daily.cvd and main.cvd. ClamWin, for example, would be PROGRAMS\clamwin\db.
You could setup wget to download my phish.ndb sigs daily, once you're happy.
when you say "DetectPhishing but it does not work when I add it into my
config", do you
get an error... or are you saying that phishing emails still come through
undetected?
Cheers,
Steve
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
!DSPAM:122,4401d49214062243654101!
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
