In December 2006, we were running ClamAV 0.88.7, and there were still a fair number of "real" viruses being detected in inbound email. Now running 0.91.2 and 0.92, there seem to be only phishing attempts, and not even very many of them. In fact it seems that our log file shows almost as many (hourly) signature update messages as phish detections (much less "real" virus detections).
Have other ClamAV users experienced a similar decline in email attacks? P.S. I haven't disabled anything in our local conf file, and I don't think there is any upstream AV. (Our domain's first level mail server runs on a dedicated machine at our Web provider, but doesn't run any AV there since it simply relays to our local gateway, where admin is easier.) _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
