On Fri, 30 Jul 2010 09:47:18 -0400 Jonathan Bastien-Filiatrault <[email protected]> wrote:
> Jonathan Bastien-Filiatrault wrote: > > Hi, > > > > I have recently enabled Google Safe Browsing on several of our > > servers (we are a small spam filtering company). Many thousand > > mails go through these servers each day. ClamAV shows that it now > > has many more signatures (1464127+). > > > > Not a single Google Safe Browsing hit was recorded in the ClamAV > > logs over several days. The safebrowsing code is definetely matching something, we had bugreports from people asking why their urls are in safebrowsing.cvd, and our stats page shows it in the top 10 for past 7 days: Heuristics.Safebrowsing.Suspected-malware_safebrowsing.clamav.net 2010-07-30 02:14 Count: 211041 > My attempts to get a test URL to match have > > all failed. The URL I am using for testing is > > <http://malware.testing.google.test/testing/malware/>. This link, > > when opened in Firefox warns that it is a malicious site. Mail > > scanning and other relevant features are enabled. > > > > I have attached the test email that does not match (but should). > > Mailman ate the attachment, you may find the file here: > http://x2a.org/pub/misc/gsb.eml Is this a recent problem? Were you able to match this URL in the past? Looks like the database doesn't contain that test URL. Best regards, --Edwin _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
