Steve. > Sanesecurity badmacro.ndb and phish.ndb and rogue.hdb will pretty much > cover a lot of those... MiscreantPunch099-Low.ldb for additional detection > but can hit scanning performance. > > ClamAV settings in clamd.conf can also be tweaked to block documents with > macro and or passwords.
Thanks, just added badmacro.ndb, so hopefully that will help. Sincerely, Eric Tykwinski TrueNet, Inc. P: 610-429-8300 _______________________________________________ clamav-users mailing list [email protected] http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
