Hi all,
we have a mailserver with clamav-milter and clamd Version
0.103.8+dfsg-0ubuntu0.16.04.1+esm1.
There we have a cdb ruleset to block some filetypes:
/var/lib/clamav/archive_blocker.cdb withe following content:
attach.blockgz2:*:*:\.[Gg][Zz]$:*:*:*:*:*:*
Now I want to exclude some file extension and added the following
configuration parameter to my clamd.conf:
ExcludePath .*\.dev$
Then I created two files, one with the extension .123 and one with the
extension .dev and scanned those files with clamdscan and it works like
expected:
root@mail:/tmp/test# clamdscan *
/tmp/test/test1.123: attach.blockgz2.UNOFFICIAL FOUND
/tmp/test/test1.dev: OK
----------- SCAN SUMMARY -----------
Infected files: 1
Time: 0.021 sec (0 m 0 s)
Start Date: 2023:05:24 14:22:18
End Date: 2023:05:24 14:22:18
The file test1.123 gets detected by the cdb rule and the file test1.dev
is excluded and marked as clean.
But when those files get scanned via clamav-milter both files get
detected by the cdb rule.
Is there a way to exclude a file extension from being scanned via
clamav-milter?
Cheers,
Christian
_______________________________________________
Manage your clamav-users mailing list subscription / unsubscribe:
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/Cisco-Talos/clamav-documentation
https://docs.clamav.net/#mailing-lists-and-chat
