Just a heads up, we had a legitimate customer receiving Office 365 secure emails get hit with this filter.
I'm not sure what the original rule was for, but I'm assuming it was for phishing emails, but seems to be a bit too loose on the rules to not get false positives. Clam team, if you need headers or anything let me know. Sincerely, Eric Tykwinski TrueNet, Inc. P: 610-429-8300
_______________________________________________ Manage your clamav-users mailing list subscription / unsubscribe: https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/Cisco-Talos/clamav-documentation https://docs.clamav.net/#mailing-lists-and-chat
