I have the following configuration: redhat 7.3/qmail/qmail-scanner-1.16/clamav 0.65. This box is setup as an SMTP gateway that then forwards all clean messages to my internal Exchange Server
I can see that qmail-scanner and clamav are quarantining the mydoom/Worm.SCO.A, however the A/V on my exchange keeps picking it up and my IDS box is showing my Q-S box sending the Mydoom virus to my exchange server. Has anyone had a problem with this slipping through? I update clamav every 5 minutes, so I don't think its that....just wondering if anyone else was seeing this as well? Below is my qmail-smtp/run script: QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl" export QMAILQUEUE QMAILDUID=`id -u qmaild` NOFILESGID=`id -g qmaild` exec /usr/local/bin/softlimit -m 25000000 \ /usr/local/bin/tcpserver \ -H -l my.hostname.com \ -v -x /etc/tcp.smtp.cdb \ -c 20 -R -u "$QMAILDUID" -g "$NOFILESGID" 0 smtp \ /usr/local/bin/rblsmtpd -b -C \ -r 'relays.ordb.org:Your message was rejected because the mail server you use is configured to allow OPE N RELAY - More detailed information regarding this problem is available from http://www.ordb.org/lookup/?% IP% - Please forward this error through to your email server support staff for easy resolution.' \ /var/qmail/bin/qmail-smtpd 2>&1 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.581 / Virus Database: 368 - Release Date: 2/9/2004 ------------------------------------------------------- SF.Net is sponsored by: Speed Start Your Linux Apps Now. Build and deploy apps & Web services for Linux with a free DVD software kit from IBM. Click Now! http://ads.osdn.com/?ad_id=1356&alloc_id=3438&op=click _______________________________________________ Qmail-scanner-general mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
