I'm running qpsmtpd-0.32 with TLS/AUTH from branches.
I'm using an older version of a clamav plugin (data_post) that I
know worked fine before my upgrade. I have the following statements that
should execute one immediately after the other, being as they follow each
other:
$self->log( 2, "Virus Found: $output" ) ;
return ( DENY_DISCONNECT, "Virus Found: $output" ) ;
Full debug gives me this in the log file:
2945 antivirus plugin: Virus Found: HTML.Phishing.Bank-285 2006-04-24
2945 Plugin antivirus, hook data_post returned DENYHARD, Virus Found:
HTML.Phishing.Bank-285
2945 running plugin (queue): queue::qmail_2dqueue
2953 queue::qmail_2dqueue plugin: (for 2945 ) Queuing qp 2953 to
/var/qmail/bin/qmail-queue
("DENYHARD" is defined the same as DENY_DISCONNECT, but first, so
I presume that's why it shows up in the logs. The 'virus' is a small HTML
message that I have saved for testing.)
When I try with DENY, I get the same results. I found this because
I run clamav twice each hour on the system, and it kept coming up with
Viruses that it should have caught on the connection.
DENY and DENY_DISCONNECT seem to work fine for all of my other
plugins that are using different hooks.
Is anyone else seeing this issue?
Thanks.
