Hello,
our mailserver run amavisd-new-2.10.1 on Debian Jessie. Regarding encrypted
archives I configured $undecipherable_subject_tag = '+++Virus scan failed+++ '
so the recipient is notified that the archive could not be scanned.
But when 7z or 7za is used as decoder of an encrypted archive the
Using the internal decoder for 7z archives doesn't work.
I created unencrypted 7z archives with 7-Zip [64] 16.02 (Windows version) with
4 different compression methods (lzma2, lzma, ppmd, bzip2).
Here are the results:
Test 7z-file with internal decoder (lzma2)
amavis[5901]: (05901-01) p002 1/2
It seems the problem is when we reply then the e-mail is not addressed to
amavis-users@amavis.org but to the sender of the last mail.
> -Original Message-
> From: Hoyer-Reuther, Christian
> Sent: Friday, September 16, 2016 2:34 PM
> To: '@lbutlr'
> Subject: Re
er=cac-
> chem...@amavis.org] On Behalf Of Hoyer-Reuther, Christian
> Sent: Wednesday, September 14, 2016 2:11 PM
> To: amavis-users@amavis.org
> Subject: Encrypted archives and 7z on Debian Jessie (amavis 2.10.1)
>
> Hello,
>
> our mailserver run amavisd-new-2.10.1 on Debi
er=cac-
> chem...@amavis.org] On Behalf Of Patrick Ben Koetter
> Sent: Tuesday, September 20, 2016 11:41 PM
> To: amavis-users@amavis.org
> Subject: Re: List issues?
>
> * Hoyer-Reuther, Christian :
> > It seems the problem is when we reply then the e-mail is not addresse
Hello,
using amavisd-new 2.10.1 on Debian 8 I want to modify the banned reason as
follows:
%smtp_reason_by_ccat = (
# currently only used for blocked messages only, status 5xx
# a multiline message will produce a valid multiline SMTP response
CC_VIRUS, 'id=%n - INFECTED: %V',
# CC_
Hello Alex,
you can use:
$undecipherable_subject_tag = '+++Virus scan failed+++ ';
The is '***UNCHECKED*** '
Regards,
Christian
> -Original Message-
> From: amavis-users [mailto:amavis-users-bounces+christian.hoyer-reuther=cac-
> chem...@amavis.org] On Behalf Of Alex
> Sent: Tuesday,
Hello Klaus,
if you use ClamAV, then you can set it's option "OLE2BlockMacros true". This
detects MS Office Macros regardless of the file extension. If a macro is found,
then the file is classified as a virus ("INFECTED:
Heuristics.OLE2.ContainsMacros").
Regards,
Christian
> -Original Me
Hello,
I use @score_sender_maps for soft-whitelisting mails from some senders to some
recipients (Amavis 2.10.1). Here is an example:
@score_sender_maps = ({
're...@domain-b.com' => [{'sen...@domain-a.com' => -10.0}],
're...@domain-b.com' =>
[{'amavis-users-bounces+sender=domain-a@amavi
Hello,
thanks, but escaping the "+" does not help. Any other ideas?
Regards,
Christian
-Original Message-
From: postmas...@wf-partner.com [mailto:postmas...@wf-partner.com]
Sent: Wednesday, March 15, 2017 9:24 AM
To: Hoyer-Reuther, Christian
Subject: Re: @score_sende
Hello Rich,
you can try if the following helps:
$remove_existing_spam_headers = undef;
$remove_existing_x_scanned_headers = undef;
Regards,
Christian
-Ursprüngliche Nachricht-
Von: amavis-users
[mailto:amavis-users-bounces+christian.hoyer-reuther=cac-chem...@amavis.org] Im
Auftr
amavis.org
Betreff: Re: Keep X-Spam-... header lines when releasing message from
quarantine?
Hello Christian,
Would this cause any headers added by SpamAssassin to still be there,
even on initial delivery, or does this only affect the AMaViS headers?
Thanks,
Markus
On 03/28/2017 09:48 AM, Hoy
-users-bounces\+sender=domain-a@amavis.org$'i => -10.0],
),
],
});
In addition we need to escape the + with \ inside of new_RE.
Regards,
Christian
From: amavis-users
[mailto:amavis-users-bounces+christian.hoyer-reuther=cac-chem...@amavis.org] On
Behalf Of Hoyer-Reuther, Christian
Se
Hello,
we use the settings posted by Dino and recently ClamAV detected MS office
macros (Heuristics.OLE2.ContainsMacros) in several mails with attached pdf
files. I guess these mails contained the Jaff ransomware.
Regards,
Christian
-Original Message-
From: amavis-users
[mailto:amavi
Hello,
you can try the following:
@spam_lovers_maps = ({
'b...@example.com' => 0, # never, even if domain matches
'example.com' => 1, # this domain, but not it's subdomains
'.example.com' => 1, # this domain and it's subdomains
});
Using the ..._lovers_maps amavis scans the messag
Hello Götz,
you can copy the "%smtp_reason_by_ccat = ( ..." section from
/usr/sbin/amavisd-new to your amavisd config and then modify it. Here is an
example:
%smtp_reason_by_ccat = (
# currently only used for blocked messages only, status 5xx
# a multiline message will produce a valid multi
Hello Jonathan,
this should work:
qr'.\.(com|exe|rar)$'
Regards,
Christian
-Ursprüngliche Nachricht-
Von: amavis-users
[mailto:amavis-users-bounces+christian.hoyer-reuther=cac-chem...@amavis.org] Im
Auftrag von Jonathan Sélea
Gesendet: Freitag, 12. Januar 2018 14:25
An: amavis-users@
Hello Marcin,
here is how you can block ACE archives:
First you need to add the following line to $map_full_type_to_short_type_re in
/usr/sbin/amavisd-new:
$map_full_type_to_short_type_re = [
…
[qr/^ACE archive\b/i => 'ace-unwanted'], <=== add this
line
…
];
> Is it possible to add map_full_type_to_short_type_re to
> /etc/amavisd/amavisd.conf as any update of package is going to wipe ACE
> detection from /usr/sbin/amavisd ?
I don't know, but you can try if it works when you copy the
$map_full_type_to_short_type_re section to amavisd.conf.
> Is there
Hello,
you could try this:
[ qr'^application/(doc|docx|ppt|pdf|xls|vsd)$'i => 0 ],
Regards,
Christian
-Ursprüngliche Nachricht-
Von: amavis-users
[mailto:amavis-users-bounces+christian.hoyer-reuther=cac-chem...@amavis.org] Im
Auftrag von Johnny Time
Gesendet: Freitag, 9. November 201
Hi Stefan,
amavis needs the decoders to detect banned files in archives. For example, if
no decoder for .rar is used then exe files in rar archives will not be detected.
Regards,
Christian
Von: amavis-users
Im
Auftrag von Stefan Bauer
Gesendet: Donnerstag, 1. August 2019 14:46
An: amavis-us
Hi Michael,
the following settings are based on documentation of ESET Mail Security,
slightly modified to reduce the information in the reject message.
@av_scanners = (
['ESET Software ESETS Command Line Interface',
'/opt/eset/esets/bin/esets_cli', '{}',
[0], [1, 2, 3], qr/virus="(?!is
grep myversion_id amavisd-new
-Ursprüngliche Nachricht-
Von: amavis-users
Im
Auftrag von Philip
Gesendet: Samstag, 18. Januar 2020 05:32
An: amavis-users@amavis.org
Betreff: Finding the version number from amavis.
How do I find out what version of amavis-new is running on your server?
--- Begin Message ---
Hello,
you could use logwatch. It provides some of the information you need.
Example: logwatch --service amavis --range yesterday --detail medium
Regards,
Christian
-Ursprüngliche Nachricht-
Von: amavis-users
Im
Auftrag von Nikolaos Milas
Gesendet: Mittwoch, 3.
24 matches
Mail list logo