>
Daily removed for the timebeing anyway.
> On 26 Jan 2018, at 09:55, Rajesh M <24x7ser...@24x7server.net> wrote:
>
> hi
>
> this is what i did on my mail server
>
> cd /var/lib/clamav
>
> mv daily.cld daily.cld.BAK
> mv main.cld main.cld.B
hi
this is what i did on my mail server
cd /var/lib/clamav
mv daily.cld daily.cld.BAK
mv main.cld main.cld.BAK
mv bytecode.cld bytecode.cld.BAK
mv mirrors.dat mirrors.dat.BAK
kept foxhole_all and badmacro.ndb unoffical which handles all kinds of bad
attachments / macros.
also have
yes all our servers are stuck
disabled official signatures
we have sanesecurity foxhole foxhole_all.cdb -- customized for our use which
blocks all bad attachments
it seems to work now.
rajesh
- Original Message -
From: Reindl Harald [mailto:h.rei...@thelounge.net]
To:
- Original Message -
From: Shaun Hurley [mailto:shahu...@sourcefire.com]
To: clamav-users@lists.clamav.net
Sent: Wed, 21 Oct 2015 07:29:57 -0400
Subject: Re: [clamav-users] Identifying jar virus file
Al,
This is not a false positive.
The file is malicious. I am working on making
hi
foxhole_all.cdb is basically a text file
the content is as given below which you can edit to suit your convenience. i
have also attached the same file.
what i have will block all the following extensions even they are hidden within
7z, rar, zip, arj, cab files.
you would need to copy this
, 2015 7:37 am, Rajesh M wrote:
>
> Sanesecurity.Foxhole.7z:CL_TYPE_7Z
> Sanesecurity.Foxhole.Rar:CL_TYPE_RAR
etc..
Hi rajesh,
Yep, the above will work... but could cause high FP's for some people
which they might find unacceptable, depending on their setup.
If anyone has a nice malware z
hi
i am using qmail toaster with clam version clamav-0.98.6
there are a lot malware coming in the form of zipped attachments
zip cab .scr files
these contain bitlocker which encrypts the entire pc
clam is not able detect and stop these.
i wish to prevent .cab attachments from coming thru
- Original Message -
From: Steve Basford [mailto:steveb_cla...@sanesecurity.com]
To: clamav-users@lists.clamav.net
Sent: Thu, 23 Apr 2015 12:29:39 +0100
Subject: Re: [clamav-users] concerning foxhole databases
On Thu, April 23, 2015 12:03 pm, Rajesh M wrote:
i am using foxhole_all.cdb
@lists.clamav.net
Sent: Wed, 27 Aug 2014 21:44:59 +0100
Subject: Re: [clamav-users] sanesecurity file size limit
On Wed, August 27, 2014 12:25 pm, Rajesh M. wrote:
in my clamd.conf file the size upto which the files will be scanned is 30
mb ie max email size in my smtp session.
how do we solve this issue
hi
we are using clamav with qmailtoaster with sane security. we use foxhole to
block any exe file that is zipped / rar.
however noted that if such files are over 1 mb then they are not detected
in my clamd.conf file the size upto which the files will be scanned is 30 mb ie
max email size in
with the .sh extension:
Ziptest:0:.*\.sh:*:*:*:*:*:*
- Doug
On Tue, Sep 17, 2013 at 7:08 AM, Rajesh M 24x7ser...@24x7server.net
wrote:
hi
i wish to know the steps to prepare signature so that clamav will detect
all zipped files containing files with extensions pif, scr, exe, com,
bat
hi
i wish to know the steps to prepare signature so that clamav will detect
all zipped files containing files with extensions pif, scr, exe, com, bat,
cmd, vbs, lnk, cpl, vbs as virus -- immaterial of whether they contain
virus or not.
what is the process for this.
is there is any documentation
hi
we use qmailtoaster with clam
our users sometimes receive html files as attachment
this contains some kind of coded javascript which downloads virus from
thirdparty websites
nod32 catches such html files
is there a feature in clam that can carry this out
rajesh
hi
i am new to this list so please excuse me if i am wrong in posting here
i am using qmail toaster with clam for over 3 years now
i am getting a virus by email as such
it can be dowloaded using the link below
http://24x7server.net/v.zip
the actual file name is Xerox_doc.exe
i have zipped
14 matches
Mail list logo
