On 2004-11-15 16:23:19 -0500, Bart Silverstrim wrote:
I find it interesting though that I've yet to hear from anyone
commenting on my proposal to create a filter that will extract and
convert all emails into pure text, or reformat it so only certain
things can get through as an attachment
Hi
How can I configure ClamAV not to try to detect phishing and other
social engineering attacks?
Modify your mail scanner to pass HTML.Phishing.* through.
What happens in the case, that some virus programmer reads this list and now
creates a virus, that contains a phishing html content,
On Sun, 2004-11-14 at 14:57, Julian Mehnle wrote:
3. I am using the SpamCop reporting tool[1] to file complaints to ISPs
about spam (which specifically includes phishing attacks) that I
receive. SpamCop requires spam samples to be manually checked for
spamminess before being
You can set the Advisory mode in clamav-milter to effect this.
-Nigel
___
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
On Mon, 2004-11-15 at 08:26 -0500, jef moskot wrote:
The average admin is most likely very pleased with the ClamAV team's
decision to block phishing attacks (or at least the incredibly prevelant
ones).
Yes, absolutely. The poor **cough cough** exchange 5.5 **cough cough**
servers that I
On Nov 15, 2004, at 8:26 AM, jef moskot wrote:
On Mon, 15 Nov 2004, Trog wrote:
For example, the last Bagle (or Bofra) outbreak simply sent an email
to
it's target victims, who then have to click on a link to download the
Worm. According to your definition, that is a 'social' attack, and
should
On Mon, 15 Nov 2004, Bart Silverstrim wrote:
I'd say leave it to the antispammers to hammer out, and to the people
who focus on bayes filters...
In my case, if Clam has a chance to see the phishing e-mail, the anti-spam
tactics have already failed. So, from my point of view, this is extra
On Nov 15, 2004, at 11:14 AM, jef moskot wrote:
On Mon, 15 Nov 2004, Bart Silverstrim wrote:
I'd say leave it to the antispammers to hammer out, and to the people
who focus on bayes filters...
In my case, if Clam has a chance to see the phishing e-mail, the
anti-spam
tactics have already failed.
Daniel J McDonald [EMAIL PROTECTED] wrote:
On Mon, 2004-11-15 at 18:00 +0100, Julian Mehnle wrote:
What I don't understand is that no one seems to be willing to discuss
my proposal of making the signature database modular, i.e. offer
social engineering attack signatures separately from
On Mon, 15 Nov 2004, Bart Silverstrim wrote:
...if you're going to start moving it into another direction, it may be
best to fork that and leave the original recipe alone until the new
direction...
I think you're overstating what the ClamAV team is trying to accomplish
here. Forget the
On Nov 15, 2004, at 2:02 PM, jef moskot wrote:
On Mon, 15 Nov 2004, Bart Silverstrim wrote:
...if you're going to start moving it into another direction, it may
be
best to fork that and leave the original recipe alone until the new
direction...
I think you're overstating what the ClamAV team is
Bart Silverstrim wrote:
I find it interesting though that I've yet to hear from anyone
commenting on my proposal to create a filter that will extract and
convert all emails into pure text, or reformat it so only certain
things can get through as an attachment with a pure text message so it
Bart Silverstrim wrote:
I find it interesting though that I've yet to hear from anyone
commenting on my proposal to create a filter that will extract and
convert all emails into pure text, or reformat it so only certain things
can get through as an attachment with a pure text message so it
On Nov 15, 2004, at 5:35 PM, Nigel Horne wrote:
On Monday 15 Nov 2004 9:23 pm, Bart Silverstrim wrote:
Since I don't know any of the developers
You can find our names in .../AUTHORS.
-Bart
-Nigel
Well...I still don't *KNOW* you :-)
Nice to kinda sorta meet you though. You and the rest of
On Nov 15, 2004, at 4:44 PM, Dave Goodrich wrote:
Bart Silverstrim wrote:
I find it interesting though that I've yet to hear from anyone
commenting on my proposal to create a filter that will extract and
convert all emails into pure text, or reformat it so only certain
things can get through as
Matt [EMAIL PROTECTED] wrote:
Julian Mehnle wrote:
How can I configure ClamAV not to try to detect phishing and other
social engineering attacks?
Why? Your prerogative, obviously, but I am just curious.
For three reasons:
1. I consider filtering technically harmful messages for my users
On the issue of manually reviewing the mails to submitisn't this the
purpose of the quarantine directory? When it detects a phishing malware,
look at the file in the quarantine directory.
On Sunday 14 November 2004 8:57 am, Julian Mehnle wrote:
Matt [EMAIL PROTECTED] wrote:
Julian
On Nov 14, 2004, at 10:01 AM, John Jolet wrote:
On the issue of manually reviewing the mails to submitisn't this
the
purpose of the quarantine directory? When it detects a phishing
malware,
look at the file in the quarantine directory.
I think he's thinking that this is more time and labor
18 matches
Mail list logo
