with a certificate and
give the clients his public key so they can confirm he was the one who wrote it.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg
.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg,
___
http://lurker.clamav.net/list/clamav-users.html
John Madden wrote:
Just stop mail with certain attachments
(.bat/.com/.scr/.cpl/.ectect) at the door.
Well of course, and we currently block RAR's because of the license
issues, but that doesn't help the zip file situation. ...Perhaps
amavisd can.
John
What we do:
If a zip file is
first. If you scan in series you'll get the best of both worlds.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg
the attachment, then scanning it later (during off-peak hours, or
in a nice process) to find out what virus it was?
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg
Peter J. Holzer wrote:
Otherwise, if it is HTML, filter it through w3m, lynx, or some other
html to text converter.
This is the dangerous part. If there's going to be any way for a malignant
HTML email to overflow a buffer, it's here.
___
.
ClamAv is marketed as an antivirus tool. I think, as you say, there is a need
for a generic anti-malware tool. But don't call it clamav.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print
-us/cdosys/html/_cdosys_imessage_htmlbody.asp
When... you set the HTMLBody property, Microsoft Collaboration Data Objects
(CDO) automatically sets the TextBody property to the plain text equivalent.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc
: IMAP, POP3, MAPI (is there a Mail::MAPI module?), DAV (I
use this to keep track of mailbox sizes)...
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg
to a temporary file
Scan the file
Accumulate an infection report
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg
information store. But you could presumably
run the above procedure using a Scheduled Task from the server, assuming you
installed ClamWin and Perl (and Net::LDAP, Mail::IMAPClient, etc.)
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com
)
If you run freshclam from /etc/cron.something/ then don't use the -d flag.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg
/freshclam.conf as Checks - the update frequency
is )
(Checks) times per day for freshclam -d. If you run freshclam via cron.hourly,
leave off the -d.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l
/cron.daily or
you'd be running more and more freshclam processes as days go by.
OK, this isn't happening, good
my value is 'Checks 24', but why the update is to excute every hour ?
Um, because there are 24 hours in a day
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic
Matthew.van.Eerde wrote:
cat /etc/freshclam.conf
# Number of database checks per day.
# Default: 12 (every two hours)
Checks 24
OK, so it checks 24 times a day - once every hour
If you want it to check every 30 minutes, change this to 48
If you want it to check every two hours, change
great.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg,
___
http://lists.clamav.net/cgi-bin/mailman
the use of the Checks setting is if -d doesn't work with it.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -emap{y/a-z/l-za-k/;print}shift Jjhi pcdiwtg Ptga wprztg
-milter.
Marvin
-Nigel
But I'm, not using sendmail.
You're not? Why? ;)
You might find it easier to get help if you provided a little more information about
what you ARE using.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic Business Inc./HireDiversity.com
their Pro product is not open source so
you probably can't fix it yourself if they don't offer this feature)
I reject any email with a found virus so I don't ever have to add a header with a
virus name. I use clamav-milter which does include the virus name in the REJECT
message.
Matthew.van.Eerde
marvin wrote:
cgpav is open source
Ah! That's a good thing.
You might try grep'ing the source for X-Virus-Flag to see where the header is added.
If you're lucky it will be simple to add the virus name as well.
Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902
Hispanic
Simon Christian wrote:
Anyway, could
someone please give me some reasons why this error might occur.
Cheers
Simon
There's some confusion here.
There need to be TWO sockets. One is for clamd. The other is for clamav-milter.
sendmail.mc needs to point to the clamav-milter socket.
Sasa Stupar wrote:
Just forgot to mention that I am running Clamav 0.75.1.
At 20:34 5.10.2004 +0200, you wrote:
I am running a clamav-milter with sendmail 8.13.0. I have made a
test at www.testvirus.org and two tests passed thru: #24 and #25.
In explanation it says that it should detect it
Todd Lyons wrote:
Kevin Old wanted us to know:
/usr/bin/ld: cannot find -lgssapi_krb5
...
The weird part is, I've checked my /etc/ld.so.conf file and it
lists: /usr/kerberos/lib /usr/X11R6/lib
/usr/lib
That is for runtime. The issue you're having is that it cannot find
the
Rodney Green wrote:
Greetings!
I have just upgraded to the latest version of ClamAV that is said to
be able to detect the new JPEG vulnerability. I'm using ClamAV with
MailScanner to scan e-mail. How can I test to see if ClamAV is indeed
detecting the JPEG exploit?
Thanks,
Rod
sigtool
Salvatore Basso wrote:
Hi, I have the following problem with clamav 0.75.1 on fc 2:
[EMAIL PROTECTED] Archive-Zip-1.13]# /usr/local/bin/freshclam -d
ERROR: Can't open /var/log/freshclam.log in append mode.
ERROR: Problem with internal logger
Maybe you have another freshclam running? I
Matthew.van.Eerde wrote:
There seems to be a problem with clamav-milter's --pidfile option.
I retract this. The --pidfile option is fine.
---
This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170
Project Admins to receive
Doug Hardie wrote:
On Sep 24, 2004, at 13:48, [EMAIL PROTECTED] wrote:
Matthew.van.Eerde wrote:
There seems to be a problem with clamav-milter's --pidfile option.
I retract this. The --pidfile option is fine.
Line 1408 of clamav-milter.c has
fprintf
There seems to be a problem with clamav-milter's --pidfile option.
It successfully writes the PID to the file but then it also puts a trailing newline.
This makes it unsuitable for the standard
kill `cat /the/pidfile`
trick.
As a workaround this seems to work:
kill `head --bytes=-1
Nigel Horne wrote:
On Monday 20 Sep 2004 22:45, Jonathan Pitcher wrote:
Is it possible to send a message onto the user that they had an
e-mail blocked? Or to an admin stating that [EMAIL PROTECTED] had a virus
sent to them?
Yes it is, though the first option is not advisable. You can find
Steffen Heil wrote:
Hi
We have Clam Av installed and running. It is blocking virus e-mails
but
is not generating any notification.
... PLEASE only send a notification to the
intended user, NOT to the author. This would cause lot of
collateral damage.
With one caveat.
It is perfectly
Brad Morgan wrote:
Does anyone know if ClamAV has been packaged with any of the
Live Linux CDs?
I've got a Windows PC that keeps rebooting over and over and
we suspect a
virus. It would be nice to have a Live Linux CD with ClamAV that can
freshclam somehow and then scan the PC harddrive.
Damian Menscher wrote:
It's really not hard to figure out the best time to update.
Just write
down all possible minutes, and cross off those that the average idiot
would pick. ;)
Damian Menscher
Average idiots don't use freshclam. It takes a very special kind of idiot. ;)
Seriously,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Sean Hafeez wrote:
I have a 384k line and someone is trying to send me a 100mb
pdf. Can I
set the time line higher or set it to just let the file thru?
:-O
My advice - get a gmail account and have them send it there.
[EMAIL PROTECTED]
Matthew van Eerde wrote:
Rajanikanth P wrote:
Hello D.J. Fan,
But i have a problem here. Assume that clam updates are published at
6:10 Pm. I check for new updates at 6:05 so the next time i gonna
check is at 7:05 it just means that after 55 mins i got the updates.
And within this 55
Damian Menscher wrote:
For most mailserver admins, the danger of losing our jobs
is much greater if we tempfail all incoming mail due to a clamav crash
than is the danger of losing our jobs due to a couple of viruses leaking
through.
s/most/some/;
Spoken as one who has never gotten burned by
From: Jim Maul [mailto:[EMAIL PROTECTED]
Quoting Shayne Lebrun [EMAIL PROTECTED]:
I like virii - it sounds important and like something
that can be on the ER equivalent for geeks...
Perhaps, but if you were to actually pluralize it using
Latin rules, the
result would be 'viri.'
From: Gavin Aiken [mailto:[EMAIL PROTECTED]
The only case I'm worried about is what happens if our primary MX (which is
my box and had clamav installed) is offline for whatever reason (eg SDSL
down), and the mail gets routed via our secondary MX machines, which are at
Easynet and don't do any
101 - 137 of 137 matches
Mail list logo