On 23/04/19 17:07, Kevin A. McGrail wrote:
On 4/23/2019 6:18 AM, Brent Clark wrote:
Just want to pick the communities brain for a second.
Does anyone use Mail::SpamAssassin::Plugin::GoogleSafeBrowsing or
better enable 'SafeBrowsing Yes' to freshclams configuration file?
I see SafeBrowsing is a blacklist service provided by Google that
provides lists of URLs for web sites that contain malware or phishing
content.
What was your experience with mail containing malware or phishing
content.
Hello,
sorry to hijack the thread, but while we are talking about ClamAV
signatures, I'd like to point you also to these:
https://urlhaus.abuse.ch/api/#clamav
It's a very lightweight set of URLs knowing of distributing Emotet. They
get hits on my systems while other signatures and AV engines fail, so
you may want to give them a try
Daniele
