On 10/23/2014 11:51 PM, geoff.spamassassin140...@alphaworks.co.uk wrote:
On 04/09/2014 15:56, John Hardin wrote:
On Thu, 4 Sep 2014, Geoff Soper wrote:
I've got an issue whereby spam messages seem to be somehow bypassing
SA and getting into my inbox.
:0fw: spamassassin.lock
* < 400000
| spamc -x
Are the messages that bypass SA always rather large?
No, unfortunately not... I understand why the large messages bypass SA
but not the small ones.
As a slightly related aside, what do people typically do about larger
messages containing virus laden zip files?
I do
### ClamAV
CLAMSCAN=/usr/local/bin/clamdscan
:0
{
VIRUS=`$CLAMSCAN --stdout -`
:0 Di
* VIRUS ?? FOUND
/dev/null
}
###
you can also store them fo review instead of sending to /dev/null
