On Wed, 03 Dec 2003 16:21 , Thomas Lamy <[EMAIL PROTECTED]> sent:
>McKeever Chris wrote: > >> I am running qmail-scanner with clamav (0.65) >> I have one machine that acts as a gateway, and then sends it to the main email >> server. >> The gateway is the one with qmailscanner and clamav, the email servers post-MTA >> (@mail) has a plugin for clamav which scans the file before >> databsing it. >> >> I have noticed since 11/4/03 that there are about 2-4 emails per day that get by >> the gateway and picked up by the @mail-clamav scan >> any suggestions? They are typically Exploit.IFrame.Gen and 1 W32/Yaha.g.dam >> >> The qmailscanner is picking up the Exploit.IFrame.Gen, but for some reason missing >> the occasional one. >> >> >I don't know qmailscanner, but a logical explanation would be that clamd >is sent a "SCAN" instead of "CONTSCAN". This makes clamd report the >first virus found and stop scanning (this mail) immediately. > Thomas, thanks for your reply. Not sure I follow. wouldnt finding it signla a virus and then the process that called clamd (in this case qmialscanner) take the necessary actions? ------------------------------------------- Chris McKeever If you want to reply directly to me, please use cgmckeever--at--prupref---dot---com http://www.prupref.com ---- Prudential Preferred Properties www.prupref.com ------------------------------------------------------- This SF.net email is sponsored by OSDN's Audience Survey. Help shape OSDN's sites and tell us what you think. Take this five minute survey and you could win a $250 Gift Certificate. http://www.wrgsurveys.com/2003/osdntech03.php?site=8 _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
