Quoting Tomasz Kojm <[EMAIL PROTECTED]>: > Hello, > > due to many requests ClamAV is now able to detect and mark password > protected archives as a virus type "Encrypted.Zip" (big thanks to > Michael L Torrie). You have to enable this feature manually with > ArchiveDetectEncrypted in clamav.conf and --detect-encrypted in > clamscan. Please be careful and WARN YOUR USERS before enabling it. > Can you make an option to mark encrypted zip file as a virus type "Encrypted.Zip" only when there is MS Windows executable(s) file(s) found inside the archive (based on file(s) extension. Here is MIMEDefang implementation of this option: http://lists.roaringpenguin.com/pipermail/mimedefang/2004-March/020560.html)? I think that option make sense, 'cause it will narrow false positives (at least unless there will be not MS Windows executable file(s) inside an archive and note in the email to rename the file to executable).
Thank you for the good antivirus product and fast responses! Dmitry ------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
