Sometimes the signatures were created using the complete mail, so clamscan won't recognize the attachment alone but it will recognizeseems that the clamav Port (0.67-1) has problems with RAR Files (e.g.
Bagle.N):
To avoid missunderstandings, I know the file is pwd, but clamav does not recognize the virus within the archive (maybe a DB problem)...
the complete mail.
If you use clamscan, you can work around RAR errors using --unrar[=FULLPATH] Enable support for .rar files
But since the RARs are password-protected, it's useless.
My suggestion is try feeding the complete virus mail to clamscan (instead of just the attachment), and see if it works.
Regards,
Fajar
------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
