I ran the test and found that of the 25 test messages sent, 10 were bounced by my attachment filter before clam even saw them, 10 were detected by clamav, and 5 were allowed through.
The ones that made it through were:
12 - password protected zip 21 - zip file using Long MIME Boundary Vulnerability 23 - zip file using Empty MIME Boundary Vulnerability 24 - zip file using Partial (fragmented) Vulnerability 25 - Attachment with a CLSID extension
Just wondering if this in expected behavior or if I need to do some tweaking. Version I'm running looks to be 0.70 - the latest greatest from the Debian testing feed.
Brock
------------------------------------------------------- This SF.Net email is sponsored by the new InstallShield X.
From Windows to Linux, servers to mobile, InstallShield X is the one
installation-authoring solution that does it all. Learn more and evaluate today! http://www.installshield.com/Dev2Dev/0504 _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
