On Mon, 2004-11-15 at 08:26 -0500, jef moskot wrote: > The average admin is most likely very pleased with the ClamAV team's > decision to block phishing attacks (or at least the incredibly prevelant > ones).
Yes, absolutely. The poor **cough cough** exchange 5.5 **cough cough** servers that I protect are much happier without phishing attacks. I do run uribl checking against the PH list to kill off more of them, but belts and suspenders for malware is my motto. But then again, I'm such a mean censor that I kill off all of those cute e-mails with sound-tracks... Never yet saw an e-mail with a midi attachment that was business related.... > Personally, I don't think much of SpamCop, but I do see that as Julian's > most compelling argument. I think that warrants a ClamAV option, but I > also think it would be ill-advised to use it. So, Julian should use Amavis-new, add spamcop reporters to the virus-lover's lookup list, and be done. I'm sure there is a way to make the virus-lover's list only hit true on particular virus patterns - at least there was discussion of that sort of feature on the ML about six months ago, and there have been three new versions since then.... And the rest of us can just watch our statistics go up and grin with glee. -- Daniel J McDonald, CCIE # 2495, CNX Austin Energy [EMAIL PROTECTED] _______________________________________________ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
