Julian Mehnle wrote: >Trog wrote: >> Julian Mehnle wrote: >> > Trog wrote: >> > > Robert Stampfli wrote: >> > > > My question: Does the ClamAV team want examples of these >> > > > phishing emails submitted to them through their >> > > > <http://cgi.clamav.net/sendvirus.cgi> interface? >> > > >> > > You can submit them via the web interface. >> > >> > Can I submit my spam, too? It is bad, so it should be stopped by >> > ClamAV. >> >> No. > >Uh, thanks. This makes real sense, I wonder why I didn't get it before.
There have been long philosophical discussions about the distinction between spam, phishing, and various malware. The developers think phishing is malware, and it's there resources being put into killing them, so let them! They don't think spam, even spam with embedded java script to obscure the nature of the spam, is malware. That was the JS.Scramble pattern that was quite effective at killing off lots of spam, but they chose to remove it, and that's their right. Hopefully someone took the signature and submitted it to the spamassassin crew. I'd rather not endure another one of these long discussions about definitions of malware. Trog and others have graciously agreed to identify phishes, as have other groups (I use the "ph" surbl list quite effectively for killing off phishes too, but defense in depth, I always say.) Don't look a gift horse in the mouth, unless you are living in Troy. _______________________________________________ http://lurker.clamav.net/list/clamav-users.html
