For some reason I'm a huge target for phishing emails (clamav blocks about 30 of them a day on my system of about .. 10 users). I get a few every day that slip by clamav and end up in my spam folder (SARE rulesets catch most of them) so I figure I could submit them to the clamav team for inclusion in the virus databases. The only problem is, they're not in their raw form.. I have spamassassin configured on my account to rewrite the email as an attachment and drop it into my spam folder.
My question is this: is it ok if I submit the spamassassin munged version of
the email, or should I extract the actual message with a text editor first?
Either way is perfectly fine, whatever is easier on the signature db devs.
If need be, I can forward someone (preferably not the list, since it's a
phishing email) a sample of what spamassassin does to the message, that's not
a problem.
Thanks :)
-Jeremy
--
Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc.
[EMAIL PROTECTED] ++ inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l
kitchen @ #qmail #gentoo on EFnet IRC ++ scriptkitchen.com/qmail
GnuPG Key ID: 481BF7E2 ++ jabber:[EMAIL PROTECTED]
pgpTE06EMoT3w.pgp
Description: PGP signature
_______________________________________________ http://lurker.clamav.net/list/clamav-users.html
