On Thu, 2005-05-26 at 12:08 -0500, Daniel J McDonald wrote:
> Damian - give it up. The clamav team has already agreed to filter those
> out for you in version 0.90. A good portion of the rest of us do want
> clamav to catch these.
Thanks for the details Daniel, now I see. Bad me asked about the wrong
topic. ;-)
> So, go ahead and submit phishes using the standard web interface for
> viral patterns. Include the full rfc-822 source message - nothing
> pre-rendered by outlook....
Sure, I wouldn't even think about anything else than RFC [2]822
messages. I'm fairly new to ClamAV, but I'm used to deal with mails and
fight SPAM.
Besides, Outlook... Eh, we're using the same MUA. And even the same
distro. ;)
...guenther
--
char *t="[EMAIL PROTECTED]";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
