On Mon, 27 Jun 2005 13:36:32 +0200 aCaB <[EMAIL PROTECTED]> wrote: > On 06/27/05 12:52, Shawn A. Prestridge wrote: > > I have Exim4 running and it's sending and receiving e-mail with > > applomb. However, I cannot seem to get Clam to work properly, even > > though I have been following this HowTo > > (http://koivi.com/exim4-config/).
My HOWTO at http://www.timj.co.uk/linux/Exim-SpamAndVirusScanning.pdf may help. Also, the exim-users list is quite helpful. > > deny message = This message contains a virus ($malware_name) and > > has been r$ > Don't want to start something but imho that's a very ugly policy. > Since 99%+ malware is spreading using faked senders, your mta is > actually bouncing malware to some innocent email addy. I am the most vehement hater of bogus bounces (see www.timj.co.uk/linux/bogus-virus-warnings.cf) , but I wouldn't criticise that policy. The MTA is *NOT* creating a bounce. It is rejecting at SMTP time. As long as this is the user's frontline MTA, this is not an irresponsible policy. If a fake bounce is created, that is the fault of the upstream server that sent you the message. > Please consider archiving infected mails to some dedicated mbox > or :blackhole:'ing it instead. These are, however, reasonable suggestions with the caveat that blackholing it makes your mail system unreliable, which is bad in the event that ClamAV misclassifies something (a rare occurence of course!) Tim _______________________________________________ http://lurker.clamav.net/list/clamav-users.html
