Does anyone have an answer to the question does clamscan act differently than clamav-milter/clamd when mail is scanned.
I have taken attachment files from the emails and created custom signatures using sigtool. The extracted attachment is identified properly by clamscan but emails containing the attachment are NOT identified by clamscan as being infected. I have created these signatures on the encoded and decoded versions of the attachment and neither are caught in an email. Carl _______________________________________________ http://lurker.clamav.net/list/clamav-users.html
