JamesDR wrote:
Dennis Peterson wrote:
JamesDR wrote:
I've found clam to be reactive to phishs, I've found SpamAssassin to
be proactive...
How does it do this?
Proactive may not be the best word here, but since it uses regex and
several rules applied to an email, it isn't reliant upon a single sig to
detect a 'bad' mail. So in a way, what matched in the past, has a good
chance of matching in the near future (as far as spam goes) at least
this has been my experience.
OK - in that same interpretation then ClamAV is proactive because I
benefit from patterns of phishing exploits I may have not seen and which
I may never see because of the group effort. And general regex patterns
can cast a big net, certainly. Too big though and you will get false
positives. It helps a lot that spammers are such crappy spellers and
often have very poor grammar skills :)
dp
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://lurker.clamav.net/list/clamav-users.html
