On Tue, 27 Nov 2007, Mark wrote: > Hmm, i'm just in the process of upgrading from 0.88.7 to 0.91.2 > (FreeBSD). "The difference in accuracy between what we were used to and > the newer version was so large that it fundamentally changed the nature > of the product," do you mean that in a bad way?
It depends on how you used it before. If you'd used it as part of a scoring system, then you just need to weight phishing hits less than standard virus hits. If you previously rejected/quarantined/dropped messages based solely on whether they were positive hits, then you should turn off the anti-phishing checks (or at least not act directly upon them). The false positive rate for phishing is extremely high, relative to what you're used to, and can't be reasonably used as a sole determinant of deliverability. In short, you can't use Clam as a simple binary good/bad test with the anti-phishing stuff turned on. Jeffrey Moskot System Administrator [EMAIL PROTECTED] _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
