FM wrote: > hello, > I have lots of false positive with clamav phishing detection. > What is the correct way to remove these rules using sigtool?
From a recent post: > You can disable the heuristics-based phish checks without > disabling the signature-based checks. Both the official > clamav and SaneSecurity sigs will still work, but the false > positive prone heuristics will be disabled. > > With clamscan, use the --no-phishing-scan-urls option. > For clamd/clamdscan set in your clamd.conf: > DetectPhishing yes > PhishingScanURLs no > and restart clamd. dp _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
