Tx for the reply but in my case it is not that easy. I am using courier-mta and courier-pythonfilter to connect the mta and clamav This filter is using libclamav directly
and in clamd.conf I have : PhishingScanURLs no PhishingSignatures no but still have virus alert in the maillog Regards, Dennis Peterson wrote: > FM wrote: > >> hello, >> I have lots of false positive with clamav phishing detection. >> What is the correct way to remove these rules using sigtool? >> > > > From a recent post: > > > You can disable the heuristics-based phish checks without > > disabling the signature-based checks. Both the official > > clamav and SaneSecurity sigs will still work, but the false > > positive prone heuristics will be disabled. > > > > With clamscan, use the --no-phishing-scan-urls option. > > For clamd/clamdscan set in your clamd.conf: > > DetectPhishing yes > > PhishingScanURLs no > > and restart clamd. > > > dp > _______________________________________________ > Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net > http://lurker.clamav.net/list/clamav-users.html > _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
